Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: yM7XsRx4QGZJMz3e5VaW4ngfzjCG24OUEMhRn3wIo5Y=
Subject key identifier: 67:BA:5C:78:E6:0D:28:9B:84:D3:38:6B:E8:D8:9D:69:CF:83:B9:B8
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 0199FDDA309EA6E70E851E5B7255300D96E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 163B
Signing time: Sun 19 Oct 2025 19:02:38 +0000
Manifest this update: Sun 19 Oct 2025 19:02:38 +0000
Manifest next update: Mon 20 Oct 2025 19:02:38 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: YMEQccP4rT3nAKUtRslzoy6lmHxLDPvtx1YZP+34XBU=)
2: I8hH4YeV3HM0yWrc52lfIOhYTt8.roa (hash: colmP8j9TQydvYGFc1+glmJgVJjDM5AxsV+6TerMW6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:30:9e:a6:e7:0e:85:1e:5b:72:55:30:0d:96:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: Oct 19 19:02:38 2025 GMT
Not After : Oct 20 19:02:38 2025 GMT
Subject: CN=67ba5c78e60d289b84d3386be8d89d69cf83b9b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:61:e2:45:85:e1:46:b3:0b:00:f2:cc:d2:a8:
41:60:e8:4e:cb:16:b3:69:46:2c:96:da:80:d3:16:
a8:b2:8e:b0:51:84:ab:68:1d:ab:89:e8:86:5e:ef:
fe:b6:19:1c:a2:89:d8:73:bd:fd:aa:92:8e:73:11:
51:dd:94:0f:e4:2f:d9:f9:4d:00:01:c8:9a:51:cc:
18:82:e3:ca:72:c6:8f:27:13:1c:64:2a:1d:2b:35:
2c:ea:45:44:e9:07:75:59:80:b4:40:c3:57:50:af:
94:f9:e2:db:4a:f9:fa:09:f1:66:7c:a2:00:ae:2c:
f8:03:be:f0:88:c0:9a:bc:59:83:49:5d:01:82:06:
f5:94:3f:90:8a:6c:e2:cf:3b:65:a1:2e:94:b6:0d:
cd:f1:e4:4e:c0:50:da:74:72:2c:c6:8d:8d:33:21:
80:98:04:57:8d:ce:c6:31:c2:69:73:19:c1:b1:8c:
91:ad:24:25:0d:2b:21:22:38:19:72:1d:9b:51:21:
67:e0:b2:ae:40:77:bc:a5:63:0a:21:a7:9b:37:26:
c3:6a:b9:aa:be:72:b7:04:f9:e7:b9:27:0b:53:61:
1b:d8:30:fa:71:0c:b2:cb:0b:32:dd:0e:96:ca:67:
38:c5:9d:48:83:f2:8b:23:dd:d7:37:88:fe:86:29:
fe:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:BA:5C:78:E6:0D:28:9B:84:D3:38:6B:E8:D8:9D:69:CF:83:B9:B8
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:bc:42:6a:4d:4c:44:d6:e0:3f:a0:44:72:ca:18:2d:fb:47:
7b:00:4b:3d:1c:22:e6:b0:8c:14:36:d7:53:1a:48:f1:36:32:
8e:eb:d6:aa:eb:05:36:d6:31:01:41:9c:9b:c7:cb:f9:b6:cb:
21:23:f2:54:42:84:7f:68:a6:74:7e:d9:aa:53:3a:c7:1b:d3:
61:2b:c5:b8:37:58:69:29:98:34:06:c1:30:1d:54:76:bd:15:
b6:c7:74:27:0f:4c:78:54:e7:39:a3:1b:14:0f:e2:ff:4b:db:
dd:39:73:38:a8:0f:56:a5:12:32:91:b5:be:3d:5d:89:b4:00:
05:4c:0f:18:42:0d:47:6f:4b:d4:b9:56:89:49:da:71:08:41:
79:be:62:3e:f1:e0:22:90:c9:00:59:c1:83:73:f9:34:1c:32:
fa:b8:5c:58:e6:22:37:54:a4:06:86:c9:fe:b3:b2:e3:68:67:
1e:89:19:1b:10:df:1e:5d:ca:cb:f6:cf:6d:24:8e:32:8f:8c:
2d:1a:00:85:df:08:8e:a5:ed:ca:5c:4e:b8:59:f8:da:52:77:
c8:fe:0b:b6:ca:4e:01:dd:c2:9f:96:3a:6f:d8:10:cc:e1:05:
f7:de:16:59:e2:2f:37:b0:80:02:0f:41:2b:4d:09:52:2a:85:
0c:66:6b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:31:06 2025 by rpki-client