Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
File: oKrlhQo22yiCKmwa_F_6z_AH7vI.mft (raw, json)
Hash identifier: I6wUs3LEDP2WM5+z8pnkMjQJejUa1pshdAb1rlR16oQ=
Subject key identifier: 0A:E9:05:B8:7B:0D:57:DA:1F:00:33:34:7D:B5:C9:CF:5E:44:62:DA
Authority key identifier: A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
Certificate issuer: /CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Certificate serial: 01989FDF137F4772D739C1B27C89995F8283
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
Manifest number: 0924
Signing time: Tue 12 Aug 2025 20:00:53 +0000
Manifest this update: Tue 12 Aug 2025 20:00:53 +0000
Manifest next update: Wed 13 Aug 2025 20:00:53 +0000
Files and hashes: 1: oKrlhQo22yiCKmwa_F_6z_AH7vI.crl (hash: 6wpOMoJmCp4kl4P+CxCstoAbDG9z/c1N3CuMWmqBLOM=)
2: vPivcilO-E_vThnuw1Jbeo7vl7Q.roa (hash: ue62obgrVIotq1vJM56av/nq50vzkGkDbEL5zd0kvpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 20:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:df:13:7f:47:72:d7:39:c1:b2:7c:89:99:5f:82:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Validity
Not Before: Aug 12 20:00:53 2025 GMT
Not After : Aug 13 20:00:53 2025 GMT
Subject: CN=0ae905b87b0d57da1f0033347db5c9cf5e4462da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:de:3e:3f:88:38:9d:55:25:81:b0:a9:59:a6:
03:41:40:3c:b4:fd:b9:15:bb:41:8b:7b:c2:3b:93:
1e:dc:81:d2:5e:ab:2d:6e:9b:5e:fb:15:80:81:9e:
91:bf:5e:6f:d1:3e:71:83:c6:57:5e:8c:b5:9f:85:
1d:96:83:88:e5:6a:a0:28:69:71:e5:a5:8e:6e:53:
e3:c9:56:ca:35:f5:a2:70:41:e0:84:43:3f:e7:cb:
b3:ee:b1:08:ae:89:c1:55:c8:63:54:5f:e1:24:7d:
45:ec:ff:58:e7:10:24:5f:fa:1a:d7:51:af:67:6f:
e4:48:77:56:97:00:f4:1e:f6:c9:35:18:09:3a:7a:
95:ad:51:fe:a2:6e:43:d1:a9:75:c4:b0:18:5a:23:
25:28:04:15:71:60:a3:85:9f:aa:dd:58:b4:f8:0d:
53:aa:a9:15:2f:ad:2d:61:58:e6:6d:0a:d6:13:84:
18:a4:b7:28:6b:4e:06:41:42:af:c2:a6:1a:6b:01:
ea:34:b0:54:d5:04:1f:44:c5:b1:31:5f:54:44:f7:
b3:26:11:3d:f3:c3:19:13:04:46:88:96:61:d6:a3:
00:a9:b4:90:ed:36:80:c7:32:8b:14:0b:d0:89:46:
cb:ad:5f:a8:3a:d0:bf:6e:c3:ee:cb:b4:47:02:3f:
35:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:E9:05:B8:7B:0D:57:DA:1F:00:33:34:7D:B5:C9:CF:5E:44:62:DA
X509v3 Authority Key Identifier:
keyid:A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:d0:82:69:de:eb:4b:de:17:b7:7f:22:74:5d:3f:30:09:57:
bb:b4:f3:bf:e0:0a:ad:af:72:c8:44:c8:d3:44:72:4b:10:4b:
99:66:0f:52:17:cd:5e:44:94:c2:c8:59:ea:55:cf:c3:b0:84:
3e:b0:8d:99:a0:49:d3:fe:e6:98:aa:24:ac:b2:e7:e6:3e:43:
70:6e:ed:aa:cb:8a:4e:ef:ce:48:65:50:5d:ae:66:2d:21:92:
86:fb:1c:f2:87:5d:23:22:d5:cf:c1:95:bf:20:1d:e6:48:45:
f4:b4:e8:7f:d9:9c:80:84:85:fd:3e:c5:da:3c:db:ae:5c:df:
c3:5a:fb:0d:93:fb:cb:56:9a:0d:70:4e:9e:c6:10:bb:74:f1:
5d:b2:6f:3a:03:6f:cb:a9:e9:5c:4e:ff:66:a8:ee:fd:50:29:
65:43:c1:7b:7c:a8:79:61:e6:b8:be:83:e4:11:6d:88:3b:23:
95:6f:95:8b:78:23:ab:2a:b6:8e:5e:82:b5:2a:76:b8:25:b5:
7c:ca:18:4b:89:97:8c:9b:40:4d:ef:c8:0a:71:c0:30:b0:99:
a9:c3:9d:3d:c2:3c:05:f1:cd:c1:a2:cd:8e:67:68:68:45:f5:
d6:61:84:ff:00:b1:6c:0f:ad:14:64:e1:3d:d9:e0:42:ec:df:
30:17:8d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:51:34 2025 by rpki-client