
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
File: osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft (raw, json)
Hash identifier: Swis0K7Smb1leKOFbboM+Sjt5lTmF6mdbIEgjlRBgLk=
Subject key identifier: 39:81:4A:2A:D6:26:1A:CE:58:CD:ED:7F:40:AD:F8:3E:5E:64:41:B1
Authority key identifier: A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
Certificate issuer: /CN=a2c56441d83df94bbd0e60144a554639e40e0535
Certificate serial: 0198906BA5ADF2563EABB30402FE69443C81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
Manifest number: 0E17
Signing time: Sat 09 Aug 2025 20:00:30 +0000
Manifest this update: Sat 09 Aug 2025 20:00:30 +0000
Manifest next update: Sun 10 Aug 2025 20:00:30 +0000
Files and hashes: 1: Om-V-EmCFMGXb43s9fZ-DXbAF08.roa (hash: S2SC8pR//ywuBG9ZV7ZWtalhcLPclQLz9j+fN0Z1bo4=)
2: osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl (hash: JCK8IOS3jqEuxYnkoWRQCP5L5OTpVgAHh0QD86lJsRA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:6b:a5:ad:f2:56:3e:ab:b3:04:02:fe:69:44:3c:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c56441d83df94bbd0e60144a554639e40e0535
Validity
Not Before: Aug 9 20:00:30 2025 GMT
Not After : Aug 10 20:00:30 2025 GMT
Subject: CN=39814a2ad6261ace58cded7f40adf83e5e6441b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:44:14:53:88:87:0f:1c:17:a0:ea:93:7c:51:
30:dc:f8:96:ca:dc:7a:28:54:cd:9f:41:60:f9:43:
db:28:68:99:d2:0f:b8:92:69:5d:ea:91:4a:b2:4d:
20:a5:59:2a:3e:30:4c:4e:cf:56:24:79:4b:95:06:
1a:01:75:8f:b3:94:16:d3:f4:de:3c:9b:a3:c0:f8:
03:69:6d:7e:e5:b4:8d:8b:d3:db:bd:5a:ad:ef:9d:
13:53:7d:4f:13:50:ac:d1:b6:5f:3e:23:f5:b9:55:
61:39:9b:2c:22:14:14:e3:3c:a1:f2:bc:48:21:31:
c2:cc:81:6e:f6:d3:26:0c:7d:f2:67:4b:d1:47:72:
17:54:65:78:a0:fd:10:b9:b7:57:fe:dd:bb:c9:70:
a8:7b:48:12:dd:59:85:4c:24:66:f5:21:66:1e:19:
d1:e6:a2:74:da:40:18:35:72:20:85:cd:c7:ec:b1:
1a:66:ee:13:8a:ac:d1:96:25:a0:50:cf:ca:10:5d:
b5:cd:39:71:69:70:72:b8:68:26:23:3d:99:ff:2d:
c5:18:87:2d:47:8f:bc:c6:4c:53:9d:ca:64:d2:ac:
48:97:d4:ad:65:dd:f3:4b:5b:ea:68:f6:30:66:f6:
04:ce:4a:3f:9d:f2:6d:72:9a:05:81:d8:74:b6:f8:
f9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:81:4A:2A:D6:26:1A:CE:58:CD:ED:7F:40:AD:F8:3E:5E:64:41:B1
X509v3 Authority Key Identifier:
keyid:A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:43:ff:2b:05:b6:4b:3e:96:92:d9:0d:f6:2d:02:7f:e4:f9:
37:fd:a7:db:3f:93:a1:71:55:ba:00:d7:d2:86:6a:cd:cc:e2:
07:1d:92:b7:c1:c2:46:53:e6:aa:27:da:a7:30:8b:40:ec:9d:
c6:a8:d0:5c:0d:6a:51:f3:3a:55:96:d5:cb:cd:45:b4:a2:01:
8a:80:dd:1d:ab:dd:d7:5b:a2:71:7f:df:54:0f:73:ca:39:42:
9c:9b:0c:39:64:ed:26:95:50:8d:5b:d3:35:eb:d3:bb:f3:53:
75:ed:8e:2b:57:2c:92:b8:ad:85:a1:1c:ad:5d:04:f5:4d:54:
06:4c:1a:2c:c5:97:0c:78:ed:52:34:05:83:cd:7b:e3:ed:1e:
91:c2:0e:a1:42:ca:04:86:7d:21:09:b8:fb:d4:2f:65:fd:63:
15:89:d1:49:7c:57:94:ef:e1:ef:a4:f6:2e:77:99:1a:f2:0c:
37:11:88:f8:bd:2b:83:17:4b:28:9f:df:0d:dd:ae:6f:75:83:
94:95:58:d3:da:be:0b:9c:26:6a:a4:b7:ea:ea:fe:46:56:18:
0e:75:13:c4:dd:d0:9b:3f:e8:02:a0:80:23:52:28:a9:d2:34:
b4:45:bb:89:85:ac:2d:9a:45:2c:7a:7c:27:8c:0e:f4:e0:c3:
52:4b:d1:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 22:38:19 2025 by rpki-client