Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
File: OACZqBs0b5q8ryYFb1t3CU0c8RM.mft (raw, json)
Hash identifier: 8tktywUK3udzqqlm5YDSwunAz+YL3bscz0czlnCVecc=
Subject key identifier: 1D:DD:CB:E7:F4:D9:6E:20:0D:D0:BD:B0:32:9D:FB:6A:FB:10:E9:5D
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 0197B820C14890E3BA08719671407ED97434
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
Manifest number: 15BD
Signing time: Sat 28 Jun 2025 20:00:43 +0000
Manifest this update: Sat 28 Jun 2025 20:00:43 +0000
Manifest next update: Sun 29 Jun 2025 20:00:43 +0000
Files and hashes: 1: 8uKSKM8TVx970yK_aHmjajWuHlo.roa (hash: Kv8ysTx9zq+WIfK6VNPlttN4b3mr4mqd5LylYbnznig=)
2: 9pCmbwuWDKFww6JalPNjMXiQ2uc.roa (hash: crRW/IaBwcSVgY89PTYbAz61UCGYjtm5jlog0eAP9F0=)
3: DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa (hash: fuVQXP2ZqWav/yCgsPsm3fiqqB9eYt0wXu73N33zIys=)
4: F-WM6V0pDS_ngxIgpNgM_SOKzXs.roa (hash: YycRdDyGTbaVD3BQBXWfEPp9cD6S80QfheVTwZQO9zE=)
5: OACZqBs0b5q8ryYFb1t3CU0c8RM.crl (hash: ivid7NYr2c5ManlHoBr/QFwdsO7KzfOOgDyozqVyS3I=)
6: Ox8NDyO7Lu2pVppSpwPpBrklgoc.roa (hash: cdngPKwKptE72CQ/axAKXaUmzgT1mhIjk6pmelzFUgg=)
7: drQvOj9TpOHRytlyOo6kxATgZOw.roa (hash: 4wVUz15BtyiS24LCP9jZgWAlCIUKAL3+afNKe8X1w18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:c1:48:90:e3:ba:08:71:96:71:40:7e:d9:74:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Jun 28 20:00:43 2025 GMT
Not After : Jun 29 20:00:43 2025 GMT
Subject: CN=1dddcbe7f4d96e200dd0bdb0329dfb6afb10e95d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:0c:e1:bd:23:9c:7d:54:27:1c:2a:fe:f0:16:
92:95:30:a2:76:02:ac:cb:d7:43:1d:72:7e:6d:a2:
d5:6e:9a:24:50:07:e1:06:3b:17:f5:b6:31:18:b9:
6d:b7:1d:8a:f1:40:6e:02:f0:f5:3a:9f:d6:49:c6:
6b:8c:24:fc:18:48:1e:5d:dd:50:10:f1:f5:25:d3:
82:bc:c4:b3:99:5f:6d:b6:b3:8a:3b:f2:46:ee:92:
e4:d4:cd:e4:97:07:e6:11:b2:2a:ba:3c:ef:c2:d4:
04:64:d6:bd:44:47:ab:f7:61:29:f1:9f:e6:84:40:
b4:ec:fa:e2:4e:ad:e0:2f:a3:30:6b:fb:9d:0d:bf:
42:fc:70:ae:72:44:cc:4a:84:75:2f:14:b4:da:3c:
50:9d:03:a1:d9:6c:b8:75:c1:6c:1f:ce:6f:a8:eb:
76:c3:cb:55:a8:c3:45:58:8b:39:bc:63:0e:83:7d:
79:00:91:49:9d:68:01:45:90:05:55:3b:a7:7e:7b:
d6:ee:14:c1:96:2b:1b:33:d1:8f:ba:a3:3d:be:3f:
58:17:07:17:0f:3d:e6:1c:e0:f6:40:69:30:ba:ec:
f3:d4:02:70:5b:af:40:f2:23:2e:38:58:6d:f9:5e:
31:87:28:d6:15:00:c3:53:49:c4:70:bb:44:10:54:
1e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:DD:CB:E7:F4:D9:6E:20:0D:D0:BD:B0:32:9D:FB:6A:FB:10:E9:5D
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:36:37:65:a3:b0:96:70:46:54:01:68:02:1e:02:06:06:90:
ec:6d:25:6f:6c:1f:13:92:43:5c:ea:cb:1b:2f:1a:0a:11:e0:
cb:14:48:99:64:01:a2:33:c7:18:0d:b5:6b:47:d9:6c:c7:28:
75:9e:e9:bb:12:df:e4:97:db:fe:73:b3:9d:9a:1f:46:f9:fa:
a3:e6:c5:b4:9b:52:e1:e1:42:3f:51:e4:77:8f:d6:20:de:9b:
02:cf:0c:f8:4d:ec:21:96:6d:54:15:16:63:c2:ed:93:a6:7e:
9b:2b:e4:f1:48:68:9b:19:c2:88:be:aa:17:c2:c1:9e:c3:39:
94:82:d7:b0:96:43:a5:d0:57:e0:d6:2a:0e:24:5d:72:5d:b5:
99:42:91:60:72:5d:fb:44:98:45:38:99:78:82:cd:29:59:d0:
d7:4b:76:47:db:56:b6:ec:2b:93:6b:68:13:4c:62:19:3d:c7:
6b:e7:b5:b7:93:1d:81:fb:94:c7:d9:9c:a2:12:68:d7:0d:a2:
da:11:8a:fc:78:e9:7c:98:5f:3d:1b:a2:ad:bf:e0:59:73:f2:
73:98:2e:d7:1c:76:2c:ac:ef:7b:01:39:7f:7c:12:20:1a:ac:
b5:61:8d:de:8c:32:85:6f:11:5b:d9:77:11:b6:f1:04:df:86:
f8:6f:ad:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:42 2025 by rpki-client