Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft
File: ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft (raw, json)
Hash identifier: Sn8GJLlqo+dOkMECFHhg+RWA02D+jAdPTClogpEKqrI=
Subject key identifier: FB:C5:3F:A2:ED:82:6A:2D:89:7F:5C:6A:25:A3:23:BC:BB:25:D9:E8
Authority key identifier: A1:C1:30:07:2D:2C:E9:CF:56:2B:83:19:8E:DA:AD:AF:A4:8F:6D:B4
Certificate issuer: /CN=a1c130072d2ce9cf562b83198edaadafa48f6db4
Certificate serial: 0198D5159C0A31C95F7E1D27DB3A2AC96459
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft
Manifest number: 0F1A
Signing time: Sat 23 Aug 2025 04:00:19 +0000
Manifest this update: Sat 23 Aug 2025 04:00:19 +0000
Manifest next update: Sun 24 Aug 2025 04:00:19 +0000
Files and hashes: 1: JyWi5BFZcLnbfEzmECOIrpo9WqY.roa (hash: BGeaCEXgvEq5NNxKl+Ag2+yFWkLD9Y1n05TPe3xR8kw=)
2: ocEwBy0s6c9WK4MZjtqtr6SPbbQ.crl (hash: JichEn3LXqytl+T1HIi4KFevBoChgLVMeo5EuuLzc+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:9c:0a:31:c9:5f:7e:1d:27:db:3a:2a:c9:64:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1c130072d2ce9cf562b83198edaadafa48f6db4
Validity
Not Before: Aug 23 04:00:19 2025 GMT
Not After : Aug 24 04:00:19 2025 GMT
Subject: CN=fbc53fa2ed826a2d897f5c6a25a323bcbb25d9e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:09:75:79:1e:dd:d8:a4:0f:df:7b:e4:9f:a4:
32:17:b5:5c:c0:c7:f4:af:cc:c1:75:8d:5e:4a:03:
75:50:ec:f4:7b:a1:12:8b:af:cc:ef:2d:ae:bd:84:
f6:00:f3:f5:da:f8:d9:48:c0:50:ea:8e:ce:02:88:
6a:fe:a9:5b:ef:6e:d2:17:f2:43:e6:bd:58:d8:5d:
94:95:07:4a:d5:af:e7:7c:0e:b5:ed:ec:58:2d:8b:
bf:ee:e5:92:6f:fd:39:6d:91:66:44:82:cc:66:94:
3c:c4:8f:ea:e9:d1:27:8c:31:41:48:c9:40:c8:c3:
06:1f:92:6b:7f:90:e3:0e:04:5c:bc:92:f3:98:9e:
39:d5:3a:a3:65:60:b9:7b:25:1a:01:a9:2a:c0:2a:
e4:52:a2:a8:12:18:45:b3:9e:5c:4e:f1:f1:69:3d:
82:91:ce:3c:b4:0e:42:38:40:78:9f:e1:70:f1:c0:
55:1b:9e:a3:07:65:f4:ed:9a:db:a4:72:79:4e:f4:
67:7a:3d:2b:50:6a:19:06:65:86:a8:d1:24:38:ae:
5b:80:5b:1e:48:7f:99:81:6e:b3:04:55:df:c7:f6:
06:b0:8d:3d:58:63:82:b9:f7:6d:48:34:02:54:ae:
f5:55:c2:ac:ad:f4:c5:aa:06:e2:af:10:48:38:b8:
8f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C5:3F:A2:ED:82:6A:2D:89:7F:5C:6A:25:A3:23:BC:BB:25:D9:E8
X509v3 Authority Key Identifier:
keyid:A1:C1:30:07:2D:2C:E9:CF:56:2B:83:19:8E:DA:AD:AF:A4:8F:6D:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/f5bb51-708f-4dd2-880f-87d90561aa48/1/ocEwBy0s6c9WK4MZjtqtr6SPbbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:4f:d2:1a:85:0e:c9:1b:b1:54:a1:75:49:c2:0c:57:d7:7a:
0d:1a:d3:71:4b:6a:7e:e3:46:0b:0e:cc:a5:d3:6a:d0:4a:a4:
b0:86:7c:50:f4:e5:fa:aa:7b:f7:d5:cc:9b:2e:d4:c9:86:f9:
a0:c1:ae:c7:f1:83:01:0c:d9:36:11:2f:8e:42:25:7d:60:fa:
26:e4:7c:3f:64:1c:5b:9d:6e:f8:e9:26:b6:66:45:27:76:1e:
22:2a:6f:1b:dc:4d:b7:ef:95:31:f1:7e:45:c6:e3:bc:e6:04:
27:a0:55:85:b8:c2:84:cb:78:a6:fb:27:67:e5:eb:e9:1e:b6:
5d:0b:ba:a9:66:1d:b2:7b:44:43:cc:6e:06:b5:36:ba:27:d9:
c8:b9:83:25:2c:1a:9d:9d:d3:4e:59:f9:de:df:e4:c7:58:68:
f4:73:60:e6:c6:ed:dd:a1:e0:de:91:8e:f3:a3:20:4f:a0:00:
36:1c:92:06:26:ed:0e:5f:1e:ef:12:a8:82:1c:43:fb:8f:d0:
47:f1:8d:0f:c1:87:50:f0:ec:ce:fc:8f:9b:30:ef:8c:e6:fd:
60:4c:85:4d:46:51:68:26:b6:8d:9d:a1:00:7a:af:d4:27:da:
57:9f:61:83:20:6f:c6:59:2d:15:3c:70:26:5e:bb:0a:8c:e4:
26:78:7e:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:23:27 2025 by rpki-client