Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
File: oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft (raw, json)
Hash identifier: gd/R5fSnM7po6vfwI5+5M4pZaV9DPQ9+soFkCCmepkc=
Subject key identifier: C0:0D:C2:2C:BE:71:83:8C:DE:F7:2C:2F:2C:BA:2D:05:0D:0A:93:37
Authority key identifier: A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
Certificate issuer: /CN=a220dda64843a4ee364b089356ca87995830fd77
Certificate serial: 01987F78D560FF545B5AA8C9023586D526B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
Manifest number: 0D44
Signing time: Wed 06 Aug 2025 13:01:22 +0000
Manifest this update: Wed 06 Aug 2025 13:01:22 +0000
Manifest next update: Thu 07 Aug 2025 13:01:22 +0000
Files and hashes: 1: f3Wn9TOfcfxB3VYXWanqfMC6WRI.roa (hash: CJSEzeKkH+A8u48zVCzb/MrI7FvV/Beze1CPp3UTLZU=)
2: oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl (hash: Ko0CpAuwnCe49M1eIEVb78kKvLsvwfpu220c0nKgl5Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 13:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:78:d5:60:ff:54:5b:5a:a8:c9:02:35:86:d5:26:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a220dda64843a4ee364b089356ca87995830fd77
Validity
Not Before: Aug 6 13:01:22 2025 GMT
Not After : Aug 7 13:01:22 2025 GMT
Subject: CN=c00dc22cbe71838cdef72c2f2cba2d050d0a9337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:2d:e1:c5:49:90:9b:26:da:c3:f6:dd:95:6a:
35:35:37:95:4d:81:3c:6b:e3:7b:3a:b2:3d:c5:4c:
d4:d1:44:08:8f:e6:01:70:63:b9:7c:7e:97:fd:46:
9f:aa:3c:d8:2b:c1:e5:5c:49:e4:5f:79:63:43:8f:
89:ae:a8:9b:e7:05:39:95:4a:cf:d0:84:b9:65:f9:
72:4e:57:49:e3:76:c4:c6:26:b8:2a:cf:79:37:15:
c9:b0:24:ec:26:bf:2d:6f:12:1b:61:ff:90:5d:2d:
5c:c7:a3:84:84:6b:28:c1:41:35:6f:b8:a3:32:50:
d2:8b:2d:9d:dd:d0:fc:52:09:44:28:be:c1:a1:a6:
5b:46:56:92:e5:95:44:61:ab:20:4e:a6:ca:c9:1b:
3a:94:db:79:d5:2c:d3:2e:3c:0d:a4:00:95:37:f1:
03:7d:e5:c2:c9:47:8a:5b:d8:3c:bd:12:9f:6a:b9:
f1:ce:0c:2a:2a:3a:56:87:c3:a4:72:0f:dd:dd:3b:
55:07:be:f6:51:d9:6d:34:e1:8a:c5:0a:52:b1:98:
65:94:d6:a0:b8:41:9e:b2:2f:56:69:e9:39:c0:bd:
96:6d:e2:93:b2:1c:f7:da:a0:d9:f7:0c:fe:f3:b8:
a1:92:ef:02:3c:0c:4d:39:5e:02:f8:f3:47:e0:23:
d7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:0D:C2:2C:BE:71:83:8C:DE:F7:2C:2F:2C:BA:2D:05:0D:0A:93:37
X509v3 Authority Key Identifier:
keyid:A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:05:ea:22:d1:41:c0:e7:a3:78:34:6a:59:b5:2d:a1:ce:4a:
51:1f:d7:74:70:f4:90:23:7f:9f:ab:41:b1:ce:52:b5:2f:df:
50:11:e5:2f:ef:65:2b:51:0b:f3:ce:4d:ee:bd:7b:52:e8:b4:
4e:30:b6:73:9c:df:b6:9b:30:28:15:8e:0a:cb:df:26:51:70:
c5:7f:c0:d9:9b:3e:2e:88:eb:54:4d:0d:20:5e:54:c4:cb:da:
84:a0:e2:7e:44:eb:d7:a7:79:ef:fc:da:ae:99:d5:07:d1:97:
00:70:5e:b4:b7:af:f3:4b:ae:a3:d4:43:bc:1c:ed:b7:ec:55:
c5:d3:38:f1:af:8f:db:66:c6:f2:56:95:25:f4:a7:1a:06:f2:
27:1b:a4:a6:4e:e3:e3:b0:39:d0:e7:e3:df:aa:c4:19:bd:ae:
aa:07:2e:13:9c:b6:d6:5b:c4:6d:42:fd:6d:fa:29:a2:3e:ab:
6b:53:70:a6:7b:61:3b:d5:dd:90:29:48:8f:e5:28:bf:3d:d7:
7f:03:ed:ea:d8:43:82:69:13:1a:1f:9e:b0:a2:0a:e9:21:05:
63:25:47:d3:19:47:71:ff:be:a2:c6:9d:b6:bd:67:fb:ad:e6:
e7:88:24:4e:38:67:4b:e8:ad:54:56:ee:da:22:a9:0d:1e:c0:
4b:e4:e4:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:28:12 2025 by rpki-client