Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
File: Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft (raw, json)
Hash identifier: Gq13umQo4WpTcc1vSELh5O2LAsMO5vIDGrMvvv4XGpI=
Subject key identifier: 9F:77:35:AC:6C:EF:88:14:E0:3E:6C:22:42:0E:C7:FB:3B:C9:63:37
Authority key identifier: 3A:19:35:B3:CB:C2:52:7E:AF:16:7D:69:B2:07:8D:33:E4:C4:DA:20
Certificate issuer: /CN=3a1935b3cbc2527eaf167d69b2078d33e4c4da20
Certificate serial: 0198D404CB69F86BA2BF21756C1D78251A61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
Manifest number: 078F
Signing time: Fri 22 Aug 2025 23:02:20 +0000
Manifest this update: Fri 22 Aug 2025 23:02:20 +0000
Manifest next update: Sat 23 Aug 2025 23:02:20 +0000
Files and hashes: 1: M82sfYNUsyqK13nZZfstvwDd7Fs.roa (hash: Pwd9phO+f2VaYBcGPbgT8icjGcqdGdD4Q6fe+fixav0=)
2: Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl (hash: dYqVL4HWMV/74jZRXY6jwO2EOGBpy/Pvo/eo6a2aZGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:cb:69:f8:6b:a2:bf:21:75:6c:1d:78:25:1a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1935b3cbc2527eaf167d69b2078d33e4c4da20
Validity
Not Before: Aug 22 23:02:20 2025 GMT
Not After : Aug 23 23:02:20 2025 GMT
Subject: CN=9f7735ac6cef8814e03e6c22420ec7fb3bc96337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f1:50:02:25:69:64:6f:98:f0:1c:2f:4d:81:
5d:a0:b5:d5:8a:79:96:e5:54:5c:91:84:21:9e:39:
ea:3a:00:b3:a3:cf:44:7b:53:62:d9:81:98:65:c3:
a2:f2:2b:6e:21:b5:59:ce:89:08:51:8f:06:44:33:
99:55:75:e2:80:14:4a:ec:84:b0:c1:9d:77:8c:ce:
cc:79:16:40:c6:f7:89:27:81:39:d2:b5:02:44:0b:
fe:2d:ac:07:d3:30:f4:94:ec:34:49:30:2b:7e:ee:
32:bf:ac:d5:1c:7c:71:5a:d8:9d:1b:2b:5b:34:32:
2b:96:b4:96:e2:d8:3c:da:08:79:d3:f5:36:2b:23:
87:09:ce:3f:dd:80:aa:66:62:49:81:4f:4c:fd:04:
00:d0:f5:b8:29:f5:87:18:7c:24:c3:53:88:ff:91:
69:82:75:f2:6b:03:e3:e4:42:4c:d1:94:25:31:b1:
29:e4:98:a0:c7:f3:92:92:0f:d1:76:f4:cf:82:09:
0f:05:c6:ed:f6:44:d9:85:87:9c:a1:65:4b:b1:53:
45:32:a5:78:ed:85:95:f6:25:18:20:5f:6a:3f:02:
f8:5b:e5:a5:65:53:1e:0e:61:1a:9e:ea:47:7f:9c:
30:f6:fd:0f:8b:16:11:33:85:6e:c6:0c:0c:fe:9b:
b8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:77:35:AC:6C:EF:88:14:E0:3E:6C:22:42:0E:C7:FB:3B:C9:63:37
X509v3 Authority Key Identifier:
keyid:3A:19:35:B3:CB:C2:52:7E:AF:16:7D:69:B2:07:8D:33:E4:C4:DA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:c4:ba:71:d0:91:ff:23:2f:2f:d0:27:7a:bf:57:58:b5:49:
60:fc:37:38:27:e8:fa:12:94:86:cf:87:cd:3c:ba:29:08:d9:
3e:72:44:94:8c:41:82:5a:c3:a2:b2:a7:71:24:00:1d:9e:3f:
b7:d4:ba:37:f3:e3:93:42:cd:95:aa:8c:35:bd:a2:fd:e4:b0:
40:eb:e1:a6:f4:79:91:6b:7c:cd:19:4e:c6:45:e6:7c:96:cf:
96:34:f9:82:fe:32:0c:d0:c5:dd:70:0a:d8:57:f6:d4:f6:51:
96:b6:d9:5f:ab:f4:e0:6f:1e:39:0c:f4:1c:ec:0d:f9:49:4b:
63:88:0f:24:ad:93:19:05:cf:16:40:79:41:9e:af:99:f5:8b:
0b:19:2e:67:7b:7f:0d:e8:62:cb:d5:6f:0e:d8:18:53:f6:52:
4f:cd:fb:a3:44:e2:d2:39:b1:bf:0e:9d:e1:23:ea:00:c6:b1:
dc:a8:20:90:b4:e4:31:37:8f:99:64:f2:30:89:39:f7:5e:25:
a3:94:89:96:17:88:cf:40:10:07:d4:6b:6a:30:ab:c3:de:bb:
77:aa:2a:d1:b9:66:a2:f3:5d:fa:0b:28:51:70:29:14:cc:3d:
05:af:ed:d7:d4:33:e3:56:fd:44:96:d4:d8:3e:33:b2:3a:3d:
85:fa:07:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:20:40 2025 by rpki-client