Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: qSGUEYDHx8S2EfzzWeKMk4gX2zOjyxYpaHqlTzhEMz4=
Subject key identifier: 7C:5F:40:A9:FF:B8:F3:D2:BE:81:51:62:3A:01:F5:12:E5:F7:E7:DD
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 0198D4A7CADD4D35CBA61CF78F9BE73D383F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 05A4
Signing time: Sat 23 Aug 2025 02:00:22 +0000
Manifest this update: Sat 23 Aug 2025 02:00:22 +0000
Manifest next update: Sun 24 Aug 2025 02:00:22 +0000
Files and hashes: 1: FfIlEvStYRtAHT_4tgisj2sboIA.roa (hash: u8VtTRQomqZri4fvKgtiux4C4c/ZHFagnd78Z59URa8=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: QeAqmScHQLqWXn0oCKUzMlanAQH5Pm0ja7F+5FBGQSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:ca:dd:4d:35:cb:a6:1c:f7:8f:9b:e7:3d:38:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Aug 23 02:00:22 2025 GMT
Not After : Aug 24 02:00:22 2025 GMT
Subject: CN=7c5f40a9ffb8f3d2be8151623a01f512e5f7e7dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b2:d6:2b:92:f8:5d:b8:2e:33:ac:7e:5e:fa:
92:76:10:5c:44:44:98:db:b5:f4:ec:dd:2b:33:00:
58:d5:42:54:a3:96:aa:8a:91:c2:5b:9a:3f:71:dc:
50:9e:58:09:0b:1e:49:80:b4:63:07:5b:12:5e:cc:
ff:71:81:49:00:ae:21:b0:af:c5:7e:f6:d4:54:02:
61:64:28:2d:9e:48:53:22:f5:95:bf:d4:1b:c6:d1:
75:c6:d6:39:a1:6d:5c:90:3c:e8:77:62:e5:66:23:
f7:57:ec:ef:4c:a4:e9:2f:cf:e0:f2:71:94:aa:06:
5e:8a:96:d1:1e:00:ae:9f:8b:53:f6:f2:5f:d0:5c:
5e:54:6f:23:07:29:7e:54:7d:bf:bc:1c:11:29:2a:
9c:94:37:22:97:8f:f9:1d:be:e6:a3:29:4a:17:6c:
06:fe:a6:ba:86:fb:6e:03:d0:2c:92:b5:54:e6:cb:
eb:37:b4:87:60:3f:0e:fa:27:dd:3a:32:c7:25:13:
4c:ee:09:92:95:a5:fc:13:d7:87:88:f2:d9:eb:f0:
bd:4b:c6:e6:08:5c:8e:4d:29:6e:ba:74:7e:31:36:
7c:c5:89:73:5e:bb:20:b7:10:66:f2:f9:de:78:f9:
a8:1f:68:b5:36:eb:1f:32:c5:a5:6d:86:99:fe:c7:
2a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:5F:40:A9:FF:B8:F3:D2:BE:81:51:62:3A:01:F5:12:E5:F7:E7:DD
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:7d:38:ff:a2:fb:59:ed:b3:54:b6:c0:20:14:de:4a:84:7f:
79:d3:5b:b0:e8:54:30:f3:d2:ed:81:c8:f0:21:fc:c1:37:d1:
18:d7:57:dd:7f:89:51:95:2e:e0:80:71:7a:e1:5b:98:1a:f5:
2b:bd:44:46:32:53:13:cb:d0:c1:18:b6:d3:64:55:02:e6:d9:
3a:7e:78:a4:6d:f0:78:1c:aa:f1:44:6f:d5:5d:70:76:99:9f:
dc:8e:2b:01:5e:d7:a0:8f:3c:f3:fd:fe:25:d9:b8:d0:44:c4:
3a:9f:92:48:12:e5:f0:80:96:71:11:71:d8:65:d6:85:70:c9:
9d:31:d4:4e:a6:5e:c8:38:c4:28:84:87:db:7a:5b:ab:e9:fe:
c1:dc:88:ab:6d:d7:78:b0:83:96:6d:eb:6b:c1:6e:db:fe:e9:
2e:55:ac:eb:b2:99:f9:a1:b3:74:6f:09:fa:3d:cd:76:66:e6:
06:a9:45:ac:4b:8e:40:e2:b9:23:09:eb:f2:6c:c9:ed:3f:5a:
76:b3:86:f0:b2:7f:e6:be:09:ca:0c:69:d2:27:af:f0:8e:d7:
24:34:2a:76:54:f5:25:d3:bd:0e:84:86:7b:84:3b:fb:64:85:
ee:3d:bd:ea:2a:22:2b:f9:e7:4b:bc:55:7c:0b:66:67:79:fe:
64:3c:80:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUp8rdTTXLphz3j5vnPTg/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOWZkYTA0N2IzYTBiMWM4MjA0MzVlNjk5Mzg4NjYwZGEz
MmM2M2YwHhcNMjUwODIzMDIwMDIyWhcNMjUwODI0MDIwMDIyWjAzMTEwLwYDVQQD
Eyg3YzVmNDBhOWZmYjhmM2QyYmU4MTUxNjIzYTAxZjUxMmU1ZjdlN2RkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrLWK5L4XbguM6x+XvqSdhBcRESY
27X07N0rMwBY1UJUo5aqipHCW5o/cdxQnlgJCx5JgLRjB1sSXsz/cYFJAK4hsK/F
fvbUVAJhZCgtnkhTIvWVv9QbxtF1xtY5oW1ckDzod2LlZiP3V+zvTKTpL8/g8nGU
qgZeipbRHgCun4tT9vJf0FxeVG8jByl+VH2/vBwRKSqclDcil4/5Hb7moylKF2wG
/qa6hvtuA9AskrVU5svrN7SHYD8O+ifdOjLHJRNM7gmSlaX8E9eHiPLZ6/C9S8bm
CFyOTSluunR+MTZ8xYlzXrsgtxBm8vneePmoH2i1NusfMsWlbYaZ/scqJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHxfQKn/uPPSvoFRYjoB9RLl9+fdMB8GA1UdIwQY
MBaAFKCf2gR7OgscggQ15pk4hmDaMsY/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWIt
Mjk5MjBlNTE2N2Q5LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi84YjRkMzItMDM2NS00ZGFhLTlkNWItMjk5MjBlNTE2N2Q5
LzEvb0pfYUJIczZDeHlDQkRYbW1UaUdZTm95eGo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuH04/6L7
We2zVLbAIBTeSoR/edNbsOhUMPPS7YHI8CH8wTfRGNdX3X+JUZUu4IBxeuFbmBr1
K71ERjJTE8vQwRi202RVAubZOn54pG3weByq8URv1V1wdpmf3I4rAV7XoI888/3+
Jdm40ETEOp+SSBLl8ICWcRFx2GXWhXDJnTHUTqZeyDjEKISH23pbq+n+wdyIq23X
eLCDlm3ra8Fu2/7pLlWs67KZ+aGzdG8J+j3NdmbmBqlFrEuOQOK5Iwnr8mzJ7T9a
drOG8LJ/5r4Jygxp0iev8I7XJDQqdlT1JdO9DoSGe4Q7+2SF7j296ioiK/nnS7xV
fAtmZ3n+ZDyAmw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:41:33 2025 by rpki-client