Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
File: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft (raw, json)
Hash identifier: TVg2ynlxyeE+8MWm+YAvW7d/aPk3yuYfEmiimbSCoM8=
Subject key identifier: 66:6A:E3:2B:2E:8A:89:C3:1F:39:EA:29:9A:93:85:8D:CE:79:C0:D8
Authority key identifier: D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
Certificate issuer: /CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Certificate serial: 0198D54DC5A4BD09BBC99BB338911E54B490
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
Manifest number: 0BCC
Signing time: Sat 23 Aug 2025 05:01:40 +0000
Manifest this update: Sat 23 Aug 2025 05:01:40 +0000
Manifest next update: Sun 24 Aug 2025 05:01:40 +0000
Files and hashes: 1: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl (hash: J0Mnv9DYO03+pJwhZow5hijNBwdTD+YhVZgM+gr5pfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:c5:a4:bd:09:bb:c9:9b:b3:38:91:1e:54:b4:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Validity
Not Before: Aug 23 05:01:40 2025 GMT
Not After : Aug 24 05:01:40 2025 GMT
Subject: CN=666ae32b2e8a89c31f39ea299a93858dce79c0d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f3:d0:8d:ea:6f:09:9c:85:52:65:0c:7e:81:
db:9e:05:d1:32:9a:1c:07:af:c8:c2:2d:de:62:ed:
b6:b3:8f:fe:8e:49:33:0b:b7:ce:ac:3c:07:31:9f:
f6:af:48:8a:bc:71:53:89:b4:9e:3d:d8:cd:ec:0a:
37:6c:8a:44:47:2d:0e:44:34:72:3b:60:94:e2:a9:
a2:b7:b7:38:b7:26:be:1c:0a:a3:98:b9:01:15:43:
5d:05:52:8d:f0:fb:46:83:32:c9:d8:f6:7b:ae:93:
ed:bf:f1:d4:ce:66:cc:02:6b:4f:ef:9a:78:55:a0:
5c:4b:18:c5:32:9c:1f:be:d6:ab:87:86:7a:20:82:
80:14:c1:1c:a2:7c:e0:24:49:f5:bf:bf:04:c6:bf:
cc:56:13:f7:09:8f:99:a3:ee:de:97:a3:58:90:c1:
f8:3b:2a:32:1a:8e:19:de:c1:f5:82:b2:ba:ac:40:
41:e7:41:35:e0:c0:1e:09:96:1d:e2:50:db:47:ba:
c0:67:28:4d:c0:4d:02:37:3b:3d:12:43:f7:f7:65:
49:c9:fa:0f:8f:bc:b4:f3:e4:f5:22:eb:92:7f:b5:
da:f0:de:58:74:5e:b1:fe:bc:18:01:2e:f2:a8:20:
88:cc:01:39:b6:b0:35:ab:23:6b:96:12:69:bd:c1:
8d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:6A:E3:2B:2E:8A:89:C3:1F:39:EA:29:9A:93:85:8D:CE:79:C0:D8
X509v3 Authority Key Identifier:
keyid:D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:98:c8:fd:77:12:f8:8c:d6:7a:0e:71:6b:fa:86:af:1d:69:
ab:45:7e:5e:a0:a4:c8:0e:f5:fb:94:ed:a6:b9:9f:8c:46:8b:
03:1d:89:83:9c:23:51:59:8e:1e:f2:3a:75:2f:2b:55:92:26:
8d:be:f2:7f:ef:03:a8:4d:9a:a8:6b:93:e8:3b:70:02:bb:00:
b7:74:d7:f1:b4:de:54:0e:44:fa:00:76:84:6a:bc:ef:09:af:
2d:35:6a:41:6a:1d:64:ae:5b:c0:d2:13:c1:18:b1:ca:5c:f7:
da:ce:c7:ee:da:68:82:a0:1f:43:af:fa:ab:36:40:6c:99:58:
29:f9:d5:fb:cd:86:85:ef:de:a4:f7:fc:fc:81:a9:d9:00:b6:
62:1d:01:16:41:0b:d6:25:28:4e:e7:98:10:90:39:36:ba:e1:
44:3e:2f:21:b3:6b:51:37:96:c3:07:72:2d:41:07:ab:67:99:
40:f0:59:6a:5e:f2:fd:9c:76:f2:65:0a:be:6b:99:57:31:66:
73:01:9d:f6:a3:ee:cf:0e:c7:33:ff:94:8c:92:12:f6:5d:3a:
9a:63:dd:c4:44:97:48:15:50:ab:5d:ee:2c:88:32:ed:fc:cb:
c3:73:19:af:f9:08:2d:e0:1b:b5:b9:27:d4:3b:42:6a:db:11:
10:44:ac:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:04:32 2025 by rpki-client