Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json)
Hash identifier: n4M8JRYHVca+VPy+HxqxMDAFW/2iex881hakeHu+MRo=
Subject key identifier: 07:CF:C6:B1:74:B5:A6:B9:78:44:5D:3B:A8:67:CF:CA:B7:AE:E8:EB
Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Certificate serial: 0198D4DFDD9A1A1B2C947B38D45729778FDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
Manifest number: 05D6
Signing time: Sat 23 Aug 2025 03:01:37 +0000
Manifest this update: Sat 23 Aug 2025 03:01:37 +0000
Manifest next update: Sun 24 Aug 2025 03:01:37 +0000
Files and hashes: 1: 4Knn2Ld5egn1camg9bhppId4Qlo.roa (hash: A8w1HB94c5M9H4eQOiI6lWSCTjnLMlfowVXvZM3dO6s=)
2: 5bwrov9Q4TKzJTBo9upY3XK0THU.roa (hash: TYWC6rWZltrX891RQlcpPW39DIbNZYI93ECjvUJPd18=)
3: S_FCvdfbH_ZK63a0stUMhU8oaw8.roa (hash: eXZV7SJ3ck6L3XgOeiX3iX+u0/ekcILrG+TMmUo1bYY=)
4: UXFnULRGQ9zt1V-SkMYjnZH0aX8.roa (hash: hvtnqOC4PJ7xkfHCQl1PdGQcbPT0pkEqxG9iEFd/GZI=)
5: YsXyfEzn_ZKBLDMzG1UU4GMwlcI.roa (hash: +hKZsJUinqgBcHuQ7dq/U5cKUb4tJ0uT1WCFtVOANwo=)
6: gOWYAyjzxIKRFcUZmXLFPZZQLAE.roa (hash: uorrOksjaGfolUbfcHF+KBKk6xKRTaR+l4ir2v0cUaI=)
7: g_ElxkrC5OfOyHZzsFQIM1AuuFQ.roa (hash: s9+zwcgiFmScc9IvVxtLII47fLB+BQdFtBCLqfaDxwU=)
8: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: S1peUE9Vh9GcfCmOrtLz3jyws7RvXaE+Nt9YmWf2gaA=)
9: zvXh2JmULYTuuJGfZa88vbAc7K8.roa (hash: XQvzCYYY2c/DWeWDz/HVl73sGmFpwXBX4BVFr0eF6dM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:dd:9a:1a:1b:2c:94:7b:38:d4:57:29:77:8f:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Validity
Not Before: Aug 23 03:01:37 2025 GMT
Not After : Aug 24 03:01:37 2025 GMT
Subject: CN=07cfc6b174b5a6b978445d3ba867cfcab7aee8eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:32:83:19:83:9e:aa:af:13:0f:51:96:6a:52:
62:16:19:2b:90:f3:7e:04:62:61:c9:f7:b8:63:2b:
ac:10:19:b1:c7:c5:c6:fc:6b:f0:dc:fc:e4:cf:e2:
f4:40:02:c3:50:e6:bc:a8:36:fb:d4:d5:1a:62:3a:
0b:36:da:29:5c:94:e0:02:34:47:30:30:7d:4a:7d:
94:81:ab:c6:fb:e5:5d:2d:56:76:a2:b1:97:33:10:
bb:5a:9a:77:57:c2:8f:61:bc:3a:96:15:06:0f:e7:
26:83:a1:af:02:f8:80:ab:6a:92:13:ee:c8:cf:b0:
db:51:f2:45:02:1a:df:4a:d7:a3:52:38:6f:24:48:
02:55:35:4d:a7:14:4c:d9:84:0e:12:07:6b:ac:76:
4f:79:7d:03:e3:60:ad:34:f1:b2:02:fb:e1:a1:44:
84:25:da:2d:e3:9e:61:81:59:5c:02:7d:4a:dc:f5:
69:1b:9a:24:4e:f0:97:ac:41:9a:81:b3:bd:82:e2:
45:7e:cf:62:10:7d:c4:64:2e:08:c8:16:29:a7:90:
c3:de:48:78:fa:ba:1c:e0:9f:9a:4b:3c:7b:e8:bc:
c1:d3:e4:da:44:45:08:ca:98:20:42:ae:7b:a6:88:
12:e3:c3:f2:c0:52:67:48:18:63:dc:d8:da:01:61:
88:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:CF:C6:B1:74:B5:A6:B9:78:44:5D:3B:A8:67:CF:CA:B7:AE:E8:EB
X509v3 Authority Key Identifier:
keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:65:ad:80:9f:77:ef:a3:6b:8a:fa:ce:93:11:c6:cb:ea:46:
e4:6b:84:58:c1:27:78:7f:88:bb:7c:d6:d3:0d:31:69:bf:d0:
97:c0:06:a5:a5:40:f3:8c:90:78:e8:5d:63:fc:57:0e:93:33:
32:42:0e:5e:3e:ea:9b:f7:e1:49:c7:81:9f:0b:d7:f0:07:27:
c3:df:6c:c2:d5:52:3d:fa:56:bf:69:37:69:bd:16:f5:8e:9c:
33:36:86:3c:23:64:00:31:5a:50:a3:17:86:44:08:90:c3:0e:
af:f6:1c:ff:1c:b9:c8:91:9f:f8:48:ff:6a:a9:35:d6:e8:00:
be:e5:0b:70:f6:11:ca:a8:86:c7:dd:35:90:eb:3c:cb:5c:84:
4c:8e:7b:52:ba:14:c0:81:5b:8e:07:7c:fb:93:d3:37:3b:15:
ce:aa:72:3a:d3:93:2e:eb:51:8d:b2:50:bc:0b:38:ed:71:dc:
89:01:32:fc:46:97:7d:70:44:90:ab:10:3a:89:3d:f1:27:48:
2a:f2:0d:13:e3:76:90:bf:4f:1c:09:68:ad:06:74:d2:d9:76:
47:c1:3c:5f:76:51:52:d1:0a:ff:cd:7c:f6:9a:5f:83:72:c6:
96:29:71:00:a9:09:cf:f1:eb:d2:b8:f0:8b:05:3f:79:ca:50:
2d:c4:eb:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:46:49 2025 by rpki-client