Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
File: OACZqBs0b5q8ryYFb1t3CU0c8RM.mft (raw, json)
Hash identifier: l6LF9zTkIPf+gZ2ktBcp7AVt1E/+X3kI5C9ZkxHFgbs=
Subject key identifier: E0:D7:DA:BA:00:26:56:D7:DF:94:6B:91:62:8A:0E:D7:1B:69:98:1C
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 0198D54DF014F5B11C868A8A9B2487325C3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
Manifest number: 1651
Signing time: Sat 23 Aug 2025 05:01:51 +0000
Manifest this update: Sat 23 Aug 2025 05:01:51 +0000
Manifest next update: Sun 24 Aug 2025 05:01:51 +0000
Files and hashes: 1: 8uKSKM8TVx970yK_aHmjajWuHlo.roa (hash: Kv8ysTx9zq+WIfK6VNPlttN4b3mr4mqd5LylYbnznig=)
2: 9pCmbwuWDKFww6JalPNjMXiQ2uc.roa (hash: crRW/IaBwcSVgY89PTYbAz61UCGYjtm5jlog0eAP9F0=)
3: DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa (hash: fuVQXP2ZqWav/yCgsPsm3fiqqB9eYt0wXu73N33zIys=)
4: F-WM6V0pDS_ngxIgpNgM_SOKzXs.roa (hash: YycRdDyGTbaVD3BQBXWfEPp9cD6S80QfheVTwZQO9zE=)
5: OACZqBs0b5q8ryYFb1t3CU0c8RM.crl (hash: cJT2jrTsMjIyJKkgS08RWSbb7NHDz5R2MBYAnchfIKk=)
6: Ox8NDyO7Lu2pVppSpwPpBrklgoc.roa (hash: cdngPKwKptE72CQ/axAKXaUmzgT1mhIjk6pmelzFUgg=)
7: W0I5WxQMrOu6TANHFOGcvsplCew.roa (hash: as8TMPog4cNQstxcdryoIwh9zVe/CWxue8zaTtgppZI=)
8: drQvOj9TpOHRytlyOo6kxATgZOw.roa (hash: 4wVUz15BtyiS24LCP9jZgWAlCIUKAL3+afNKe8X1w18=)
9: qwwHopD_0G8M1Je41mhruAKGMpE.roa (hash: aHrYRaDs2jeGMQeUQIc+2frl2SVKEgdlFJTzXtA4yQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:f0:14:f5:b1:1c:86:8a:8a:9b:24:87:32:5c:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Aug 23 05:01:51 2025 GMT
Not After : Aug 24 05:01:51 2025 GMT
Subject: CN=e0d7daba002656d7df946b91628a0ed71b69981c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:12:10:6e:fe:33:31:77:ef:8c:93:fa:df:12:
c6:22:ba:82:2c:e6:47:cf:e9:df:66:57:ff:c1:5c:
26:ae:f9:53:36:48:4b:f2:ca:9d:08:28:ab:3a:0b:
09:9a:d8:10:a1:5a:8e:9a:fa:c0:55:62:2a:3d:76:
3d:7c:3e:8f:ac:ba:bf:e2:05:9c:ac:ac:cd:da:bf:
a8:bb:c4:d2:1f:b5:ff:3c:62:6a:de:cc:5b:2c:1f:
8e:20:61:74:73:77:b7:82:80:2a:d6:fd:4e:42:4f:
f1:22:d7:e1:3d:c1:bb:e3:bd:38:13:31:ea:3b:6a:
6b:00:84:0f:55:a9:82:ee:16:58:36:ce:8b:3f:38:
f1:00:84:cd:97:9b:a4:9b:eb:92:18:6c:67:e1:06:
bb:fb:1f:51:a2:f9:42:4e:3c:d3:4e:e8:80:28:79:
5d:32:cc:54:a3:74:88:f8:e4:8b:06:0d:ca:bf:69:
58:31:cf:41:23:10:a7:cb:b8:c3:00:1d:6c:92:81:
66:af:f8:b1:42:9e:2e:58:14:02:f0:13:bb:8a:75:
4b:83:4f:2c:a4:35:05:89:4f:c4:86:90:1c:1e:7e:
3d:2a:4c:cc:aa:6f:c0:03:31:c1:14:40:c5:7c:94:
2a:5b:9e:60:e5:5a:ef:c5:de:ab:30:41:eb:dd:39:
1c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D7:DA:BA:00:26:56:D7:DF:94:6B:91:62:8A:0E:D7:1B:69:98:1C
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:83:dc:91:d0:2c:4f:c0:9a:22:3f:fd:c2:83:04:ee:83:33:
9d:03:f0:26:a4:6c:f3:05:f0:f0:5f:7c:a4:12:23:2c:e7:6c:
aa:a0:15:a9:f9:63:c3:5d:b9:ae:72:0b:79:b5:63:6a:9f:77:
45:20:50:89:a0:d8:fe:76:0e:48:70:dd:d3:01:9c:f2:3a:e0:
99:af:7c:f3:44:4c:9f:84:88:08:91:a4:cf:60:67:10:b5:ff:
85:46:66:14:bd:71:6d:10:0b:69:91:c7:3b:fc:9d:49:e0:17:
2c:e7:69:fd:c3:d0:5f:51:d1:f9:ea:d3:37:aa:1f:de:2f:59:
80:fe:66:a9:48:c8:52:5b:cf:0d:b9:90:bd:dd:4c:f9:2b:9c:
2a:f2:68:2a:3b:0f:70:9c:a8:1a:27:b2:80:a2:f7:d0:7e:30:
97:3b:16:66:84:af:22:d9:77:68:3c:23:94:9c:58:33:34:79:
25:8e:5f:06:7d:94:d6:7a:c1:09:88:1f:53:7e:57:58:72:41:
4c:73:22:20:0a:f0:18:b7:36:1f:e5:24:08:e4:8e:de:5f:df:
a8:bc:9a:23:41:9f:c1:e8:59:f1:8c:6f:83:c4:91:47:6a:8c:
1e:b1:bf:9e:42:24:72:78:06:72:4f:0a:51:76:0d:f4:e2:69:
38:79:d4:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:38:54 2025 by rpki-client