Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
File: oCN2bGLetRKXFVcI7MtCHIsEeAo.mft (raw, json)
Hash identifier: ueCRc0pUv0KtVuw1HxRM04SrXCUZj36HkN9uf+s/dAw=
Subject key identifier: 28:C4:94:1D:E7:78:DE:96:46:79:3E:82:02:FA:B6:F3:59:64:E2:B5
Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a
Certificate serial: 01987C77C55E7AD69CFDB7428A90141F2057
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
Manifest number: 136D
Signing time: Tue 05 Aug 2025 23:01:20 +0000
Manifest this update: Tue 05 Aug 2025 23:01:20 +0000
Manifest next update: Wed 06 Aug 2025 23:01:20 +0000
Files and hashes: 1: CHrue45DLIyJD4ONNTGJ0TL9VsA.roa (hash: u/OfuNsymZa5oGvy4EyVltbtk9eDJK5E1jdXxm1UcXE=)
2: oCN2bGLetRKXFVcI7MtCHIsEeAo.crl (hash: gIVNr+i7d+f37ZdkvHpDInAhbQ+vFzYiHLUJwM5zRko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:c5:5e:7a:d6:9c:fd:b7:42:8a:90:14:1f:20:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a023766c62deb51297155708eccb421c8b04780a
Validity
Not Before: Aug 5 23:01:20 2025 GMT
Not After : Aug 6 23:01:20 2025 GMT
Subject: CN=28c4941de778de9646793e8202fab6f35964e2b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:87:1f:c0:2a:7a:9b:f7:4a:e2:28:51:c9:59:
24:87:f7:a2:b6:7d:f0:a5:35:7e:71:bc:db:9a:67:
d3:67:f4:1a:b2:99:7b:e2:41:1c:6a:31:6d:c0:8c:
4c:b4:90:ef:1a:3d:3a:b9:bd:2a:1c:ae:1c:a3:b4:
42:02:41:4f:19:b5:43:16:de:bb:61:4f:dd:d2:2a:
c7:c7:a1:c4:87:3f:c4:40:77:4a:e0:fe:5b:46:66:
5d:dc:89:2d:73:38:8a:d9:9d:c0:7c:87:73:5f:fc:
ee:46:3b:1a:30:7a:3b:8d:7e:ff:a4:13:44:5f:e0:
9a:23:7b:1a:d8:c2:79:9c:ce:7a:c1:86:be:57:94:
14:18:8a:5c:ee:a5:0a:0b:11:f1:20:2e:74:9f:d2:
1c:d1:cc:1c:7a:cd:56:95:fa:54:51:93:5a:33:df:
81:19:9d:c4:71:67:72:ed:62:82:22:6e:51:5b:06:
c8:7f:06:28:5e:03:63:60:e0:52:c1:bf:a6:47:30:
22:ae:e8:91:6b:0b:70:10:01:7f:4c:54:65:76:92:
c2:c3:f9:17:db:7f:d2:5b:fa:1d:44:50:8c:28:e8:
00:1c:97:73:76:f3:3c:fa:f1:6f:47:c2:df:23:28:
aa:4a:03:26:ba:e8:2c:05:df:e1:87:1a:bf:9b:55:
be:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:C4:94:1D:E7:78:DE:96:46:79:3E:82:02:FA:B6:F3:59:64:E2:B5
X509v3 Authority Key Identifier:
keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:b5:0a:bb:f1:27:12:17:9e:a8:ff:df:15:8d:e0:ec:83:6b:
23:77:11:69:1f:ad:6e:9e:b6:34:63:dc:ca:90:3a:34:73:5b:
bd:63:c9:c0:49:70:ad:d6:e6:11:db:5f:06:c2:59:2a:f0:8e:
42:e9:e9:54:f5:4e:0a:07:9b:5e:00:1e:31:ed:e4:53:74:2a:
d1:7e:e4:13:af:0b:4b:bd:21:83:57:b0:fd:64:59:f9:a0:cf:
11:e6:c8:30:2c:18:af:89:a2:66:cc:3a:9a:d3:d3:9c:77:d8:
ea:22:46:9c:04:bd:b5:65:6e:61:4b:0f:47:ab:81:18:a4:39:
54:4d:90:28:a2:02:04:ce:d6:cc:01:87:1e:86:99:28:3e:34:
3f:2c:26:75:b7:c9:26:86:a4:8f:6e:49:d7:3d:40:cf:b6:81:
7c:4b:9b:00:44:c5:83:71:69:ac:dc:ce:ea:84:be:51:77:dc:
fd:37:cd:27:f9:02:d8:22:09:2d:8f:e6:90:8c:31:75:04:78:
71:54:44:ce:23:8a:53:64:b3:4b:31:a5:cd:a2:fd:bc:9c:5e:
74:b8:a4:e0:a2:27:a4:9d:11:ce:d8:14:7b:8b:43:63:6a:29:
46:7f:3f:e1:19:18:e2:87:72:6d:c8:34:9a:58:50:8f:33:2c:
af:57:57:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:17:06 2025 by rpki-client