Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json)
Hash identifier: EbMG8Eoa6VAQMuXlv9eResZIwbVjU7HGi9X/MqPYWPg=
Subject key identifier: 64:8E:9A:BE:CE:BC:86:1E:4C:0D:04:8F:12:E7:21:90:C4:D3:6A:86
Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Certificate serial: 0198D54E480B1142DF279D20ECA3B7E3EEA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
Manifest number: 0629
Signing time: Sat 23 Aug 2025 05:02:13 +0000
Manifest this update: Sat 23 Aug 2025 05:02:13 +0000
Manifest next update: Sun 24 Aug 2025 05:02:13 +0000
Files and hashes: 1: 2bBaeD35kseI457ZAPL2x12So_w.roa (hash: oq5BcVgGKnzmBudzjO96n+tl2tyiGaHICIAPgJhlDTA=)
2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: Kh5noaqAuN1/w3bzdYTdgta6xeh4pBMZGSVMqdTAFns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:48:0b:11:42:df:27:9d:20:ec:a3:b7:e3:ee:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Validity
Not Before: Aug 23 05:02:13 2025 GMT
Not After : Aug 24 05:02:13 2025 GMT
Subject: CN=648e9abecebc861e4c0d048f12e72190c4d36a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6a:c4:3d:05:e3:e0:41:ca:60:49:04:ce:9f:
d5:84:2a:99:af:81:ff:b5:98:98:15:78:5c:63:4c:
8d:d3:1e:12:4a:6c:c8:8f:76:b7:d5:c6:b4:0d:e5:
ea:8f:e8:fb:21:bd:21:6a:d0:63:5e:e9:2f:58:cc:
58:b6:7a:ee:f2:bf:41:9b:26:59:2c:33:c4:0f:c5:
e0:48:fa:75:7f:6b:fa:72:97:e1:ca:5c:92:99:63:
c5:d4:cc:26:5d:7b:16:78:27:72:3c:46:99:39:3c:
5f:5d:c0:a6:da:49:eb:73:67:c0:ec:c4:9b:4f:16:
3f:5a:68:d0:b7:93:1a:1d:c7:7b:1a:30:29:76:bd:
22:39:67:60:4f:04:bd:7e:f8:c8:75:fd:e0:74:c4:
d6:c7:a2:1f:40:27:bb:09:25:0e:f4:97:1b:2a:6d:
d3:d4:76:d6:77:37:85:97:9a:53:24:d8:8d:aa:8d:
b4:b9:ca:4c:ec:0e:1a:6a:86:2d:d4:87:3d:2c:20:
10:b1:66:d2:4f:c7:f1:d7:31:18:0b:1c:02:4f:ec:
ad:d3:9c:5b:75:9a:03:5e:cd:33:d3:10:90:57:89:
ca:2a:dc:9b:0c:88:51:8a:6c:66:b3:da:d9:4b:e2:
a9:bf:50:f4:16:20:9e:04:a1:cd:ea:b7:31:01:3e:
cd:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:8E:9A:BE:CE:BC:86:1E:4C:0D:04:8F:12:E7:21:90:C4:D3:6A:86
X509v3 Authority Key Identifier:
keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:2d:d6:3f:af:66:c1:94:a3:2d:72:fe:03:c8:12:e9:0e:02:
58:42:a2:c4:bc:46:84:9b:7e:e7:54:ae:69:8a:b3:9a:0a:af:
ee:77:b8:a2:63:1b:61:29:b3:5f:79:17:b0:5d:bb:10:bb:00:
82:df:9f:f5:ac:dd:f9:ba:ca:53:9b:2f:8f:6d:57:7d:f5:d6:
f3:5c:51:6b:53:6f:5f:01:89:0a:36:24:6b:f9:6e:b5:e5:d8:
45:e9:e8:45:84:5a:f1:be:a7:94:70:11:b6:67:98:06:c7:71:
2b:fe:e9:54:1d:80:5b:bd:e0:3f:4d:a7:90:cc:b3:7a:a9:83:
79:af:20:e5:7a:f7:76:cf:37:64:64:9e:54:ad:7d:5a:44:8f:
1a:b6:87:cb:b7:84:39:45:67:9b:25:e9:17:f4:73:7a:f6:4d:
b9:03:27:38:45:80:06:2a:11:40:70:c1:26:1d:17:bd:11:4a:
ca:98:88:c3:cf:80:97:80:46:98:6e:39:c0:66:72:c6:ff:7d:
bd:82:ac:71:df:64:e7:36:ca:9f:15:28:d4:c1:67:0a:3e:15:
4c:54:f4:ed:08:f9:61:63:8e:15:76:59:2f:18:7f:ea:28:09:
b8:ec:2c:b0:27:f2:c5:0a:95:87:bd:d4:94:8c:0c:ce:05:d2:
b7:07:8c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:07 2025 by rpki-client