Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
File: ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft (raw, json)
Hash identifier: 3QIyFJqMIegnCcybCWC5ggNMvvsBwB872jf0mfSSZn8=
Subject key identifier: 71:F5:F7:E9:24:FF:CC:6A:21:B4:BE:E1:F6:EA:39:88:53:23:44:E8
Authority key identifier: A2:E3:C4:EC:7B:36:11:2F:CE:52:1F:5B:EF:28:73:C7:B4:CC:88:D1
Certificate issuer: /CN=a2e3c4ec7b36112fce521f5bef2873c7b4cc88d1
Certificate serial: 0198D6CDB26BA6AED48040DFF6BEE4FCDF4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
Manifest number: 1271
Signing time: Sat 23 Aug 2025 12:01:01 +0000
Manifest this update: Sat 23 Aug 2025 12:01:01 +0000
Manifest next update: Sun 24 Aug 2025 12:01:01 +0000
Files and hashes: 1: O1jkn25qs1-TFBQOkUuo7PUo1bk.roa (hash: G22nJhAbgQNfU91NNPvYIMRUfjCUOYeEUbZcxQsmP2o=)
2: ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl (hash: cbM56toOLqrfEI5O3kk+g3qMi5wEVyN/4TaNfRbWGtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:b2:6b:a6:ae:d4:80:40:df:f6:be:e4:fc:df:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2e3c4ec7b36112fce521f5bef2873c7b4cc88d1
Validity
Not Before: Aug 23 12:01:01 2025 GMT
Not After : Aug 24 12:01:01 2025 GMT
Subject: CN=71f5f7e924ffcc6a21b4bee1f6ea3988532344e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:22:7c:ce:23:13:61:16:8b:e3:b6:e1:c6:ba:
65:6a:69:da:f5:f2:af:eb:8f:67:95:8d:d8:39:6f:
ce:e0:9c:50:0c:79:3c:db:fc:a1:62:c0:c4:31:de:
04:fd:60:95:96:e8:1f:6b:e4:20:0a:cc:81:ca:0a:
48:a8:05:b0:ec:10:f1:17:15:49:b4:74:92:1a:df:
04:9f:3d:cd:bf:b7:ef:68:69:4c:eb:c3:6f:ad:bb:
b5:37:d8:f5:d0:8f:64:19:36:96:29:13:23:45:0b:
a5:f9:f8:95:76:91:53:e5:cf:34:6a:90:7f:7e:ed:
96:c3:2d:bd:09:00:c3:04:70:22:11:ee:51:e0:d5:
d2:26:11:8a:83:02:43:22:2c:fc:8d:df:d1:15:d8:
82:5b:34:78:2b:14:0e:a9:6a:9a:02:b9:b1:a8:37:
65:72:60:54:67:eb:9f:49:3a:fd:a8:32:de:71:18:
08:db:9f:0d:97:29:16:e8:85:79:97:07:0e:3e:81:
e7:f2:b5:f9:95:0e:37:a9:75:9c:13:93:fa:af:09:
12:00:1d:3c:45:c5:fe:91:e0:e1:e0:07:6e:44:ba:
89:cb:93:de:c6:5c:be:ab:9e:52:ad:70:16:8b:be:
4b:33:77:12:19:3a:fc:39:98:11:58:19:3e:93:8d:
0e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F5:F7:E9:24:FF:CC:6A:21:B4:BE:E1:F6:EA:39:88:53:23:44:E8
X509v3 Authority Key Identifier:
keyid:A2:E3:C4:EC:7B:36:11:2F:CE:52:1F:5B:EF:28:73:C7:B4:CC:88:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/f40387-2d84-4062-bec6-da513cc69839/1/ouPE7Hs2ES_OUh9b7yhzx7TMiNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:0d:dd:d5:af:84:d8:2f:6f:9b:28:f1:fb:f4:8c:b4:80:51:
f6:70:08:38:3f:0c:73:63:4f:1e:19:9b:62:cc:ed:bb:33:69:
a2:11:3a:b4:b0:e5:5c:51:38:09:ab:86:01:62:a8:58:5b:d1:
7d:ad:5b:52:9e:2a:a0:58:68:91:b2:81:c2:6e:15:ac:ce:a6:
19:ec:d2:b3:85:60:63:13:35:26:e2:3e:b4:26:4d:09:7a:b2:
25:c3:9a:b0:46:3d:2a:b5:9c:88:b9:80:e9:6e:48:c0:58:97:
45:b1:b8:41:e6:d7:9b:e0:1a:49:3a:79:cd:be:b4:a9:1a:63:
ad:4d:0e:ab:51:41:89:1f:89:33:3a:b0:1f:14:28:87:6d:73:
72:1b:77:73:38:22:23:bf:8c:e6:a6:93:61:c8:34:ef:81:c2:
be:c1:e5:ee:0f:5c:0a:10:d1:d0:78:e9:4e:4c:42:10:58:e6:
61:7e:cf:87:18:5a:9d:c7:f0:2b:af:4c:c8:9b:b2:e4:d0:94:
13:e1:6b:0a:97:a7:4f:45:dd:29:59:dc:95:16:30:30:89:85:
cd:9e:0b:2c:e9:b2:4e:14:fc:ad:12:98:be:ea:19:48:c8:c0:
f0:86:62:aa:f8:ce:95:35:47:85:f1:dd:bc:a2:ae:a6:80:07:
18:a5:50:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:09:38 2025 by rpki-client