Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: Z/gsceSI7pCBQ+8F4M8pMooCgab50GC71vHD0nTE5no=
Subject key identifier: 9C:88:37:00:17:D9:95:C9:19:0E:F1:5B:34:22:F9:FE:04:1D:D1:31
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 0198D5BC106AD409E59FD6B768C629CAF8CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 07:02:08 +0000
Manifest this update: Sat 23 Aug 2025 07:02:08 +0000
Manifest next update: Sun 24 Aug 2025 07:02:08 +0000
Files and hashes: 1: RW4un6mRBfPzHloV5RnOReMxV4M.roa (hash: 6KtCB53EZaTt4rkvk3WW5xLU60zG4n/pYxl9BtxsfPs=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: pE2mLAliI4iL2SS8em/eMzRmKhYOxyC653JuWXeTlh4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:10:6a:d4:09:e5:9f:d6:b7:68:c6:29:ca:f8:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Aug 23 07:02:08 2025 GMT
Not After : Aug 24 07:02:08 2025 GMT
Subject: CN=9c88370017d995c9190ef15b3422f9fe041dd131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:68:46:3a:7b:60:9f:2b:4e:ce:4b:c8:7a:ce:
d9:0f:0c:79:fc:2f:d0:7b:9e:20:f8:9f:92:d8:45:
e4:e7:fb:bb:2f:cc:7b:2f:ac:d5:91:53:fb:40:0a:
16:c2:97:eb:56:ac:e8:58:2d:9a:48:69:7e:a0:20:
17:4e:88:ad:40:6d:41:3a:32:f5:59:c4:e3:f7:87:
98:58:1e:15:23:98:db:03:ab:26:94:32:65:d9:e1:
42:e0:65:65:12:70:32:d4:4e:03:36:81:22:53:ca:
96:dd:2a:29:a0:d5:5e:46:07:91:a8:cf:5c:df:0b:
80:d3:5f:33:e8:ea:7a:85:21:f4:3a:24:96:30:e4:
e8:c3:34:da:0a:09:81:8a:79:51:8c:4e:26:e1:1b:
72:7b:c4:80:43:17:17:3a:d9:73:41:51:e8:26:12:
0e:a5:ca:97:00:cc:3a:eb:57:50:53:58:2e:0e:4d:
3f:10:43:cc:3b:46:c5:df:a4:18:19:b1:ae:b0:03:
42:51:e0:1e:14:82:b4:62:76:56:35:9c:5c:91:89:
d5:30:da:a7:38:ea:03:e2:9e:71:61:ad:e6:9e:93:
ff:6d:b3:3f:e0:5e:9a:d1:51:ae:90:6b:57:34:5c:
f3:d4:3c:ea:da:b8:f9:dc:d1:c6:56:75:9b:0a:5a:
c0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:88:37:00:17:D9:95:C9:19:0E:F1:5B:34:22:F9:FE:04:1D:D1:31
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:0e:38:5e:86:d8:bb:66:f4:3a:b5:90:01:30:0f:fb:5a:14:
73:ae:f2:72:ec:fb:04:b5:68:fe:e8:f5:88:7d:67:7f:d6:25:
92:bc:82:87:f0:2c:7b:33:60:2f:61:bb:d2:89:32:29:3e:d3:
68:59:5f:b2:6e:09:b5:58:fa:f0:8f:25:11:01:a3:2c:8c:bb:
84:d1:f5:3c:df:74:3d:a0:21:cb:cb:a8:82:40:4a:19:76:e2:
29:3e:20:11:e1:06:75:45:27:c1:a0:00:60:8f:ce:56:a3:5a:
b6:af:59:99:5c:5a:90:dc:a4:16:7d:8a:63:73:f5:f1:8f:7b:
fd:6b:d8:f5:23:74:15:cf:b2:30:fc:ea:5d:6d:36:39:df:c4:
ac:6c:df:54:d3:9f:91:37:e2:f5:80:b5:26:9a:b2:fa:90:5f:
31:63:65:7d:0a:28:20:ce:99:52:16:09:d5:ce:02:81:01:c9:
49:00:5a:a4:bf:53:d1:7b:e4:bf:c1:b8:8e:a8:65:e6:31:1c:
17:8b:59:87:d0:f8:02:e5:50:0c:84:7f:df:af:95:28:ae:e6:
3f:ab:64:63:83:59:01:7b:7f:dd:0b:75:be:18:75:68:a5:18:
b6:1b:71:b6:f0:f0:6e:02:68:66:57:e1:8f:60:8d:a5:95:2a:
c0:4d:58:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:40:35 2025 by rpki-client