Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: 9cwa+tmm4cupKC8y6ZmyAxEcvfmc0vNyywgTV5VNGpU=
Subject key identifier: A7:3A:60:F8:73:18:5A:CE:88:75:B0:28:EA:A5:37:61:51:A6:02:8F
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 0198D54DEEB830D721EEE0BB4370EC7F1232
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 163A
Signing time: Sat 23 Aug 2025 05:01:51 +0000
Manifest this update: Sat 23 Aug 2025 05:01:51 +0000
Manifest next update: Sun 24 Aug 2025 05:01:51 +0000
Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: 9sQnD0opIo7JViKAp/KQBoMGv+t8A9o2tJvIg+mne/c=)
3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=)
4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=)
5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:ee:b8:30:d7:21:ee:e0:bb:43:70:ec:7f:12:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Aug 23 05:01:51 2025 GMT
Not After : Aug 24 05:01:51 2025 GMT
Subject: CN=a73a60f873185ace8875b028eaa5376151a6028f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0c:e3:b2:a4:06:91:57:f8:f3:e7:3e:19:69:
a9:38:e2:43:32:9b:91:49:82:e2:b6:56:fe:3f:20:
e9:af:a3:c1:da:29:5f:35:06:1c:6b:f6:1b:c7:ce:
b4:75:95:82:14:94:e7:ee:48:c5:f0:98:15:fa:c0:
b2:cd:fc:dd:c0:64:1c:69:18:47:90:8f:44:55:f9:
09:f4:fc:f0:63:fa:eb:f8:32:e7:f3:3b:cb:93:01:
89:8a:8e:5a:0d:94:a2:e1:ff:d5:7d:ab:00:5f:55:
21:5d:c5:9c:9f:5c:0b:2a:74:d7:33:3b:7f:ec:7b:
4b:5f:48:50:24:f9:35:2e:ea:1b:9f:64:10:bb:01:
bb:dd:8a:e1:ac:e2:5a:1c:c3:a1:e9:08:04:87:78:
83:f2:8f:4b:58:35:04:de:cd:ae:22:2e:e7:2e:19:
90:a0:fb:fa:b9:a7:2c:e4:ea:ca:b1:5a:8b:31:9a:
25:17:11:0c:e4:d6:e5:7b:a1:3c:be:b9:a4:d7:e6:
00:e1:bf:c6:f4:b7:16:9d:78:a4:2f:08:fc:82:cb:
95:95:c7:8e:04:b7:bd:e1:75:84:5b:9c:dc:b3:b2:
d7:e7:94:0e:57:9c:70:2c:f9:78:d7:24:b1:fb:df:
0d:08:0d:9b:83:ee:d3:ad:36:b1:76:7b:47:22:f5:
2c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:3A:60:F8:73:18:5A:CE:88:75:B0:28:EA:A5:37:61:51:A6:02:8F
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:2c:a9:aa:5d:8f:42:50:b5:c4:23:b3:3b:5a:16:5f:60:cb:
7b:77:3b:d0:7a:1e:d3:5b:84:ae:4a:12:9a:ae:d7:8b:d8:61:
e3:02:84:e8:d8:48:6a:bf:d2:17:79:1b:93:18:97:9c:c1:01:
32:e4:23:ed:d9:cd:83:9d:1e:9f:57:e9:31:91:49:a8:55:ef:
17:d1:92:7b:66:6d:ce:5f:75:ad:94:ce:b8:53:5d:15:d9:d0:
f3:8c:ee:8e:bf:5b:a6:e5:d4:39:45:6f:c4:47:82:97:4a:a2:
0b:62:5a:30:7b:45:c6:3f:a7:6f:ee:a2:c3:08:1c:ae:9d:d6:
ad:be:97:f7:e0:1b:ed:4d:58:db:72:b9:8c:52:86:69:78:11:
61:7a:1c:24:c4:29:af:ba:ee:c3:93:fc:7f:3d:c5:91:a1:21:
19:5c:f9:58:67:a8:2e:81:f1:84:64:ec:3d:98:41:3d:ff:69:
68:a9:fd:55:55:40:9c:b4:10:43:db:42:15:0d:e7:4b:85:f7:
25:d3:f3:c9:83:00:b2:cb:93:5d:23:af:35:0a:7f:b9:7f:e2:
06:1f:a3:43:b2:b8:37:06:42:b6:5e:45:72:4e:fc:dd:8c:7c:
54:e5:5d:20:98:17:fd:7f:de:30:4f:95:1b:9d:dd:6d:d7:0c:
5f:ca:ce:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:45:48 2025 by rpki-client