Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier: 1x6f+d0zs2Z8BqQNPdF+1I2rGbQ6vDtO7gwwXvbDhqw=
Subject key identifier: 99:90:9A:43:B7:42:A7:50:9E:D4:24:33:4F:3F:9D:C1:DB:92:02:4F
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 0198D5F1C131C5B0D09A542CE20E43254BF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 08:00:47 +0000
Manifest this update: Sat 23 Aug 2025 08:00:47 +0000
Manifest next update: Sun 24 Aug 2025 08:00:47 +0000
Files and hashes: 1: lhjGJIifChZhyO0SU9NNpxfAaP0.roa (hash: nX/uaYhIBdSKJHgpMLgtjy0tDRvricoltizd7F7VYTI=)
2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: 8J8uUmCwv1KypdnEIq1JPbBm6fmdF346F7rI+5RQUiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:c1:31:c5:b0:d0:9a:54:2c:e2:0e:43:25:4b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: Aug 23 08:00:47 2025 GMT
Not After : Aug 24 08:00:47 2025 GMT
Subject: CN=99909a43b742a7509ed424334f3f9dc1db92024f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:22:6e:5f:fc:35:2d:13:0e:c9:b3:53:78:68:
c0:d4:44:4d:a0:d3:7b:81:3a:30:20:b2:a7:57:f4:
46:e3:71:49:57:b5:f2:c3:2b:5f:75:50:24:28:b1:
e4:3a:e2:cf:1a:94:08:ae:c3:6f:95:c0:ec:3b:48:
15:38:b6:93:8a:9f:45:da:6a:45:a9:11:05:8a:7b:
f6:4a:3f:4a:ce:9f:0f:bd:74:67:f6:a1:bc:51:34:
16:e5:c0:9e:7e:a3:f5:3c:03:2a:02:d8:22:a1:8d:
76:78:82:91:ab:65:c6:8a:20:d2:ed:88:2d:a2:9d:
c0:8d:e7:87:fc:4d:ce:1b:b8:e8:08:2f:53:e0:28:
d7:26:39:71:eb:bf:48:8a:61:25:aa:1e:b1:db:a9:
bf:c4:62:f9:4a:29:93:71:cf:a2:7f:2f:a1:f0:99:
a3:b7:ff:c9:a1:c4:b7:44:da:ee:a5:3f:3f:ee:85:
aa:c4:dc:30:34:f8:3e:06:61:29:4c:4e:81:af:60:
2a:57:4b:b0:e2:b0:16:f9:8b:e6:b6:38:ac:be:c3:
c6:91:22:4b:16:86:ef:50:83:cb:e8:52:7b:4f:91:
7f:d2:f9:ed:ac:fc:21:42:d4:e0:07:4f:0e:94:4d:
ee:7f:97:a0:e7:6a:28:0f:02:bb:d9:4b:f8:d0:8a:
5e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:90:9A:43:B7:42:A7:50:9E:D4:24:33:4F:3F:9D:C1:DB:92:02:4F
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:0d:62:e9:33:28:e9:4d:dd:79:e3:c2:46:21:79:da:67:04:
6e:ae:49:1a:d3:49:e0:6d:7a:d6:07:61:cb:d3:03:09:49:f3:
e8:f8:85:65:c0:2e:bf:55:64:e1:29:9d:33:b9:cd:02:b9:0a:
26:cf:04:b7:43:a4:14:07:ae:92:4c:2b:e7:68:2c:1b:66:7c:
0e:28:a3:19:14:f4:bf:e1:95:37:7f:06:88:25:bc:89:a8:0c:
d5:55:7a:1c:7d:64:ce:21:cc:15:c4:ad:7d:c6:cf:7e:a3:ff:
c5:78:e5:86:60:f2:7e:fd:85:be:bf:dd:ed:65:7e:cc:8f:ec:
74:56:b6:a7:d6:e3:c0:e1:b7:12:fc:ad:bf:2b:3b:5e:19:79:
f4:41:ac:e8:ec:4b:0c:de:85:b3:bc:36:b6:17:10:32:9a:d2:
7f:97:1d:ab:a3:55:94:27:5f:32:60:3f:56:63:68:a4:03:ba:
71:be:6c:0b:88:c1:2d:90:9e:7c:04:8b:61:ba:c4:5a:74:41:
6a:50:6c:75:f2:4b:a8:da:bd:01:a1:f4:9d:fa:e8:5a:1f:5c:
43:0a:1b:b2:28:c2:24:7f:79:27:05:08:a7:7c:e4:47:2e:e7:
4b:69:fc:9f:ae:14:a1:74:ce:36:3f:d2:b4:19:30:22:c9:e1:
02:13:62:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:30:53 2025 by rpki-client