Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
File: oWldVVgkHgSoctwTRomPLOpw3-c.mft (raw, json)
Hash identifier: MBRP5AmvSCGJjIVNf4D4Mahg3IkaMMd69+Myg14ZkcY=
Subject key identifier: 3A:B8:AF:A3:CE:A2:6B:91:9C:D2:F1:2F:94:89:69:46:EA:E2:8E:26
Authority key identifier: A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
Certificate issuer: /CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Certificate serial: 019873AAD2BC21B4C13ED13CC555FCEA82A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
Manifest number: 05DA
Signing time: Mon 04 Aug 2025 06:00:31 +0000
Manifest this update: Mon 04 Aug 2025 06:00:31 +0000
Manifest next update: Tue 05 Aug 2025 06:00:31 +0000
Files and hashes: 1: GgU4V3exF_KMsbXxFhlxd1M5pl8.roa (hash: l8v1ZDd4kP5GR80G/4+UL0QS/Pev1eqpTKkPGhrjSW4=)
2: oWldVVgkHgSoctwTRomPLOpw3-c.crl (hash: QG7xkeirwATuH8NrEQe1keh4rmvQkMhptHZ43x1fpIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:aa:d2:bc:21:b4:c1:3e:d1:3c:c5:55:fc:ea:82:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1695d5558241e04a872dc1346898f2cea70dfe7
Validity
Not Before: Aug 4 06:00:31 2025 GMT
Not After : Aug 5 06:00:31 2025 GMT
Subject: CN=3ab8afa3cea26b919cd2f12f94896946eae28e26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:14:dd:8c:64:c8:b3:0e:31:57:69:d2:3a:31:
a5:2f:9f:64:2d:25:06:b5:72:92:c9:bd:7c:3b:a5:
d1:91:b0:30:b3:3a:e5:7e:3a:6f:f7:e4:b7:ed:5e:
5f:08:f5:48:e8:70:c8:42:a1:eb:c4:20:d2:b2:f3:
76:f4:27:8d:cd:03:ea:a2:42:01:35:c3:ce:72:1c:
bf:87:89:de:4e:41:9e:18:e6:4b:8e:fe:53:7a:d5:
d2:d1:14:e5:21:09:f5:02:1b:2c:d8:ef:34:ca:92:
f7:ef:df:b9:36:9b:22:6c:a1:f1:3e:31:80:dd:d5:
92:d0:e0:74:99:7e:19:64:75:71:ec:47:67:68:b2:
5d:1e:f8:f8:59:f6:0e:f7:45:e3:1d:f1:9b:a6:70:
51:cb:ad:fd:d6:60:6a:46:aa:db:0f:85:89:39:a7:
dd:c4:57:e3:81:24:87:30:79:bf:78:b4:41:b8:0d:
99:bb:d8:0a:d5:fb:d1:0b:4b:ca:ef:ef:34:f5:62:
e7:7d:cf:ef:29:55:18:b9:fc:34:9b:a3:c2:bb:8c:
45:44:57:96:ca:b0:f8:26:d0:e9:5b:ad:92:65:bd:
a9:8a:a6:64:5b:5a:fd:ae:64:f3:9d:41:d6:e2:53:
bf:14:b7:ad:a0:0a:e3:58:8e:e9:23:60:ec:4a:02:
93:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:B8:AF:A3:CE:A2:6B:91:9C:D2:F1:2F:94:89:69:46:EA:E2:8E:26
X509v3 Authority Key Identifier:
keyid:A1:69:5D:55:58:24:1E:04:A8:72:DC:13:46:89:8F:2C:EA:70:DF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWldVVgkHgSoctwTRomPLOpw3-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/27ca7f-66b4-4bb1-9f5f-f5ba4fe2bf54/1/oWldVVgkHgSoctwTRomPLOpw3-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:da:e1:83:1b:9b:af:f0:d8:a6:1a:f5:48:68:ee:44:18:03:
a4:13:85:d1:85:8c:25:24:f1:30:7c:34:3c:9c:3b:d6:10:35:
36:b0:3f:6f:93:09:0e:8b:c0:5a:6a:1e:2b:ea:09:6b:73:af:
fa:74:42:a8:f4:9c:21:27:67:c8:cf:04:23:45:28:23:a6:c1:
bf:ba:a5:6b:69:8e:07:e1:ce:96:6a:29:85:34:fd:43:36:32:
5e:72:ff:99:94:91:77:6a:d6:8c:bd:24:56:fd:44:1c:b4:3b:
69:b8:fe:9e:c9:94:bf:8c:8b:24:14:a8:89:27:a4:de:f1:cd:
1e:c4:8f:62:7f:a0:ff:8a:5e:3a:f2:7a:30:cf:e2:fb:c7:68:
89:2f:d2:5d:4f:2c:45:f6:ea:45:71:07:43:8d:ae:a7:75:73:
21:94:13:42:52:d0:98:fe:c2:7d:7a:2f:84:d6:d5:19:59:84:
a8:52:a1:0a:c0:fc:70:7c:10:47:80:66:c2:4c:6a:1a:c4:2a:
e9:3e:2d:e4:4e:78:4e:96:4d:07:8c:08:8a:f8:13:ea:a7:ac:
5f:35:9c:5f:e8:d1:87:d4:00:71:e2:7b:9a:c2:28:53:e3:c5:
66:25:8a:34:39:f2:45:85:f6:41:56:37:20:c5:7f:bd:4f:29:
b0:a0:22:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:57 2025 by rpki-client