Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
File: oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft (raw, json)
Hash identifier: 0P/2xhB27E+AZzC5o4PmIeUJTJQQWuRpHPj6heLVXNk=
Subject key identifier: 8E:23:28:95:BD:28:AC:22:CF:AE:A4:AA:AE:47:AF:9F:2F:75:C4:27
Authority key identifier: A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
Certificate issuer: /CN=a0a647dac729f47b06369c4c9741cf943953dc59
Certificate serial: 0199FBEBF0A4FB779835DBE548DFC6C4FC88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
Manifest number: 0C43
Signing time: Sun 19 Oct 2025 10:02:47 +0000
Manifest this update: Sun 19 Oct 2025 10:02:47 +0000
Manifest next update: Mon 20 Oct 2025 10:02:47 +0000
Files and hashes: 1: SMgqJqJiWe5nMYNu5THuPlxAMNc.roa (hash: hSxVwtR62ZGO5yHtAQe/FF3nfDWb9MLBApYj+v7/x1k=)
2: oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl (hash: c7u0csk2XYqVvO/SVPR/qnYJh4CmrC0y+U2b+uWBwxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:f0:a4:fb:77:98:35:db:e5:48:df:c6:c4:fc:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a647dac729f47b06369c4c9741cf943953dc59
Validity
Not Before: Oct 19 10:02:47 2025 GMT
Not After : Oct 20 10:02:47 2025 GMT
Subject: CN=8e232895bd28ac22cfaea4aaae47af9f2f75c427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:27:9e:b3:d7:52:32:57:f5:bd:d4:cd:ee:0e:
ff:b5:68:46:99:1d:7c:e3:f5:ac:23:d6:bf:91:a7:
aa:93:fd:18:25:e7:85:de:49:35:39:86:53:a3:d9:
49:56:80:88:b8:85:a9:a9:03:c1:b2:7f:c5:46:9a:
41:91:77:98:a2:5e:4f:2f:4c:62:bc:23:bb:26:f4:
8b:f0:5e:81:e6:90:e5:8f:1b:c1:c2:63:5f:41:99:
77:21:46:bf:78:dd:6a:4c:52:49:9a:c6:b3:5d:73:
82:d1:77:72:7a:7b:94:ab:4d:07:93:fa:1b:60:88:
17:56:b7:09:10:83:18:41:61:58:63:7a:68:60:4f:
f6:4f:3d:8e:da:ad:db:78:49:ea:d4:df:34:6e:c1:
e5:1f:5a:85:f3:a7:f7:e6:48:9d:9f:9a:90:c6:45:
4c:fa:8b:e0:c0:fc:dd:27:12:b4:22:cb:7d:47:e4:
e1:2c:d5:8a:5b:37:a0:9e:94:9e:7f:46:eb:ec:d6:
fc:86:21:65:7e:93:cd:e5:4b:0f:fa:4f:28:22:0e:
3a:e0:14:be:55:21:b6:ed:b9:5b:a9:8e:c6:e6:db:
70:24:3e:63:9b:57:61:d8:e4:6a:6d:78:d4:41:32:
56:c7:df:c1:5b:31:c4:39:cb:c6:bd:8e:0a:20:fc:
6c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:23:28:95:BD:28:AC:22:CF:AE:A4:AA:AE:47:AF:9F:2F:75:C4:27
X509v3 Authority Key Identifier:
keyid:A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:16:ef:86:28:d3:a1:81:1c:d3:0e:71:48:b2:f1:02:8c:a5:
70:94:b8:db:da:20:f2:db:62:fe:02:94:3b:6b:5a:75:70:92:
cb:3d:ef:7f:29:0d:1f:d2:47:1a:46:71:cd:4c:38:36:76:18:
77:ef:c4:d0:92:07:6f:cc:81:60:40:a3:75:44:42:06:aa:8a:
02:1a:cc:45:82:84:60:82:91:5c:09:02:f2:81:20:b9:43:15:
85:a5:d8:95:3b:eb:c0:bb:fd:7c:c8:76:a8:6e:cf:f7:91:6b:
e9:ee:0d:a6:26:fa:bb:7d:e0:f7:fc:34:57:50:de:78:2f:75:
e4:f4:1e:41:d1:4f:29:51:68:88:fb:2e:2a:aa:11:35:6c:2c:
b2:4d:3e:c8:c2:fc:ce:9f:67:91:ed:8b:f8:32:58:5a:99:08:
41:46:b6:d3:c8:04:07:4b:ca:fc:d0:7c:4a:45:d5:d0:d7:c2:
08:1e:4a:44:f5:10:52:f3:d5:38:dc:60:9f:d5:80:03:23:57:
6b:aa:73:b9:9b:d9:1f:51:a1:4e:c7:30:7e:62:60:16:dd:f4:
59:9b:a9:fe:24:10:3e:ef:a2:d3:71:6c:e2:89:4c:7d:12:c8:
f4:5d:96:3d:c9:66:0e:f6:15:4e:2d:a0:1f:fd:53:04:e7:95:
f0:ae:d7:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:58 2025 by rpki-client