Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: crNYDG5dfUeLYjxakWcQiuEyOPsI89p04SUhtdC7YbQ=
Subject key identifier: 56:00:48:20:48:81:A9:3B:33:4B:9D:93:5C:1E:AA:09:3A:0C:D6:F4
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 01989110DE79DE53623B6110EE0F56D18913
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 0581
Signing time: Sat 09 Aug 2025 23:00:58 +0000
Manifest this update: Sat 09 Aug 2025 23:00:58 +0000
Manifest next update: Sun 10 Aug 2025 23:00:58 +0000
Files and hashes: 1: FfIlEvStYRtAHT_4tgisj2sboIA.roa (hash: u8VtTRQomqZri4fvKgtiux4C4c/ZHFagnd78Z59URa8=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: EfizI/xIAfQ9qHOFtDgSnoduPuvff5TdFR5XY7VqP+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:10:de:79:de:53:62:3b:61:10:ee:0f:56:d1:89:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Aug 9 23:00:58 2025 GMT
Not After : Aug 10 23:00:58 2025 GMT
Subject: CN=560048204881a93b334b9d935c1eaa093a0cd6f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:72:97:95:1d:b7:09:5e:03:e7:61:48:64:5f:
b0:21:37:10:94:60:86:98:f3:a5:73:ba:fb:ee:5d:
5d:2e:85:5d:92:ba:21:3c:e4:cc:ab:2d:70:15:ec:
73:91:da:80:d1:91:a3:c6:7b:06:6b:96:5c:d2:fb:
0f:9a:c2:5c:37:5d:aa:90:49:da:38:78:87:13:1f:
09:c6:0b:fd:62:d8:e8:b1:a5:ed:dd:3b:8b:13:21:
bc:69:25:db:56:94:db:31:25:dd:39:60:72:d2:e4:
06:46:9c:31:ff:12:ca:c1:be:3e:40:5e:b8:65:30:
7e:e7:ee:6a:96:f8:18:bf:07:68:30:23:ea:32:e8:
6e:67:78:bc:7f:42:b6:03:7d:91:87:9b:67:88:26:
2e:42:9e:c6:3b:24:4c:06:cf:9c:c9:a7:4e:11:78:
7b:d0:61:12:be:14:d4:70:77:45:7d:77:78:43:a0:
bc:52:b3:b9:07:71:7d:28:0b:bc:b7:9f:8e:d6:63:
ae:95:1a:02:95:56:e4:cf:bc:0d:fa:1f:d5:ae:4b:
9e:f2:4e:a3:3a:7f:8c:2b:02:52:fe:bb:d2:5f:18:
aa:fe:d4:b6:78:3d:ff:1a:b4:bd:70:9c:d5:ed:fe:
b0:76:bc:00:75:7a:d9:03:bc:e8:6a:2b:f5:d8:60:
7a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:00:48:20:48:81:A9:3B:33:4B:9D:93:5C:1E:AA:09:3A:0C:D6:F4
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:4b:7b:b4:94:3a:cc:cb:7b:22:65:d5:92:e1:4a:45:96:85:
a1:5f:a2:76:a7:56:37:58:06:1c:d0:34:5e:0c:fd:82:0a:81:
9b:97:ea:e0:4e:a4:40:c8:7c:49:0a:93:b7:d0:08:79:19:63:
0a:35:1d:44:19:34:db:9a:9c:35:e7:f3:39:09:16:ad:e8:97:
9f:51:0a:9c:49:d1:05:f1:ae:4f:55:cf:dd:f4:fe:6a:d2:16:
59:12:dd:7a:7a:de:a4:c3:10:1d:ea:16:0f:85:35:2b:d2:3f:
2d:c9:7d:a2:35:c0:c5:f4:90:33:b2:6b:26:d4:96:14:6a:c9:
d9:85:43:4c:f0:23:b3:68:a5:c0:41:f6:0e:df:e4:3d:fd:9e:
58:91:13:06:b9:3d:6d:ea:73:44:41:87:7a:b6:aa:3b:a6:93:
b5:7b:a5:24:f5:ab:85:b5:35:e0:a2:e6:f9:a5:76:51:73:53:
44:36:2c:79:b3:66:d0:49:3b:64:02:f9:0e:41:af:05:89:3a:
eb:b6:29:ed:38:60:3e:f6:61:b1:60:1f:4b:88:8b:8b:c6:00:
3d:8e:a4:3a:91:5d:85:52:a0:c0:f1:6f:7d:78:0c:1b:31:a7:
ac:bf:ee:ea:19:6d:e1:e9:24:70:43:53:b9:e7:79:63:87:be:
c5:0a:2a:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 05:43:46 2025 by rpki-client