Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
File: OzBfl6JvMdgAYFn7OrGerPt4NFU.mft (raw, json)
Hash identifier: JUtuylFhC6SrYNZuWY93KzTRHy5hKsIqbwzJTrFqOqk=
Subject key identifier: FC:19:2D:B0:19:30:9D:FC:1C:65:52:6F:0E:15:7D:D6:0C:B3:56:40
Authority key identifier: 3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
Certificate issuer: /CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Certificate serial: 0198D4741D4F706B5863BF827EEE4CA8C6D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
Manifest number: 0A33
Signing time: Sat 23 Aug 2025 01:03:55 +0000
Manifest this update: Sat 23 Aug 2025 01:03:55 +0000
Manifest next update: Sun 24 Aug 2025 01:03:55 +0000
Files and hashes: 1: 6t5f4Ujb0FAO84dMqgRAqgV1jVs.roa (hash: u7nakvY2IzZI/nPIoCHOpaknwKeAH1RDuYLRGXqd0p4=)
2: OzBfl6JvMdgAYFn7OrGerPt4NFU.crl (hash: J2qPWAa668yWEzhWGXE08uVG8UWJG7gUyPu7otJQWGs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:1d:4f:70:6b:58:63:bf:82:7e:ee:4c:a8:c6:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Validity
Not Before: Aug 23 01:03:55 2025 GMT
Not After : Aug 24 01:03:55 2025 GMT
Subject: CN=fc192db019309dfc1c65526f0e157dd60cb35640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:95:15:6e:7e:f3:69:aa:fd:f7:f8:27:2e:48:
86:6b:91:35:c3:a4:3d:09:51:97:b3:10:4e:0a:cd:
21:de:3e:5b:69:ef:12:d4:4c:1b:bb:c9:09:9d:c1:
13:93:35:39:ad:0a:fa:2a:1d:c3:a9:86:f2:8e:93:
09:04:f0:b1:5b:cd:0a:95:dd:9f:86:e5:6e:27:04:
c4:78:2f:7f:dc:66:b5:0c:7d:6f:e4:a1:10:bc:d7:
a8:79:d3:14:e5:02:43:d3:d2:38:05:0a:24:ad:07:
57:85:dd:09:bb:84:24:f1:9b:f5:ea:c0:b7:2a:73:
6f:92:77:dc:cf:88:77:21:01:73:9d:1d:0b:73:9f:
fd:bd:28:81:e6:b2:1a:14:ab:02:68:b5:62:61:b2:
b0:d5:4b:22:5a:a6:d9:66:9f:d2:31:80:9d:21:05:
66:5f:11:dc:99:75:86:43:fe:7c:9a:d9:c2:af:59:
47:ed:18:5a:21:b5:44:7b:70:6c:63:c2:1f:47:9e:
f9:46:9c:45:c5:74:dc:b1:db:be:7f:02:47:3a:46:
e6:0e:67:20:43:bf:d5:27:27:29:db:5a:df:2b:72:
4e:14:84:c4:b0:26:76:02:d9:ea:18:27:0d:99:9f:
a2:a1:b6:a5:f1:8d:af:8f:2d:c8:c5:af:27:73:32:
9d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:19:2D:B0:19:30:9D:FC:1C:65:52:6F:0E:15:7D:D6:0C:B3:56:40
X509v3 Authority Key Identifier:
keyid:3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:cb:f2:59:d5:1e:82:08:76:ae:71:bb:ed:8f:6b:24:8e:8f:
ce:8f:20:df:f8:f3:62:5b:bf:35:06:1f:09:24:40:6d:a9:34:
ad:2b:eb:93:20:ec:76:40:6a:ef:ba:ae:8f:0f:54:11:2b:24:
cf:36:f9:e4:d1:7c:00:9a:a9:ab:f1:b5:39:aa:35:61:cf:3e:
60:07:1f:82:89:cc:29:3d:94:e6:84:ad:e1:65:9b:8d:3e:90:
09:8f:0d:a3:ef:66:20:5e:56:b1:1e:6e:74:70:f8:91:8e:b9:
38:2d:76:93:c5:87:36:63:0d:26:53:1b:5e:f7:5d:9d:7e:58:
7a:36:3d:60:55:73:c8:4b:74:3e:18:7f:59:2e:98:d2:8d:45:
e9:6d:1d:9a:66:00:fc:36:bf:3d:8c:61:f8:c3:73:75:f9:21:
55:fe:e7:11:a3:6f:f5:a8:e9:40:d1:5a:6f:4c:d0:40:c0:ee:
b3:d4:c3:40:e4:78:4e:1c:e7:28:83:61:d7:55:7f:53:a7:74:
70:01:42:b5:fb:87:59:87:43:2f:24:ba:3a:58:ff:03:a4:59:
fa:f0:26:f9:4b:c9:a3:ee:9a:4f:02:01:5a:a3:cc:83:b3:84:
6c:24:6c:e0:68:b6:e0:c8:fb:8b:32:19:6b:c5:2b:c3:1a:ba:
8a:51:53:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:40 2025 by rpki-client