Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
File: ao33d2sW0oLgTGluJYqk-fnOnJg.mft (raw, json)
Hash identifier: Q26L9iwO0AEV1dG6swutQZpADMvRDJ3C8CIyKztrutA=
Subject key identifier: 50:00:E5:A2:56:72:C0:49:B0:D6:5D:CE:8D:8F:26:0E:DB:06:08:52
Authority key identifier: 6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
Certificate issuer: /CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Certificate serial: 0198D77340CF6B0CE4888EF8E56C95905893
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
Manifest number: 0A3B
Signing time: Sat 23 Aug 2025 15:01:51 +0000
Manifest this update: Sat 23 Aug 2025 15:01:51 +0000
Manifest next update: Sun 24 Aug 2025 15:01:51 +0000
Files and hashes: 1: ao33d2sW0oLgTGluJYqk-fnOnJg.crl (hash: 6OSySi5ccQpwrsknHYCU2Uix7LLQ4GnHOFOUcdKh2M4=)
2: zkFI0q7jFUcpvcC1_CEihR1YV24.roa (hash: 783T5wgYEpPQMcRoCX4E0P3B8Y6FUugL0p43iJWmXrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:40:cf:6b:0c:e4:88:8e:f8:e5:6c:95:90:58:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Validity
Not Before: Aug 23 15:01:51 2025 GMT
Not After : Aug 24 15:01:51 2025 GMT
Subject: CN=5000e5a25672c049b0d65dce8d8f260edb060852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:46:d5:79:73:64:6c:26:00:1c:bd:04:a7:42:
40:fe:2a:94:eb:c3:b0:11:c1:5e:a4:1b:6b:c1:f9:
36:c6:de:9a:69:c8:81:81:44:54:d8:37:79:7b:c2:
90:c5:ef:a6:9d:5b:8d:f6:f7:4e:91:5b:64:1f:c2:
3f:8e:af:68:61:f1:68:0e:ab:3f:c6:19:78:9f:60:
53:3a:02:84:1d:05:9a:4c:c0:d7:0d:3c:78:a2:c9:
5e:7e:12:21:5e:00:92:40:e1:02:83:1a:c7:e4:33:
d2:8b:bd:c5:f1:ea:83:9a:63:f0:21:65:5f:57:c7:
cc:51:39:eb:ed:8d:99:c2:66:16:79:21:9d:ae:30:
52:d3:1d:9f:9d:af:8d:e0:8a:4b:0c:d4:1c:bc:71:
20:76:77:8b:6c:b3:66:26:b5:80:5c:7b:4f:4a:f8:
22:a5:80:58:ff:3d:8b:3c:ee:e4:91:82:8a:95:18:
e7:f0:2c:d9:f6:87:9f:ab:48:93:75:34:29:58:92:
f9:8c:2b:1e:f4:6d:73:ec:88:77:1b:fe:4e:c2:48:
7f:7a:3d:09:fe:c5:9e:b1:24:b1:2e:46:6e:df:db:
56:a7:86:54:8b:8b:d0:03:b8:2a:5b:2e:64:6e:34:
0b:39:b7:e8:44:a2:e6:ac:68:d6:46:e1:be:7d:c2:
cc:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:00:E5:A2:56:72:C0:49:B0:D6:5D:CE:8D:8F:26:0E:DB:06:08:52
X509v3 Authority Key Identifier:
keyid:6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:56:ed:9d:63:cb:b5:08:b2:c1:55:50:60:33:04:26:6d:8d:
32:3f:2f:3c:e6:a4:a9:d7:15:ef:dc:de:05:ce:dc:39:97:44:
fd:b5:3b:96:62:f0:e3:1a:0e:1c:07:cf:48:78:fb:8f:1a:55:
60:9d:49:e6:2c:6c:25:d5:8f:04:23:6b:42:63:53:b3:10:a7:
65:7f:d2:84:72:12:3e:68:77:3b:45:00:bb:f7:5c:23:6c:a2:
d6:1d:ad:91:8c:2e:84:2e:ed:f4:c3:c2:73:34:f4:a4:3a:f7:
e7:a9:a2:dd:20:2d:e2:cf:5c:53:ad:83:5a:9a:6e:31:43:de:
61:99:45:cd:8b:34:d4:2d:c2:8f:3a:fe:e8:43:b5:47:be:6a:
b0:44:f4:5c:9c:6b:5a:ee:f1:17:03:10:d6:d3:64:31:ed:31:
98:3d:19:bb:b7:4c:52:46:fb:5a:19:d6:73:63:25:e8:3b:b5:
69:2f:34:d3:c8:dc:93:fc:40:56:15:eb:3a:13:64:cc:3d:71:
25:b3:ce:e9:37:f6:97:af:1d:f1:03:20:32:75:57:b3:a2:17:
6f:66:6a:27:24:93:46:ac:4f:5b:51:21:df:98:89:83:f0:ec:
cd:48:c8:da:81:ec:a9:62:0e:f6:d9:59:38:b1:67:7d:e1:41:
10:da:57:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:52:05 2025 by rpki-client