Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
File: OzBfl6JvMdgAYFn7OrGerPt4NFU.mft (raw, json)
Hash identifier: Ii7Oz2CF1I8kMh0lujogQpmRBCJwFoyxTzHt+v97LnQ=
Subject key identifier: B8:A8:36:74:16:CA:C4:76:95:C2:93:A0:BC:4B:A1:B1:D4:62:36:25
Authority key identifier: 3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
Certificate issuer: /CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Certificate serial: 0199FDDA40544FB8D541C8DF837EB70A5923
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
Manifest number: 0ACD
Signing time: Sun 19 Oct 2025 19:02:42 +0000
Manifest this update: Sun 19 Oct 2025 19:02:42 +0000
Manifest next update: Mon 20 Oct 2025 19:02:42 +0000
Files and hashes: 1: 6t5f4Ujb0FAO84dMqgRAqgV1jVs.roa (hash: u7nakvY2IzZI/nPIoCHOpaknwKeAH1RDuYLRGXqd0p4=)
2: OzBfl6JvMdgAYFn7OrGerPt4NFU.crl (hash: jPiZJTvCdO80TjTa8QRBJ3tge7jPqFbmwflUH43nmOc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:40:54:4f:b8:d5:41:c8:df:83:7e:b7:0a:59:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Validity
Not Before: Oct 19 19:02:42 2025 GMT
Not After : Oct 20 19:02:42 2025 GMT
Subject: CN=b8a8367416cac47695c293a0bc4ba1b1d4623625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d4:2c:ab:5b:db:bf:28:c2:24:35:07:47:28:
52:00:44:2a:07:4c:34:e8:51:b7:97:7d:ff:b9:df:
b4:75:cb:76:65:83:24:5c:f0:e0:29:86:28:5d:34:
a4:6d:0d:60:f1:ef:de:14:1f:3a:83:cb:36:22:96:
4a:ce:8e:0f:a9:ce:56:fe:d1:0f:c0:e7:44:1e:2c:
e5:4b:02:ea:e2:87:44:ef:21:30:f6:5b:0a:78:fe:
2b:80:61:a3:2c:90:a8:cf:bf:62:6b:00:a9:2a:cc:
4b:ef:80:e5:ef:f1:63:ea:75:33:e9:99:56:15:42:
d3:1f:60:77:63:ea:61:39:4d:18:d0:d4:c4:e4:a3:
a4:b3:be:a6:4e:20:8d:52:32:08:ae:be:e7:c3:ef:
11:58:63:52:91:84:6b:96:bd:62:e7:69:6b:c5:4f:
1d:0c:3f:b0:67:7e:1f:15:66:00:90:22:ca:7f:ef:
90:92:2e:0f:40:b3:18:97:5f:59:ec:c7:8a:08:cb:
4e:9e:c4:f2:55:f0:69:ed:06:08:98:ed:01:61:8e:
4c:b4:ac:76:5c:b0:f8:94:e9:b7:96:88:5f:78:f3:
6d:e3:34:2c:87:e8:ad:c6:9d:36:ff:62:e6:0a:0b:
c3:69:7b:22:58:df:7b:ef:0e:0d:cb:61:5b:6e:d5:
49:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A8:36:74:16:CA:C4:76:95:C2:93:A0:BC:4B:A1:B1:D4:62:36:25
X509v3 Authority Key Identifier:
keyid:3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:7c:fa:ed:bb:dd:d0:81:e4:a7:79:a5:6b:65:10:2e:a4:fb:
6a:c8:ce:a6:c4:0f:56:80:a6:a8:2a:82:01:cc:57:1c:50:49:
59:eb:6a:44:e4:22:2f:fe:ef:3f:28:3f:21:1e:a5:e3:11:ae:
f3:bb:6f:c6:04:0f:70:d1:c2:b6:6a:7d:bb:4c:41:f3:ed:d6:
fa:36:c5:84:6b:6e:e6:54:8c:9c:a1:31:54:9c:25:bc:39:2d:
95:a6:f6:9e:d1:ee:75:32:3a:9e:8f:50:b0:af:e3:f5:f1:6a:
93:85:f6:cf:f2:ce:e6:34:c6:00:84:ea:81:d3:46:4b:f6:81:
9a:a4:7a:a7:6a:dc:b4:19:ef:4e:ed:88:c5:26:4c:cb:b5:d6:
be:04:4f:5e:27:d5:45:9c:36:73:ff:65:0e:79:62:c0:84:dd:
cb:10:30:6d:a4:e9:6d:e8:0f:cd:a1:c0:dd:c0:ef:46:50:80:
8c:52:77:6f:d3:01:70:17:d4:77:a2:37:c1:6c:58:51:42:71:
41:c0:38:0b:63:ef:ed:0b:18:82:61:c1:0c:7d:ea:6d:fe:37:
0d:ee:ad:96:4f:04:e9:66:57:73:23:03:76:5c:13:02:36:95:
e3:79:b5:bd:8a:04:0b:9c:6f:23:7c:74:f8:1f:68:65:d3:d0:
c9:f0:f7:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:13 2025 by rpki-client