Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
File: os1DAbKJXx2YqFDlic58BjxTn00.mft (raw, json)
Hash identifier: /NsYFsKZwscfmPmlqnf+fUAs7kt/88FrIp1zyynEaJ0=
Subject key identifier: 4B:2E:75:5D:66:01:A7:32:B8:A2:8E:CA:5C:51:5E:B9:E0:F1:CC:AC
Authority key identifier: A2:CD:43:01:B2:89:5F:1D:98:A8:50:E5:89:CE:7C:06:3C:53:9F:4D
Certificate issuer: /CN=a2cd4301b2895f1d98a850e589ce7c063c539f4d
Certificate serial: 0197B6D745C27CF17EC24C99BA084D2C3B0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
Manifest number: 111A
Signing time: Sat 28 Jun 2025 14:00:50 +0000
Manifest this update: Sat 28 Jun 2025 14:00:50 +0000
Manifest next update: Sun 29 Jun 2025 14:00:50 +0000
Files and hashes: 1: KAKz0xo2XXEBIDI7U4s2tUakP98.roa (hash: nzwZHLIuL4E1A+Jcxn7qeWA8mqGxoFVori2v9JbkLPE=)
2: os1DAbKJXx2YqFDlic58BjxTn00.crl (hash: icSdRzkrmwgaxqhzfCrGDqBqZJe69z6wHqdSVwsIk+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:45:c2:7c:f1:7e:c2:4c:99:ba:08:4d:2c:3b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2cd4301b2895f1d98a850e589ce7c063c539f4d
Validity
Not Before: Jun 28 14:00:50 2025 GMT
Not After : Jun 29 14:00:50 2025 GMT
Subject: CN=4b2e755d6601a732b8a28eca5c515eb9e0f1ccac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9a:a1:01:4e:40:c3:95:42:83:c6:47:29:69:
2d:86:90:ee:c6:a3:1e:e6:e1:97:94:41:03:3e:56:
64:2f:e9:8b:c1:49:17:77:0e:76:df:02:96:90:98:
16:56:28:48:e8:82:f3:5b:1b:82:64:6f:25:7c:32:
7c:0e:28:b3:28:de:0e:8f:ae:0e:af:6e:da:00:0d:
c7:b5:80:24:e5:90:04:c2:4e:e7:03:a7:a9:3b:20:
87:3e:7f:5b:99:42:38:1b:75:36:c5:a0:90:96:34:
b2:a0:86:0d:cf:4e:46:57:d7:46:3e:41:65:e5:02:
61:40:fa:5d:0a:a8:c0:f8:bd:c2:8a:bf:d4:62:9d:
69:02:34:66:3a:48:dc:9c:a2:62:ea:47:8f:df:d1:
be:8f:16:02:3f:41:db:9f:dd:a6:0a:5e:9e:e4:9d:
eb:36:fa:27:ce:4c:97:a2:a9:cc:d1:03:53:e3:21:
0f:84:ca:9b:c3:94:bd:68:87:60:21:89:69:86:5f:
f1:99:d1:61:06:1d:1f:07:cd:e0:fa:7b:ef:d1:0a:
20:39:f7:13:75:32:3a:10:1e:40:da:5d:ba:7d:6f:
5c:8a:fd:65:1c:44:9c:c3:82:56:ce:b4:ea:37:b9:
4b:03:6c:25:ac:46:13:e4:30:b6:69:f2:09:8d:6b:
21:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:2E:75:5D:66:01:A7:32:B8:A2:8E:CA:5C:51:5E:B9:E0:F1:CC:AC
X509v3 Authority Key Identifier:
keyid:A2:CD:43:01:B2:89:5F:1D:98:A8:50:E5:89:CE:7C:06:3C:53:9F:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/os1DAbKJXx2YqFDlic58BjxTn00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/38486c-9de3-44ef-ab29-58f3f37ccdd9/1/os1DAbKJXx2YqFDlic58BjxTn00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:5e:c3:18:eb:3f:ee:4e:e9:22:93:50:ba:25:0c:2c:c6:ea:
6c:0c:9c:36:f8:1f:d9:6a:f9:9f:c6:68:8d:ad:34:eb:34:ca:
9d:be:59:21:69:f8:91:99:a8:16:95:8c:55:46:09:db:46:c2:
03:19:9d:7f:c0:3a:26:37:db:ff:3d:35:7d:ac:e2:68:9a:07:
0e:03:c6:7a:a5:4d:35:11:c5:78:cf:2e:66:56:92:37:dc:bd:
71:31:a4:af:16:91:34:1f:d1:4f:f0:38:da:f1:3b:21:57:8e:
b9:c6:56:c7:1b:7c:23:0a:ec:a0:12:8a:0d:30:3a:ef:ea:1f:
15:b2:23:b4:07:47:83:d7:48:48:8a:1b:fc:f1:d8:66:a7:fe:
9d:83:d6:31:86:30:12:57:3b:e9:32:a2:6d:9f:16:d1:38:56:
f3:8f:34:ad:68:79:9c:1e:3b:53:68:e5:9d:2c:1c:6b:c1:1c:
9a:b6:8f:b6:69:0f:e3:04:72:66:df:ea:3a:c2:4e:22:6b:1a:
41:2f:e1:da:1b:82:32:72:6b:e5:55:52:fd:f6:ac:e4:e9:ee:
26:73:05:06:c2:4b:e9:f7:c6:28:b8:ba:f9:3c:65:b4:c8:d7:
5f:22:93:56:43:99:a4:27:1c:40:6a:d4:fe:fd:f0:fc:b6:08:
13:99:56:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:51:19 2025 by rpki-client