Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
File: oFa0I4Othizmo3StLKbTbCVNx7E.mft (raw, json)
Hash identifier: 6s1m0M0VkDmQStoed/wPm4+YuNu0ifO0Kop/4UKuGXU=
Subject key identifier: 85:9F:16:D9:B6:34:CF:7D:C5:99:21:79:69:C3:34:CF:AA:C4:26:34
Authority key identifier: A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1
Certificate issuer: /CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1
Certificate serial: 0198D583444783E249A7131BC9D7273EC745
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
Manifest number: 156E
Signing time: Sat 23 Aug 2025 06:00:06 +0000
Manifest this update: Sat 23 Aug 2025 06:00:06 +0000
Manifest next update: Sun 24 Aug 2025 06:00:06 +0000
Files and hashes: 1: 4GMh7fIw13Bz3DUcceuO2FBtK6M.roa (hash: E9IDQ7QjcqjZJIn5bDeaHNVCqS2wv2WqYXLU0FEPSXU=)
2: XJGEpCzB4loh5ef0k98ZvXtkA5A.roa (hash: ln2eCgW4Lb0/Z2WnRMYRLGIC+qtaz3YxPhhlJZ12csI=)
3: oFa0I4Othizmo3StLKbTbCVNx7E.crl (hash: S3KnCe4hXMHIl5ULwyYqlz48akrLcA1F2GarqvYo3Ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:44:47:83:e2:49:a7:13:1b:c9:d7:27:3e:c7:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a056b42383ad862ce6a374ad2ca6d36c254dc7b1
Validity
Not Before: Aug 23 06:00:06 2025 GMT
Not After : Aug 24 06:00:06 2025 GMT
Subject: CN=859f16d9b634cf7dc599217969c334cfaac42634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1e:4f:b3:7c:14:23:fb:2a:42:92:a7:99:5a:
b4:82:be:63:3c:0e:9f:d7:4a:ad:de:3f:fb:ec:0d:
5c:ac:f0:da:56:50:62:d1:ac:4f:45:53:f4:7b:df:
3b:a6:f5:ed:90:7c:1d:3c:38:50:63:4f:d4:d7:d3:
eb:01:c6:9b:e0:6b:4b:22:48:fc:f6:e9:26:77:2e:
eb:ae:cd:ad:de:2d:d7:01:30:df:77:46:67:18:de:
4e:8f:f4:27:1d:69:75:1c:16:88:2f:44:33:06:90:
ed:33:1e:a3:05:61:77:e4:4d:68:c6:e6:c7:38:dc:
4e:62:82:2c:53:02:98:9a:28:f8:f6:e0:30:cc:f9:
1b:72:7b:92:77:ef:31:fc:7f:ff:e2:00:92:eb:63:
ea:9d:ce:ad:b2:05:4e:71:65:ab:39:01:09:7b:75:
e5:f2:21:45:5d:a9:94:0b:83:ed:33:83:54:44:60:
e6:44:85:ba:61:54:0d:34:ad:20:cb:5f:3d:8e:36:
90:0c:7a:f8:34:e6:a7:06:2e:a2:7c:24:06:9b:e4:
4e:63:a2:98:79:88:ea:01:ba:56:52:c5:59:e6:13:
d2:fd:e8:e5:da:9d:72:97:1f:86:1c:0e:75:ef:f0:
da:b2:45:cc:04:4f:5a:26:df:1d:3f:2f:cd:0e:ba:
a0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:9F:16:D9:B6:34:CF:7D:C5:99:21:79:69:C3:34:CF:AA:C4:26:34
X509v3 Authority Key Identifier:
keyid:A0:56:B4:23:83:AD:86:2C:E6:A3:74:AD:2C:A6:D3:6C:25:4D:C7:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oFa0I4Othizmo3StLKbTbCVNx7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/3e8dcc-a764-44be-b507-9b3dd417c308/1/oFa0I4Othizmo3StLKbTbCVNx7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:86:98:5a:73:ea:f5:7d:ac:89:77:35:2d:9b:3e:b7:ea:28:
c9:1f:29:8a:91:c8:74:0d:fe:88:93:c5:91:61:d7:4d:ee:b5:
13:6f:8d:a4:45:e5:0f:56:ad:52:62:9d:7f:a6:c1:a8:e9:1b:
64:bd:ee:80:cc:52:0f:ab:ae:a2:bc:5a:be:f7:b9:77:d5:db:
e3:4e:6d:f5:0f:e8:82:f3:45:f9:8d:f6:78:3a:ff:a7:1d:5e:
3d:64:f5:e7:66:1c:c7:c9:2e:40:19:02:7c:22:b0:67:90:f9:
33:64:48:74:af:4f:bf:95:77:8e:77:c1:07:ff:f3:66:09:2e:
31:15:57:ff:9d:1b:44:2c:b2:9a:bd:dc:da:fe:ff:dd:a2:7e:
93:7b:d5:35:27:2c:75:0c:37:16:9f:77:0a:8c:2a:85:27:d3:
3e:1c:ae:a5:9e:ac:aa:60:d6:36:cc:18:fe:a9:eb:24:15:65:
c4:4e:54:46:3d:b0:3f:a2:6d:4f:ef:e3:97:7f:6b:6e:28:0e:
d2:83:b5:ea:4f:40:c6:8c:54:90:89:2c:b5:5d:c8:8e:36:88:
aa:3a:94:47:9c:5b:1c:c2:46:4d:b0:0b:a4:e7:d7:c9:c1:7a:
1b:b5:7e:41:94:ca:e8:92:40:f1:a8:2f:08:77:61:8f:7c:a5:
fa:11:23:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:57 2025 by rpki-client