Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
File: oE3odQHH0wgsdmWfTevZQohDtMs.mft (raw, json)
Hash identifier: FVp9tEMGqZBTUf0OwN3htLfafuxIAW26xoaQ6XeYdLs=
Subject key identifier: 9B:C5:58:C9:8F:E0:38:CA:EE:86:2C:CD:65:1B:A3:4B:9B:10:ED:EF
Authority key identifier: A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
Certificate issuer: /CN=a04de87501c7d3082c76659f4debd9428843b4cb
Certificate serial: 01988BEA4A15E144A8BBCD35E0338B91D0A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
Manifest number: 1206
Signing time: Fri 08 Aug 2025 23:00:44 +0000
Manifest this update: Fri 08 Aug 2025 23:00:44 +0000
Manifest next update: Sat 09 Aug 2025 23:00:44 +0000
Files and hashes: 1: 3oKx6h0eBr3yZ2nfockvN65K1_o.roa (hash: geWao+6sgTP3cLFpfRuFIKY1lyLCLqYJA9Pcg4p46Gs=)
2: oE3odQHH0wgsdmWfTevZQohDtMs.crl (hash: 0KSQziGvm8mMKCmb0Bqb6IaAwWFAP6Tri+yywb0TbfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:4a:15:e1:44:a8:bb:cd:35:e0:33:8b:91:d0:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04de87501c7d3082c76659f4debd9428843b4cb
Validity
Not Before: Aug 8 23:00:44 2025 GMT
Not After : Aug 9 23:00:44 2025 GMT
Subject: CN=9bc558c98fe038caee862ccd651ba34b9b10edef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f1:5c:4a:4a:5d:a6:0e:ce:e0:f8:2d:dd:b8:
6a:aa:ce:7b:0b:44:74:18:23:4c:14:f7:7f:f3:f9:
03:69:52:cb:41:4f:f7:dd:16:ce:4c:42:80:e7:b5:
91:b7:49:3c:63:fc:67:9a:33:da:f9:86:39:c4:c5:
36:72:00:32:53:6d:c0:65:f4:28:89:0e:a1:10:bd:
aa:c1:04:b3:ac:0b:22:ec:71:68:2e:04:36:4f:c4:
a9:17:3e:8e:71:d8:d1:55:b1:27:23:84:9a:8c:18:
76:a1:b7:82:9a:fc:b9:f8:d7:9b:00:14:d4:e0:3d:
b2:38:f3:fb:91:f8:19:c7:6b:38:4c:16:ea:bd:54:
fd:0c:0a:8b:a2:13:59:d4:a9:47:4c:38:1d:b8:6c:
a4:17:55:74:13:40:d4:e7:c9:5b:e9:75:11:45:b1:
49:84:50:f5:d1:5c:1b:a8:d0:1a:d2:47:9f:52:70:
39:69:bd:c8:5e:e1:3c:cf:93:2c:8c:22:ec:6b:46:
e4:93:1c:6b:79:f6:03:7d:cf:52:1e:85:33:d5:c7:
3e:6d:9b:e9:c2:4d:b2:f4:f5:08:67:5c:ff:ef:58:
d5:46:78:3b:87:6c:ea:df:63:97:76:ce:4d:47:6e:
72:47:aa:4e:52:4e:ba:87:d9:86:c4:44:af:ba:58:
e9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C5:58:C9:8F:E0:38:CA:EE:86:2C:CD:65:1B:A3:4B:9B:10:ED:EF
X509v3 Authority Key Identifier:
keyid:A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:96:5f:9a:8a:06:73:ef:06:ac:75:90:4b:86:cb:45:57:ec:
0a:12:03:3d:27:99:2d:2f:8e:22:ea:b6:5f:44:b6:63:c6:b7:
95:fd:90:81:fe:cf:5c:44:12:e0:2f:91:33:e4:23:a4:ed:f8:
32:79:7d:fc:7d:99:18:9b:4a:9c:e9:64:49:1a:23:f7:66:96:
9c:27:05:9c:26:d0:dc:13:d3:04:1f:23:60:47:02:2d:10:68:
ca:bf:c3:6f:63:57:d0:07:f3:f2:10:e8:35:a2:89:74:fb:38:
fe:40:b9:61:c9:92:12:de:1a:2a:71:e6:c1:66:8e:9b:17:1c:
27:c0:82:35:f9:f5:78:3d:96:c2:43:56:2a:18:61:9e:74:ef:
71:a9:19:84:f6:cc:be:5a:ef:ac:81:d2:c1:56:f9:1f:8c:52:
77:f4:31:88:4a:b9:41:a7:33:7a:ab:95:4b:74:c5:d1:f9:d3:
4f:a9:d4:f6:d1:01:3a:8a:6f:b2:5e:e7:ed:0c:2d:68:63:2b:
2d:cb:e4:32:82:2e:b0:b6:4e:94:65:0a:c7:19:66:8d:38:7a:
e3:45:45:84:85:a4:9b:0b:df:7c:df:59:ff:52:2c:c2:48:79:
58:55:56:52:f1:c3:f2:f7:bb:3f:f8:7b:31:92:e4:62:de:53:
7d:d3:9b:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 02:56:18 2025 by rpki-client