Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
File: oso33tG3DIG3SkMPm016zGKAXtg.mft (raw, json)
Hash identifier: GMcR6LS1/qWknTlmUxOCtWGGd5wCvNNVCrUSa7IDwk4=
Subject key identifier: F0:8B:0C:60:67:84:19:8B:E0:9C:C0:F0:91:F6:67:55:FA:F6:47:58
Authority key identifier: A2:CA:37:DE:D1:B7:0C:81:B7:4A:43:0F:9B:4D:7A:CC:62:80:5E:D8
Certificate issuer: /CN=a2ca37ded1b70c81b74a430f9b4d7acc62805ed8
Certificate serial: 019887A01EFA55D6A60BFC0F71977832B0AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oso33tG3DIG3SkMPm016zGKAXtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
Manifest number: 045A
Signing time: Fri 08 Aug 2025 03:01:14 +0000
Manifest this update: Fri 08 Aug 2025 03:01:14 +0000
Manifest next update: Sat 09 Aug 2025 03:01:14 +0000
Files and hashes: 1: Uua6yM2rrGnji--Kv2Pn_xDUCUQ.roa (hash: kXckJ9Wq2st2kAYy1iDEHvhVUEJf4YmXaasq7C+0rWM=)
2: WpAem0y3mJRbP65lGL1BbYc7ewY.roa (hash: 9FtB6GE1KbOq2c/Ao/RtTSsyLPIeyA8GKr7sC11YD4c=)
3: ktIBl0vO2PiY2N18cJ-d_fSxe4Q.roa (hash: PaoiyedZ99+u6zVUTqQy6HmR360bMO4FcWgPO5UfmIs=)
4: oso33tG3DIG3SkMPm016zGKAXtg.crl (hash: l6ATYFVAK3uDuug7Q176gdbKwRmgFiPE9HRF5w5BoQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oso33tG3DIG3SkMPm016zGKAXtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 03:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:a0:1e:fa:55:d6:a6:0b:fc:0f:71:97:78:32:b0:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2ca37ded1b70c81b74a430f9b4d7acc62805ed8
Validity
Not Before: Aug 8 03:01:14 2025 GMT
Not After : Aug 9 03:01:14 2025 GMT
Subject: CN=f08b0c606784198be09cc0f091f66755faf64758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:57:37:d1:d4:64:96:c1:c1:b5:83:57:05:33:
8f:02:b0:6b:cc:4e:58:b2:53:da:1e:e6:8d:73:07:
51:3a:e9:b9:f7:17:0d:db:3a:c8:1e:f5:0e:fa:2d:
56:76:64:3c:99:e1:47:98:40:1d:0a:0f:66:94:7d:
60:96:dc:e7:61:52:60:bb:fe:4c:8e:ed:ea:ff:e2:
b8:c1:f1:ad:f9:6e:d9:5f:c4:9a:c1:97:a4:9a:19:
40:b4:ba:98:54:23:b9:e3:d7:97:61:3f:c4:09:17:
c6:12:ac:79:ab:a0:0a:f8:4e:a6:34:92:32:1f:07:
da:ab:15:10:34:3f:93:81:c7:91:13:35:70:17:d1:
94:ed:f8:6b:79:b0:ec:9b:95:34:6e:29:2a:cc:01:
0e:b2:cc:e4:93:02:77:6b:62:30:16:40:d7:e0:8a:
ab:2c:d6:17:5a:02:a6:26:f1:48:8d:d9:98:a8:04:
0c:53:d2:eb:ea:ee:d0:7c:17:fa:8e:0b:b4:3f:76:
07:8f:d6:b7:f8:61:64:90:9c:5c:56:d4:82:98:96:
66:45:c2:9e:2c:e3:dc:fc:5f:2a:82:82:11:bd:9c:
07:74:fa:53:e3:04:3d:17:64:d9:17:63:df:37:27:
fc:bd:f4:c3:d7:2a:b1:7d:61:08:2d:f4:c0:77:fe:
ed:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8B:0C:60:67:84:19:8B:E0:9C:C0:F0:91:F6:67:55:FA:F6:47:58
X509v3 Authority Key Identifier:
keyid:A2:CA:37:DE:D1:B7:0C:81:B7:4A:43:0F:9B:4D:7A:CC:62:80:5E:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oso33tG3DIG3SkMPm016zGKAXtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:65:87:85:ab:ac:80:0f:29:9e:aa:63:e3:5e:ac:85:52:08:
22:44:1f:13:8e:ca:7c:f7:e9:42:a5:bc:e7:5f:1c:57:8d:68:
51:f9:68:a8:37:94:eb:a2:9b:93:97:92:15:cf:7d:d9:8b:d3:
8c:17:e3:7e:db:43:20:a2:87:ac:02:d0:75:b5:c2:e7:00:46:
fd:d9:c8:cf:33:46:63:4b:c7:7c:d9:da:72:42:67:66:96:b0:
f4:e0:8c:7a:ad:94:40:9e:00:34:d6:c1:c4:e5:4a:43:f0:28:
ac:bb:a3:41:4a:6a:72:a7:10:eb:da:15:4f:46:7c:73:f4:a7:
2c:52:8e:4f:12:93:90:52:cb:86:26:03:6c:15:85:97:5a:f1:
02:cb:97:6e:04:f2:5c:9d:ca:0d:3e:6d:f6:a6:76:d5:eb:9a:
17:f9:d2:4e:a4:a7:b1:15:78:b9:11:b4:b6:2c:44:69:a5:52:
3e:61:ca:8b:25:24:c0:92:f1:47:7e:a3:42:74:c2:88:97:c5:
b7:62:2d:2e:ec:77:d8:dd:d4:b1:f1:76:54:63:02:17:f7:fb:
cc:dc:be:87:ed:35:fd:df:aa:5c:85:32:62:f7:18:01:bf:29:
1c:d6:36:46:5c:62:10:82:95:93:04:91:70:c7:28:24:c4:fa:
32:c8:13:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:48:34 2025 by rpki-client