Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
File: oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft (raw, json)
Hash identifier: WGvt8R7VLYTzWSyXsWhAt2R1Oihr4eBAL8vWvLxogXY=
Subject key identifier: 30:7D:D9:64:F2:FF:10:0F:DA:AB:C9:DD:57:10:AA:BC:F6:BE:90:24
Authority key identifier: A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
Certificate issuer: /CN=a0a647dac729f47b06369c4c9741cf943953dc59
Certificate serial: 0198D5BC12E5EFB24961A9EFC1B3FE3E1BFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
Manifest number: 0BAA
Signing time: Sat 23 Aug 2025 07:02:09 +0000
Manifest this update: Sat 23 Aug 2025 07:02:09 +0000
Manifest next update: Sun 24 Aug 2025 07:02:09 +0000
Files and hashes: 1: I9sseHHLcXl8IcXdLhoUbx9JLxs.roa (hash: C/Kew6JtLz4pztsJd8mKeGa9ZAlJTK60yskRJShN3Uo=)
2: oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl (hash: AKvXn8VUe1zohA/eDV6MXzjiVgBxtch2oPeebm+2Q9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:12:e5:ef:b2:49:61:a9:ef:c1:b3:fe:3e:1b:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a647dac729f47b06369c4c9741cf943953dc59
Validity
Not Before: Aug 23 07:02:09 2025 GMT
Not After : Aug 24 07:02:09 2025 GMT
Subject: CN=307dd964f2ff100fdaabc9dd5710aabcf6be9024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6f:17:df:6b:2d:70:55:4f:7d:e7:4b:7e:01:
51:a9:c5:8d:6c:d4:a1:94:c0:f8:e3:0b:a7:fe:5a:
a4:f7:56:0f:64:22:77:94:46:40:ed:a5:b6:af:65:
78:57:d8:41:f3:70:7b:14:eb:ef:da:0c:99:45:28:
72:e3:66:8f:e1:f9:e1:59:af:92:b5:5b:e4:c3:2b:
b5:d7:1e:a3:6e:bf:70:5e:0e:d1:60:66:f0:aa:52:
53:85:4e:c1:55:4a:02:24:01:a6:cf:b9:79:82:bf:
b1:b8:ca:be:34:2e:63:94:e5:4c:56:e6:5a:0c:96:
f9:14:4e:93:33:30:8e:e1:5c:c7:bb:c8:4d:dd:94:
b3:16:c0:9f:71:a3:b9:4a:5a:23:a7:85:34:27:d7:
2b:d0:ea:b4:d5:92:ba:58:9d:dc:5c:33:0a:6a:3f:
dc:17:a0:d6:a6:af:36:39:ca:1d:c4:7d:7f:12:f1:
6c:2c:f9:06:93:42:17:17:e5:3b:8a:a3:76:bd:e1:
1c:9f:45:57:3d:79:35:3d:d1:3c:56:3f:8a:44:83:
40:3f:82:ee:ee:64:55:e7:17:cb:1c:47:13:8d:d2:
76:7c:a8:f4:a3:bd:6d:78:f3:51:61:7d:06:30:4e:
bd:b8:e3:c7:1a:cf:fa:39:8d:b4:75:9d:bc:c9:8d:
9c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:7D:D9:64:F2:FF:10:0F:DA:AB:C9:DD:57:10:AA:BC:F6:BE:90:24
X509v3 Authority Key Identifier:
keyid:A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:f0:df:b1:ab:1d:19:5e:12:0d:95:2e:5d:1d:1c:c0:68:6a:
ab:4c:77:90:83:33:b5:17:87:50:d8:c4:d6:02:fd:17:5b:ca:
8e:4b:24:7f:6a:2e:a3:a6:ca:22:dd:02:19:90:51:88:8b:8f:
8d:27:55:78:1e:74:ab:ed:52:e0:3a:b5:44:f3:ad:af:a8:bb:
0c:04:d2:5a:f2:24:af:3f:8b:fa:eb:65:6a:79:e9:e2:63:7a:
ad:c5:42:7b:7b:23:a7:01:fb:9f:4f:45:77:fb:c0:fe:66:13:
92:44:5b:d8:eb:e4:30:95:e6:dd:ac:f8:25:cd:4e:9c:e9:2c:
46:78:05:4b:46:57:82:c7:15:5a:6e:d3:c4:96:df:9d:30:6d:
58:a1:f0:57:44:06:a4:e5:7f:d1:53:bb:5f:8b:94:bb:51:45:
61:5d:3f:76:bf:ad:54:68:eb:61:25:8d:c6:ff:b3:42:24:54:
dc:ca:ca:9f:ac:7e:fa:b8:19:72:67:92:84:e4:54:94:3b:41:
82:9e:ad:e9:16:f7:06:a3:6e:ba:69:7d:72:c0:18:3d:f9:c5:
97:50:b9:2c:f3:a2:39:7f:d8:50:32:db:c3:8d:ef:96:b6:3b:
80:c3:31:aa:15:55:28:5a:00:eb:66:74:26:b4:5f:f1:98:7b:
03:d6:85:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:32 2025 by rpki-client