Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
File: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft (raw, json)
Hash identifier: 3MpTrzROmqOszdJ9n++OPdOAhQK7VJKliHIkAthQp7A=
Subject key identifier: ED:F8:EB:89:D2:BA:51:DE:B5:0F:86:55:5F:00:1B:0F:4E:1E:D4:3D
Authority key identifier: A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07
Certificate issuer: /CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07
Certificate serial: 0198D583876A68F2129326702D0998B4305A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
Manifest number: 03D8
Signing time: Sat 23 Aug 2025 06:00:23 +0000
Manifest this update: Sat 23 Aug 2025 06:00:23 +0000
Manifest next update: Sun 24 Aug 2025 06:00:23 +0000
Files and hashes: 1: CmAE8B1t5vtl2bRQPtAcN7cxb3s.roa (hash: EUyII4SPPS8NnneMNy5H1gGoK71/rhaPmoIV02VhFv0=)
2: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl (hash: h1e0786AXsQpk4QJql2sTkGp/G99qWg6QTHK+cvAwcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:87:6a:68:f2:12:93:26:70:2d:09:98:b4:30:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07
Validity
Not Before: Aug 23 06:00:23 2025 GMT
Not After : Aug 24 06:00:23 2025 GMT
Subject: CN=edf8eb89d2ba51deb50f86555f001b0f4e1ed43d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:dc:5f:80:f9:24:9e:f9:1a:b1:86:f3:d5:9b:
ad:f7:3f:88:e7:68:ce:a5:12:50:ff:7e:16:2f:8b:
eb:6f:d7:a8:a8:0c:f6:df:46:ff:72:88:ec:c6:28:
83:41:c3:3b:c1:5f:cb:cd:5a:d2:3b:ee:49:06:be:
11:29:33:06:f7:af:68:80:62:e5:87:c6:de:04:e4:
db:22:23:51:58:4b:b4:3d:80:60:a7:aa:f6:6b:dc:
a1:af:82:3b:56:30:73:a0:b0:35:89:6f:9c:f8:52:
3b:83:4a:21:92:af:16:14:f7:27:85:95:70:02:96:
cc:7a:df:5b:97:8b:28:bf:dc:7d:c5:35:f6:4a:47:
93:41:cd:44:88:d7:8b:3e:c7:b8:91:fd:cf:b3:21:
be:6b:19:f9:b9:86:2b:b7:ca:e4:51:b4:a3:40:e6:
d7:d7:4d:df:78:84:0e:0b:ec:c4:df:53:df:3d:78:
80:52:4d:6a:b9:a7:fc:a7:cd:84:83:6b:eb:ea:48:
d6:a6:ca:71:ee:89:d0:4c:b4:1d:a8:d4:1c:6a:75:
66:a6:37:7d:c6:07:1a:0d:0a:11:36:f5:62:a6:8d:
67:11:e6:6f:0a:d0:cb:e3:7b:4d:ff:62:a4:8c:f1:
32:73:98:da:da:91:89:a4:f9:aa:89:2b:c9:cd:e0:
28:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:F8:EB:89:D2:BA:51:DE:B5:0F:86:55:5F:00:1B:0F:4E:1E:D4:3D
X509v3 Authority Key Identifier:
keyid:A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:3d:77:cb:70:b1:35:48:20:6c:6f:29:27:df:55:ee:6b:f2:
48:41:b6:de:34:1f:68:2c:ab:04:57:83:59:a4:d6:59:37:b6:
dd:06:ca:52:75:5e:97:a8:ad:45:fc:fa:b5:08:0e:5d:6c:1c:
b2:9d:94:26:cd:73:05:1d:05:85:37:19:32:63:8e:ff:71:17:
8d:f3:7c:5d:3b:d0:e1:ce:7b:11:89:5c:50:88:d4:6b:4a:b0:
fa:b7:62:ce:8f:a5:f4:17:11:ea:3c:52:84:8d:0d:8e:43:ac:
9a:a1:75:94:3a:f5:3f:f4:bc:ae:24:4f:e2:ec:c2:cb:f4:e7:
89:35:3c:d7:9e:25:9e:9f:01:24:e8:36:9e:10:58:71:64:49:
6f:a6:c5:46:61:d9:8b:56:1e:8f:cc:09:5a:63:8b:35:20:a1:
94:4d:14:61:96:e3:fd:5e:7d:ff:a6:3d:7e:ef:d7:66:82:92:
8d:63:f8:56:dd:f8:9a:b3:07:e0:11:ad:47:22:36:07:40:27:
87:7c:db:9d:32:52:af:73:b3:24:c3:e0:e7:1d:36:6f:f5:a9:
7a:87:bd:5a:c2:9b:ec:76:00:0d:bf:e6:26:bf:a1:c5:05:72:
83:15:58:8b:e4:75:91:06:85:20:e5:6d:47:43:52:05:c3:e8:
38:d6:42:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:18:25 2025 by rpki-client