Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
File: OA-TW80EhiXnAVXPLMKCniwgcqY.mft (raw, json)
Hash identifier: ipHZigfcThjbifrCZSpWs9UVg8pNGtGK0gJuS25aEL4=
Subject key identifier: 49:93:87:B1:80:BF:19:5F:BD:90:AC:34:28:B0:38:CC:DA:CD:88:53
Authority key identifier: 38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
Certificate issuer: /CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Certificate serial: 01989825B1D9454507A374478E960768468C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
Manifest number: 030F
Signing time: Mon 11 Aug 2025 08:01:03 +0000
Manifest this update: Mon 11 Aug 2025 08:01:03 +0000
Manifest next update: Tue 12 Aug 2025 08:01:03 +0000
Files and hashes: 1: OA-TW80EhiXnAVXPLMKCniwgcqY.crl (hash: URo/BBe0A0M962k/ZECxI8TBrncONkULhSUc2ShvN/w=)
2: Q5qSxQZ6AuTJXsJJ-9RRWDA26wA.roa (hash: 64WIeN1+JBWLPlD+mMTcZ54izCFjiXRNJWE/ls/16OM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:98:25:b1:d9:45:45:07:a3:74:47:8e:96:07:68:46:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Validity
Not Before: Aug 11 08:01:03 2025 GMT
Not After : Aug 12 08:01:03 2025 GMT
Subject: CN=499387b180bf195fbd90ac3428b038ccdacd8853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:95:a9:87:a5:02:55:0e:36:4a:c8:ab:40:e9:
42:a5:b3:00:28:69:19:38:65:8c:ab:f2:57:e8:57:
16:ee:2e:d2:7f:0e:8b:b3:a2:c6:9f:0f:fd:66:4d:
e6:dd:8d:b1:91:88:af:24:2f:1c:62:25:26:30:3d:
50:70:18:8f:d3:b1:4d:05:c1:f8:f9:25:32:cb:dd:
df:1f:5d:e2:15:2d:19:7f:ac:a0:e9:38:9d:fa:94:
b4:18:e3:b4:62:b8:75:9f:c3:aa:26:a1:d4:a7:d4:
14:33:6d:46:b1:18:0b:a6:e2:6d:48:4d:db:a4:fa:
42:a7:70:66:8e:e4:6d:e5:25:fd:6a:1f:e7:a7:45:
cc:79:ab:a3:0a:b7:6c:9a:90:6f:78:14:f6:24:25:
7d:5a:11:06:23:9f:ea:c1:14:fc:8e:0a:a8:6a:03:
f7:d2:3c:b1:dd:f1:7f:8b:c0:8e:a5:a6:a1:12:06:
cf:9a:2c:44:df:8a:be:97:42:b2:7a:e8:4a:5b:6e:
0c:fd:43:38:2d:0d:42:c6:e5:88:da:13:3e:eb:3a:
bf:12:3d:ad:54:45:22:ae:57:ab:d7:1d:79:e6:49:
1d:7f:e1:31:15:98:f7:2e:e0:10:2c:e2:3f:20:b4:
2b:65:ee:82:da:f3:b5:34:bc:e3:77:9b:83:88:9e:
93:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:93:87:B1:80:BF:19:5F:BD:90:AC:34:28:B0:38:CC:DA:CD:88:53
X509v3 Authority Key Identifier:
keyid:38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:a2:de:41:68:32:4b:50:5c:45:59:5b:74:6d:84:7f:a6:8f:
60:d8:23:d9:14:06:54:e7:ed:53:e7:15:f4:9d:27:98:67:a5:
0b:e9:ae:05:d3:ce:20:a6:56:e3:65:48:c7:4c:7a:12:bf:a3:
61:34:95:29:ad:cd:fa:eb:0e:5e:e9:cb:d0:4f:91:30:21:48:
f4:c7:19:88:97:3b:e5:fe:c4:48:ca:79:38:ee:03:0b:f2:e6:
31:da:88:f1:2b:1e:04:ba:1e:a8:fa:ae:66:a1:79:51:6c:cb:
bb:33:09:60:cd:8f:6f:c0:85:aa:06:10:02:53:bf:da:b6:3f:
e7:67:d0:9f:68:08:51:be:e7:6e:7d:05:6d:d6:37:bd:6b:76:
42:1a:c2:0e:01:76:c8:df:25:46:17:23:b6:67:6b:9f:17:53:
43:53:78:fd:cb:b7:4b:9a:ae:ef:36:87:c2:30:f8:fa:4d:26:
dc:a5:dd:9b:2f:b0:26:9e:91:e4:0b:a8:54:65:b2:b1:ca:90:
99:bb:01:ae:ba:21:24:c9:60:9b:6e:34:03:f4:f0:be:18:27:
b7:56:16:5b:de:04:bc:4e:41:19:ef:69:be:00:07:ce:0f:86:
59:7d:5e:d2:d6:1b:55:09:1b:1c:aa:06:92:c6:bf:96:53:7f:
d8:20:ed:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:30:05 2025 by rpki-client