
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json)
Hash identifier: OTTzKMgOfKF4J2ItcFKakRxEAk+KzkKhhM2StPsWCeo=
Subject key identifier: 20:A4:5C:E9:73:30:5B:D3:7C:2E:51:23:DD:36:1C:9E:E3:99:E5:BC
Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Certificate serial: 01988B0E97B105E0901BDBCCDC63F5121944
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
Manifest number: 0AB4
Signing time: Fri 08 Aug 2025 19:00:45 +0000
Manifest this update: Fri 08 Aug 2025 19:00:45 +0000
Manifest next update: Sat 09 Aug 2025 19:00:45 +0000
Files and hashes: 1: bcgHeTecNhcHR9QWO6gmvpmmI5c.roa (hash: EV6/wlUYGCbS7xEazmx8eI5Bar/BgAFt51P9o3UlOuQ=)
2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: HcqvcPWeTTCthGrPy8/jFlHZK3nQoB+3XyvJke6GR1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0e:97:b1:05:e0:90:1b:db:cc:dc:63:f5:12:19:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Validity
Not Before: Aug 8 19:00:45 2025 GMT
Not After : Aug 9 19:00:45 2025 GMT
Subject: CN=20a45ce973305bd37c2e5123dd361c9ee399e5bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:44:2e:fa:5c:14:d7:fe:cb:93:b4:5d:ad:c7:
e2:fd:b3:da:12:0d:90:86:26:ac:7a:89:0c:c7:a3:
d1:e8:57:38:0d:12:cc:e6:85:fe:5c:ef:6c:72:82:
a5:53:32:20:c5:5e:b9:ac:22:21:b3:95:47:12:ad:
39:74:70:75:7a:f6:c8:bd:23:c4:49:6b:70:ed:98:
81:5d:d0:d4:59:d0:2a:af:63:a1:c7:ca:69:30:8c:
fe:55:70:38:c3:49:04:a1:5b:91:0f:33:53:6d:90:
d0:c8:70:68:ec:3b:ca:39:7a:be:e7:34:f0:38:10:
f1:1c:13:b2:3f:7f:66:da:76:42:5d:df:ea:79:c3:
fe:04:00:4d:3d:69:5a:43:2d:ed:32:56:a4:70:77:
dd:44:87:3a:3d:86:e0:2e:af:70:cc:37:38:a1:b0:
e6:95:e3:1a:eb:9a:f0:c7:99:92:e0:64:ac:13:b9:
9f:46:a0:95:54:da:8b:d0:82:d1:b9:16:6a:ef:b3:
5c:f9:64:a1:82:38:ad:ce:e2:96:9f:c9:37:9a:b4:
88:ce:03:2e:e3:9c:8f:e2:be:eb:74:4a:8d:92:01:
31:4d:99:2e:8d:95:d9:9d:77:a4:17:27:86:bf:3e:
15:c3:94:6b:5b:1b:d4:f1:87:8a:ae:b7:a3:27:24:
1d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A4:5C:E9:73:30:5B:D3:7C:2E:51:23:DD:36:1C:9E:E3:99:E5:BC
X509v3 Authority Key Identifier:
keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:a3:2a:f5:78:ac:07:3a:cb:24:0b:26:92:4f:f0:d5:96:e3:
6e:e3:db:e1:0b:b1:3d:46:9b:3a:b0:8d:d7:f7:f6:81:a6:a8:
49:d6:e3:3a:ac:b8:63:2a:28:7b:3f:5c:1e:5e:8f:e2:86:85:
8a:07:de:38:aa:f5:8e:01:b2:07:7b:09:27:17:f5:14:cb:e4:
b4:8d:f9:ad:c9:58:e5:48:e6:5c:27:e4:4a:f3:7a:45:a7:02:
10:14:aa:23:c7:63:72:14:28:7d:ee:eb:73:6f:7d:b1:40:24:
cb:4f:d1:82:80:58:53:e6:1f:60:6d:f9:fd:6f:9d:49:0e:e3:
67:a0:5a:50:f6:7d:a8:03:51:0e:d4:74:90:97:3f:f5:6c:d3:
da:9f:29:5a:7c:63:77:11:0a:13:2a:7c:1a:26:52:17:8c:83:
d2:15:b1:15:3d:8f:63:b5:b7:27:c5:7a:e3:5f:7f:e5:57:25:
e3:fb:02:c7:3d:0e:ce:69:e2:66:3e:a6:75:d1:8f:53:87:dc:
3e:98:a6:74:bc:3a:fe:10:36:72:6b:ef:ce:2a:73:db:8e:64:
c4:48:df:c7:28:67:87:67:c2:c6:d8:b6:ed:41:3a:21:95:a7:
d9:87:66:c1:20:a1:30:88:61:4b:61:84:60:bd:13:ed:af:fc:
b9:2e:02:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:48:52 2025 by rpki-client