Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
File: oCN2bGLetRKXFVcI7MtCHIsEeAo.mft (raw, json)
Hash identifier: A1VHzne7qa+lu3Zpkfx1EiU8+K1cco3PlpTN/a60cis=
Subject key identifier: 07:3D:3B:71:01:B2:F5:72:36:3C:8E:83:77:19:2C:68:D0:5C:CD:63
Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a
Certificate serial: 0198D54EAA2CF5056A3A95FC1450F67AB6BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
Manifest number: 139B
Signing time: Sat 23 Aug 2025 05:02:39 +0000
Manifest this update: Sat 23 Aug 2025 05:02:39 +0000
Manifest next update: Sun 24 Aug 2025 05:02:39 +0000
Files and hashes: 1: CHrue45DLIyJD4ONNTGJ0TL9VsA.roa (hash: u/OfuNsymZa5oGvy4EyVltbtk9eDJK5E1jdXxm1UcXE=)
2: oCN2bGLetRKXFVcI7MtCHIsEeAo.crl (hash: dglzsUkAJn7KvtaRt1mHnE3ze5S3ML1plpa98JV2nAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:aa:2c:f5:05:6a:3a:95:fc:14:50:f6:7a:b6:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a023766c62deb51297155708eccb421c8b04780a
Validity
Not Before: Aug 23 05:02:39 2025 GMT
Not After : Aug 24 05:02:39 2025 GMT
Subject: CN=073d3b7101b2f572363c8e8377192c68d05ccd63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:93:fc:5d:24:48:20:de:99:43:28:7c:a7:45:
f0:7d:ff:36:1f:bf:aa:2a:e8:5b:b7:c4:f3:22:d9:
ef:6f:7e:a1:ab:7c:56:c5:b1:0c:e1:63:4e:4d:58:
b4:da:34:fb:ae:88:33:5c:a8:a4:4c:5d:75:e1:01:
9a:71:59:56:0e:d7:7a:22:ef:05:ca:86:e4:20:14:
e0:75:96:33:1b:c1:81:ba:bd:87:f5:84:1c:5e:b7:
52:8e:fa:99:3b:ee:fa:f5:a6:8d:47:e0:9e:2a:9e:
df:a6:e6:90:0a:f5:c8:ce:fc:e7:c5:6e:5a:52:6e:
72:0c:20:d6:0f:c9:46:d7:66:05:20:e6:0e:a6:a0:
ea:cc:4d:76:86:1f:14:b5:71:a0:54:9a:1a:90:d5:
43:d3:de:85:6e:91:af:68:9d:7f:b3:1f:11:1b:b8:
c6:4c:be:8c:a9:c8:85:57:f2:84:52:a4:8f:b1:a8:
2f:9f:d3:e0:73:ca:46:fc:98:4b:e8:91:0c:98:a8:
d9:00:9b:77:7f:f1:a1:ce:01:b8:b2:29:f2:b6:9f:
15:95:a5:0b:b4:2b:ee:c7:6c:21:f8:50:26:de:0a:
b2:a7:81:ad:ff:c0:b2:e2:ea:cb:ad:c0:1c:c6:32:
a2:17:47:83:3b:89:b3:35:ca:e1:21:f7:76:67:15:
5f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:3D:3B:71:01:B2:F5:72:36:3C:8E:83:77:19:2C:68:D0:5C:CD:63
X509v3 Authority Key Identifier:
keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:38:97:d5:a3:4d:33:47:57:cf:89:3e:a5:69:9c:db:8d:3b:
14:d8:d7:bf:b1:fe:0c:83:d5:0c:13:a9:cf:73:70:13:ce:0f:
a8:85:b2:7f:66:73:66:0c:4f:03:2f:e9:a4:17:81:12:42:dc:
be:15:3e:ce:fc:32:e0:5e:62:dc:85:ce:b8:68:58:e8:88:5c:
47:b6:7a:5f:7e:c7:aa:82:65:a5:f0:c5:0e:e9:5a:82:39:74:
78:63:63:23:38:fe:7c:76:08:a2:28:fe:1b:f3:ea:6a:40:77:
a3:f5:a1:ae:bf:20:82:81:6d:4d:6c:2c:08:18:86:db:ce:09:
63:67:fb:d4:64:91:38:df:02:cf:f6:c0:95:72:d3:2e:c8:4b:
73:f7:16:0d:cc:60:95:1b:5a:b5:01:87:dc:52:21:e6:32:5d:
ee:8c:51:9b:2f:74:b9:d0:c9:12:4e:5b:49:af:a7:98:ef:2f:
ef:ff:0c:49:1d:c1:bc:7f:56:c6:e6:01:41:73:ac:c8:75:da:
31:d7:5d:ee:ed:50:10:c6:8b:5a:77:cf:ce:82:bf:2b:7b:57:
44:69:37:96:23:ee:06:92:a9:37:33:4f:e0:c9:8e:8f:b3:97:
92:b3:80:cc:80:70:86:d2:2a:e4:68:8f:c8:f2:bb:7a:3d:7b:
7f:f0:32:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:36:19 2025 by rpki-client