Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: NIwd4JRWSDII1qY1VqhPo4wb5KWMwx7eVit9+t3WUrQ=
Subject key identifier: 47:ED:27:BF:B9:B0:4E:1F:86:AF:62:71:39:14:3D:82:45:04:CC:55
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 0198903560AE0F2142B06DDEB471A321C530
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 1623
Signing time: Sat 09 Aug 2025 19:01:13 +0000
Manifest this update: Sat 09 Aug 2025 19:01:13 +0000
Manifest next update: Sun 10 Aug 2025 19:01:13 +0000
Files and hashes: 1: RW4un6mRBfPzHloV5RnOReMxV4M.roa (hash: 6KtCB53EZaTt4rkvk3WW5xLU60zG4n/pYxl9BtxsfPs=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: hDaW2dvc47i+QP7eGfPcwAhGvaDL8OQsGLH2xFN5NWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 19:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:35:60:ae:0f:21:42:b0:6d:de:b4:71:a3:21:c5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Aug 9 19:01:13 2025 GMT
Not After : Aug 10 19:01:13 2025 GMT
Subject: CN=47ed27bfb9b04e1f86af627139143d824504cc55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e0:01:ce:20:89:fb:4b:18:7e:05:a3:c8:72:
b4:da:e9:46:97:d3:0c:b0:9d:48:2b:db:dc:a0:7a:
a8:ec:ad:7d:48:da:16:9d:6d:8b:d8:f2:d5:9b:d6:
4d:b7:c2:6b:b9:35:32:b3:e4:72:62:06:5b:5f:37:
7b:20:76:be:dc:36:56:c4:79:3f:c4:62:c8:f2:b9:
d4:32:1c:3a:13:7f:da:1b:43:9e:41:cc:b1:ef:4c:
51:68:fa:3d:c7:75:d2:cf:bf:ca:25:56:19:e8:2e:
d3:d8:b9:a2:8d:a8:c2:22:ee:c5:e0:a6:cf:26:5b:
96:09:71:08:2e:e8:20:0e:02:b4:9f:12:b8:87:fe:
b4:4c:b2:f0:e5:b6:06:f3:5d:dd:e0:bc:96:6c:20:
cc:63:bf:e4:d1:cb:ca:c9:c4:79:34:55:16:57:1d:
2c:35:77:a3:71:85:d0:dc:ce:44:30:49:a2:73:27:
65:be:5b:86:28:3a:74:ed:29:41:62:4b:3b:e1:54:
1d:6c:b6:a4:f2:bf:8d:3a:d4:d4:89:e7:84:9a:39:
a2:90:11:46:04:e9:26:f4:34:f2:98:4e:e1:e3:4c:
d0:82:6b:a4:46:19:cb:e8:11:67:c3:8b:db:5d:c9:
15:02:c9:7e:3c:10:f4:95:66:cf:06:cd:8d:90:73:
b0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:ED:27:BF:B9:B0:4E:1F:86:AF:62:71:39:14:3D:82:45:04:CC:55
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:ff:da:43:86:91:de:dc:f9:fa:df:fe:15:24:06:07:e8:9b:
72:b6:ec:0f:82:79:ac:13:77:51:3c:e0:3b:a0:42:b3:a4:61:
e8:8b:6f:43:98:bc:7a:1f:64:9d:67:27:39:d1:51:00:2c:48:
53:a9:cf:8a:65:9a:00:c9:6b:ea:f2:a1:da:fb:74:2d:93:f2:
7a:9d:5e:6e:ed:d7:c7:88:3f:3d:ca:ea:7b:d5:36:b7:7a:bb:
3e:e1:81:70:14:65:62:e3:ed:3d:3b:71:c3:9b:88:2b:92:57:
a4:28:07:cd:c8:e4:3c:9f:fc:a1:23:49:dd:5c:76:1e:3e:da:
3c:76:e5:d6:31:33:5d:d2:91:30:a0:da:1a:cd:ba:93:02:f0:
d3:76:44:c4:d5:f8:be:16:a9:35:8e:28:a6:95:ef:91:3e:75:
67:1e:b3:5c:70:8c:eb:e1:c7:a3:f8:d9:cd:29:2f:68:cf:d2:
b1:41:0c:ae:b9:0e:c8:bc:4e:8b:be:23:9c:43:28:89:20:17:
60:1c:ea:ce:bf:9a:91:1f:a3:d0:bd:3e:f6:b0:15:f4:ee:08:
4a:12:5d:f0:ea:d2:2a:8e:00:06:71:f4:44:ad:39:27:7b:67:
e3:38:a5:b1:2e:de:af:d6:64:59:31:39:dc:87:dc:b6:70:ec:
90:a3:13:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiQNWCuDyFCsG3etHGjIcUwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYzhjZGE4MTRlNzc3ZDlmZTE1NGI5MmU5OTU5Y2UxMjBi
MGFkNTgwHhcNMjUwODA5MTkwMTEzWhcNMjUwODEwMTkwMTEzWjAzMTEwLwYDVQQD
Eyg0N2VkMjdiZmI5YjA0ZTFmODZhZjYyNzEzOTE0M2Q4MjQ1MDRjYzU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAleABziCJ+0sYfgWjyHK02ulGl9MM
sJ1IK9vcoHqo7K19SNoWnW2L2PLVm9ZNt8JruTUys+RyYgZbXzd7IHa+3DZWxHk/
xGLI8rnUMhw6E3/aG0OeQcyx70xRaPo9x3XSz7/KJVYZ6C7T2LmijajCIu7F4KbP
JluWCXEILuggDgK0nxK4h/60TLLw5bYG813d4LyWbCDMY7/k0cvKycR5NFUWVx0s
NXejcYXQ3M5EMEmicydlvluGKDp07SlBYks74VQdbLak8r+NOtTUieeEmjmikBFG
BOkm9DTymE7h40zQgmukRhnL6BFnw4vbXckVAsl+PBD0lWbPBs2NkHOwuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEftJ7+5sE4fhq9icTkUPYJFBMxVMB8GA1UdIwQY
MBaAFKDIzagU53fZ/hVLkumVnOEgsK1YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9hYTI3MGEtYzA4OS00Nzc4LTkzNDMt
YjczNjJlZGJkOGFjLzEvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS9hYTI3MGEtYzA4OS00Nzc4LTkzNDMtYjczNjJlZGJkOGFj
LzEvb01qTnFCVG5kOW4tRlV1UzZaV2M0U0N3clZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ//aQ4aR
3tz5+t/+FSQGB+ibcrbsD4J5rBN3UTzgO6BCs6Rh6ItvQ5i8eh9knWcnOdFRACxI
U6nPimWaAMlr6vKh2vt0LZPyep1ebu3Xx4g/Pcrqe9U2t3q7PuGBcBRlYuPtPTtx
w5uIK5JXpCgHzcjkPJ/8oSNJ3Vx2Hj7aPHbl1jEzXdKRMKDaGs26kwLw03ZExNX4
vhapNY4oppXvkT51Zx6zXHCM6+HHo/jZzSkvaM/SsUEMrrkOyLxOi74jnEMoiSAX
YBzqzr+akR+j0L0+9rAV9O4IShJd8OrSKo4ABnH0RK05J3tn4zilsS7er9ZkWTE5
3IfctnDskKMTSQ==
-----END CERTIFICATE-----
Generated at Sun Aug 10 05:37:05 2025 by rpki-client