Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: jGf60RhPjMOuslsE1+t6NBd3OCtIZqIBtmFkwI9BqLc=
Subject key identifier: 8A:FE:17:C8:F3:08:F1:73:F4:63:7F:0A:99:82:F4:40:C9:61:AA:E3
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 0198D47391F94FE1408D79695019722848B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 15A1
Signing time: Sat 23 Aug 2025 01:03:20 +0000
Manifest this update: Sat 23 Aug 2025 01:03:20 +0000
Manifest next update: Sun 24 Aug 2025 01:03:20 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: iuUpoLbiH1KxLpyazjUx2n1cRrDST9TREiH4lBNswTo=)
2: I8hH4YeV3HM0yWrc52lfIOhYTt8.roa (hash: colmP8j9TQydvYGFc1+glmJgVJjDM5AxsV+6TerMW6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:91:f9:4f:e1:40:8d:79:69:50:19:72:28:48:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: Aug 23 01:03:20 2025 GMT
Not After : Aug 24 01:03:20 2025 GMT
Subject: CN=8afe17c8f308f173f4637f0a9982f440c961aae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:74:4f:57:ba:5c:c5:47:57:18:24:da:f2:46:
42:80:45:42:19:1a:35:70:25:13:69:88:95:68:34:
de:ca:68:e1:86:67:ff:60:6d:53:e9:bc:34:4b:bb:
d1:03:eb:57:7f:d8:dd:52:18:99:d1:58:43:88:26:
e5:15:ec:75:a5:23:4b:c1:7c:97:2e:5f:a9:0a:dd:
99:5a:e1:51:73:98:0c:8d:1c:a4:d0:e2:b0:90:50:
14:f5:fe:26:ae:76:40:e1:e4:c6:97:80:bf:9d:4a:
04:ec:aa:13:d5:f6:47:4c:97:1b:6c:05:e7:02:84:
fc:b1:ec:07:83:61:90:39:d0:85:90:eb:e8:57:83:
e8:62:c9:a9:45:82:31:e2:71:71:0a:57:ee:c2:35:
f9:3c:fd:a5:ff:21:97:d2:39:e9:e5:a9:d2:bd:a0:
0b:4e:85:52:08:46:2c:f5:eb:1c:f5:95:05:13:18:
5c:f8:16:bf:c7:ff:84:6d:37:6c:df:da:dc:8d:41:
c3:d6:97:45:c6:8a:07:c7:8b:b7:f6:46:f2:78:96:
43:f3:e9:dc:f4:f0:b6:f0:ac:24:7c:02:ff:c6:dd:
dd:d1:ba:c1:c8:a6:8b:9e:18:96:b3:13:05:f1:f6:
a5:25:20:97:4e:dc:c8:f2:be:20:72:c5:06:20:d2:
0c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:FE:17:C8:F3:08:F1:73:F4:63:7F:0A:99:82:F4:40:C9:61:AA:E3
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:b2:0b:48:82:b0:34:ae:17:e1:a9:14:38:34:ce:db:7e:15:
fd:31:b7:55:55:eb:a1:2d:b6:25:55:da:4e:a1:a9:35:fb:36:
dd:89:78:cf:a7:53:b2:14:b5:03:dc:48:30:8a:a9:9e:9a:71:
8d:02:41:67:cc:8b:78:c1:8b:87:fa:8b:2c:ad:ae:02:ae:6d:
59:79:03:d6:b8:54:b1:de:5c:0f:e7:38:7c:e7:c7:56:d2:c4:
7f:9f:a6:86:60:5b:05:55:d6:24:5e:4d:87:f9:60:08:da:66:
d9:48:ac:14:20:70:c3:e0:d1:9b:e8:26:63:25:51:af:3e:2a:
ec:12:7e:81:c1:94:b7:a0:17:43:9f:41:ac:42:1a:4c:4e:7f:
91:e7:03:ea:16:0d:d5:1e:87:82:7b:04:57:97:6f:6c:94:0c:
3b:98:cd:83:b1:16:f4:f2:40:72:bf:0f:2c:e1:42:75:86:f4:
9b:be:fd:ff:12:a0:9b:5a:25:b8:b6:6a:18:89:bc:13:fd:56:
ef:0c:d3:93:91:7e:2f:b2:cf:a2:d9:21:10:6e:9d:15:9c:34:
22:b6:32:e8:5e:5a:f4:f5:3e:20:4c:92:fa:7d:90:a0:a6:d3:
1c:12:b6:0b:2e:f2:99:22:d6:81:15:b8:7f:80:4c:57:9e:04:
0c:17:bf:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:16:01 2025 by rpki-client