Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
File: OA-TW80EhiXnAVXPLMKCniwgcqY.mft (raw, json)
Hash identifier: bPsaJHlxXOuqtELqzsgoWob3XeWFg5OI/BBMuBgUXZg=
Subject key identifier: C0:8C:40:3E:50:A3:E3:84:D4:D5:9F:82:B6:C0:E2:41:7F:D0:0F:77
Authority key identifier: 38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
Certificate issuer: /CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Certificate serial: 019A4E4F91D50C1D166405328192861F8415
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
Manifest number: 03F2
Signing time: Tue 04 Nov 2025 10:00:28 +0000
Manifest this update: Tue 04 Nov 2025 10:00:28 +0000
Manifest next update: Wed 05 Nov 2025 10:00:28 +0000
Files and hashes: 1: OA-TW80EhiXnAVXPLMKCniwgcqY.crl (hash: AQlPlwEgzDC0H6eMsRLgzcVKk+pxKvcqFWm737BO4U4=)
2: Q5qSxQZ6AuTJXsJJ-9RRWDA26wA.roa (hash: 64WIeN1+JBWLPlD+mMTcZ54izCFjiXRNJWE/ls/16OM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:91:d5:0c:1d:16:64:05:32:81:92:86:1f:84:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Validity
Not Before: Nov 4 10:00:28 2025 GMT
Not After : Nov 5 10:00:28 2025 GMT
Subject: CN=c08c403e50a3e384d4d59f82b6c0e2417fd00f77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:84:31:36:79:e7:a0:19:a7:01:92:32:bf:e6:
ea:04:44:55:d7:f3:8d:04:96:c1:9a:60:72:35:64:
79:1e:ad:d1:64:45:02:9b:13:c8:56:e8:d7:2b:e1:
12:1c:0d:ae:bc:35:4d:be:24:fb:6d:28:46:8d:b6:
c7:33:0c:0d:b7:ba:d8:14:9b:87:80:bf:f6:94:d6:
67:fe:f4:a3:27:85:04:02:9f:b9:b8:e0:68:38:9b:
3a:0c:b7:32:fe:23:ca:13:f1:3d:cf:0e:22:15:9e:
98:53:91:b2:b1:be:e9:1f:35:43:2e:2d:f2:28:17:
27:8c:7a:69:16:f0:da:69:84:c1:55:e4:ef:3b:b5:
fe:9a:c2:cb:97:36:cb:4f:47:68:ce:13:f2:27:19:
68:d6:f9:57:af:99:7a:3a:c7:3e:4c:7f:bb:17:78:
d9:3a:15:7c:f1:27:14:41:d6:e9:a3:14:73:4b:44:
c2:bf:ba:8e:c4:53:5a:64:78:4e:8c:a6:d1:97:54:
42:99:53:aa:28:a9:e6:e6:0a:3a:c9:e7:be:25:88:
bb:ed:79:7e:f0:50:63:f9:b6:91:59:5e:c2:b5:9c:
8f:12:e3:3d:b0:e1:8e:11:5d:4a:95:59:be:98:6e:
b2:7d:b8:65:52:d0:67:7f:89:6b:47:2a:c6:3c:e9:
b7:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:8C:40:3E:50:A3:E3:84:D4:D5:9F:82:B6:C0:E2:41:7F:D0:0F:77
X509v3 Authority Key Identifier:
keyid:38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:c3:e2:63:43:6d:92:b9:4a:f2:8e:36:80:cf:7a:78:ec:5a:
29:99:41:57:58:98:f0:5f:ba:86:ec:9c:cd:67:7f:d9:55:d1:
dd:a4:f8:6c:ae:05:99:84:26:91:95:a5:3e:7e:c0:61:36:c1:
3f:71:09:27:f8:66:e0:8c:ef:26:5c:bc:48:60:71:06:c6:4f:
c2:c8:66:77:a8:9a:15:15:06:a5:2e:6e:e9:a1:b1:63:64:4e:
2b:3e:b9:17:38:af:ff:78:2e:7c:86:a9:f4:26:9d:4a:48:01:
a7:18:3d:b7:b0:b9:10:68:5b:38:93:fa:36:e4:2c:04:7d:54:
a9:69:f7:ea:54:ad:e0:34:f0:d1:28:9c:93:a4:c6:c3:2c:ac:
36:64:eb:b7:36:09:3c:c0:19:85:55:dc:ef:2e:57:22:02:12:
b1:f0:de:64:58:6b:e6:a8:3b:cf:b6:ea:84:5d:6b:ce:0c:2e:
0c:1a:f3:c1:bb:31:c4:fa:5b:27:b6:16:33:0d:43:34:32:43:
c5:a5:51:4d:7f:fa:5b:76:20:f2:92:a8:9f:6c:64:77:b2:29:
31:ac:26:70:f0:75:84:69:a1:fd:34:b4:90:8e:53:00:42:86:
e8:15:50:3e:83:02:04:74:88:41:6f:f9:81:6e:55:be:a8:32:
f4:49:d4:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:06:25 2025 by rpki-client