Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
File: OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft (raw, json)
Hash identifier: ngvVAG7UTdLALwslCAJUFSs05yVBRdXU8KMxB/HKUNw=
Subject key identifier: 24:31:61:3D:7C:24:93:91:93:E7:0F:58:20:1B:56:F3:E7:18:7F:40
Authority key identifier: 3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51
Certificate issuer: /CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351
Certificate serial: 0198D4A7F56808B9BCCDEEBA239DADFDDD20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
Manifest number: 1063
Signing time: Sat 23 Aug 2025 02:00:33 +0000
Manifest this update: Sat 23 Aug 2025 02:00:33 +0000
Manifest next update: Sun 24 Aug 2025 02:00:33 +0000
Files and hashes: 1: OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl (hash: Ku0GA3GMACHs3Us7Cb5AvPubrO13A3+ae1SKPPGyNDU=)
2: fmsKsNJsScyYZyH8RUfSLeG-UJA.roa (hash: XWgPxzT1eqv4he1A7biAZG6QqWis59ng7mldQueWS0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:f5:68:08:b9:bc:cd:ee:ba:23:9d:ad:fd:dd:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351
Validity
Not Before: Aug 23 02:00:33 2025 GMT
Not After : Aug 24 02:00:33 2025 GMT
Subject: CN=2431613d7c24939193e70f58201b56f3e7187f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ea:fa:54:72:4a:63:78:7a:0a:66:c5:1a:6d:
5e:21:45:d6:18:b9:43:f9:10:43:89:d5:7c:e5:38:
f3:11:92:3e:78:b9:84:f9:5c:94:d5:0f:36:b8:46:
0e:15:04:ba:05:dc:70:ad:02:d4:fa:1b:0f:de:63:
2b:3a:7e:77:f6:a7:b1:d8:c2:36:e2:11:cf:0b:c1:
22:95:62:29:b4:1e:05:3e:41:25:0e:ba:10:15:77:
c0:e3:13:1c:ed:23:7a:58:b3:91:a6:b0:f9:ee:c2:
b6:36:7a:ef:4e:2d:06:3b:b3:25:84:f1:aa:be:5b:
af:86:2d:47:0f:fb:37:7d:9d:8e:0c:95:2f:26:db:
6d:bd:d1:17:1b:03:21:fa:9d:a7:0a:68:11:1f:b5:
e4:1c:00:46:d7:97:47:7c:b2:04:28:e5:b8:bf:9b:
b7:19:44:d9:9d:45:1e:66:08:72:92:61:a5:aa:37:
7e:3e:0b:1f:02:06:4b:08:fd:87:a8:b9:a5:d3:67:
fe:be:ab:e4:c8:99:65:ae:4d:c3:51:4f:a2:90:66:
ab:c1:be:9b:a5:94:ed:a8:c5:8c:1c:77:8e:a8:49:
1f:5e:a5:68:66:b0:12:11:e3:51:a3:c6:ca:df:79:
c4:d7:c1:69:f0:57:84:52:3d:8e:b8:89:64:50:d3:
9d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:31:61:3D:7C:24:93:91:93:E7:0F:58:20:1B:56:F3:E7:18:7F:40
X509v3 Authority Key Identifier:
keyid:3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:e0:47:5a:32:ac:b6:fb:91:6b:92:41:ff:08:d1:a7:30:ee:
61:23:64:e6:af:67:c6:5b:34:c8:49:9c:7f:7e:c5:54:f0:09:
58:33:98:cb:df:d9:e4:98:b6:cc:23:4b:a4:17:ab:14:f2:25:
a1:d2:8e:b2:d6:92:40:fb:e1:90:10:0e:d8:a3:53:b4:85:f1:
53:98:1b:b3:ce:eb:a3:10:05:84:aa:9a:94:5c:2b:2a:ad:97:
ae:e7:4a:91:06:4a:03:fa:e3:77:e0:16:2f:c7:06:6b:aa:92:
3f:b9:62:1c:50:d2:20:0c:12:66:56:3f:00:6f:62:c8:ca:4d:
72:8d:43:61:e4:ba:48:a8:9c:85:e6:81:c4:78:19:74:6c:8a:
64:bc:96:69:b2:da:70:1d:71:1b:b9:b0:85:5a:f0:48:c6:a5:
71:70:f1:4a:c5:80:67:1a:31:d0:8f:f0:c9:cd:58:84:a3:f0:
cc:ba:90:31:ef:1d:06:96:b3:ca:e4:e1:48:7d:01:a1:f0:ad:
ea:a3:13:94:60:88:52:70:d4:90:25:a9:4f:f4:e7:0c:8a:e6:
d9:b8:0d:03:23:a2:66:fd:c2:de:08:a9:5d:ec:b8:89:d1:d1:
c1:fb:19:dd:2c:d6:59:83:ef:76:f6:1c:0d:3b:72:ac:7f:4f:
3b:a9:7c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:05:37 2025 by rpki-client