Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
File: oHFXHI4QtBnXo7824Qhf_VzXipg.mft (raw, json)
Hash identifier: jn/GYzEXxiOzKIpjWD6kdIV/m/fNzYXygO2vzQwwboU=
Subject key identifier: C5:C1:84:50:75:E9:16:0D:EA:6A:57:67:76:8D:9B:F3:47:CE:1C:66
Authority key identifier: A0:71:57:1C:8E:10:B4:19:D7:A3:BF:36:E1:08:5F:FD:5C:D7:8A:98
Certificate issuer: /CN=a071571c8e10b419d7a3bf36e1085ffd5cd78a98
Certificate serial: 0198D5834FDDAB343002606C1BBAD63DD687
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oHFXHI4QtBnXo7824Qhf_VzXipg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
Manifest number: 1011
Signing time: Sat 23 Aug 2025 06:00:09 +0000
Manifest this update: Sat 23 Aug 2025 06:00:09 +0000
Manifest next update: Sun 24 Aug 2025 06:00:09 +0000
Files and hashes: 1: _RMv1Q7O2CnoWhcrAcn90ZX5USk.roa (hash: I2FYErDanPUJADaKO92Q6jyRK2EK15cN4Qdxt/bs9vQ=)
2: oHFXHI4QtBnXo7824Qhf_VzXipg.crl (hash: IztJSLGAnPaRpvU3bVdPOCUsqJL9wJFj4Ra6HHbISpY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oHFXHI4QtBnXo7824Qhf_VzXipg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:4f:dd:ab:34:30:02:60:6c:1b:ba:d6:3d:d6:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a071571c8e10b419d7a3bf36e1085ffd5cd78a98
Validity
Not Before: Aug 23 06:00:09 2025 GMT
Not After : Aug 24 06:00:09 2025 GMT
Subject: CN=c5c1845075e9160dea6a5767768d9bf347ce1c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f1:09:67:51:f2:24:04:67:47:b0:c0:77:a8:
af:7a:20:52:ca:ee:04:cd:38:fb:a2:3f:ca:fa:fe:
be:7c:ae:65:27:8f:61:ea:6f:6a:7e:a3:8d:b0:bf:
0a:bc:81:b1:06:b2:91:95:9b:eb:06:5a:39:0f:8d:
0e:bb:30:2d:59:aa:c8:73:5a:5e:22:d0:b1:76:8d:
61:2d:30:99:46:20:7e:19:17:00:fb:03:d8:07:52:
08:0d:1f:db:a2:7f:85:cd:c8:90:8c:dc:e5:85:1c:
43:67:14:fa:98:d7:d8:c7:90:3b:8f:3f:a0:02:e9:
7f:26:8d:fa:09:ba:cc:11:6c:5e:f6:cf:ff:e4:91:
01:1b:7b:35:e7:9d:22:4d:d8:e3:11:22:8d:b2:a6:
92:df:bc:d4:1b:6a:6e:cb:3f:a8:a2:a8:c9:4e:54:
0d:70:63:41:f4:48:61:f9:a4:85:01:25:91:0c:1f:
dc:b2:74:2d:e1:e2:58:4b:e2:c2:d3:5f:ad:cb:15:
03:db:4f:b3:3c:57:49:93:0c:f8:16:f3:8f:25:39:
28:5d:fe:40:ba:53:de:b5:72:c1:a9:c8:bb:10:bf:
c3:1b:80:c6:f1:ae:b0:62:cc:81:cb:52:81:f8:ae:
e8:6a:09:af:fb:dd:d3:6e:6e:df:1e:04:01:ae:5d:
b1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C1:84:50:75:E9:16:0D:EA:6A:57:67:76:8D:9B:F3:47:CE:1C:66
X509v3 Authority Key Identifier:
keyid:A0:71:57:1C:8E:10:B4:19:D7:A3:BF:36:E1:08:5F:FD:5C:D7:8A:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHFXHI4QtBnXo7824Qhf_VzXipg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:69:d1:7e:62:f9:21:c2:c2:f5:71:72:92:66:da:14:d6:6c:
4a:1a:7b:f4:ab:bb:94:44:58:6b:c0:92:0a:8b:c6:cd:82:c4:
f0:89:29:66:3b:2a:1b:eb:0c:87:ae:7d:6a:0c:b5:fd:ba:94:
da:7b:0a:1d:d9:16:a4:14:3c:2a:6f:e0:1c:9c:79:9a:51:53:
c6:ee:16:f7:b2:f3:bf:41:e4:d5:d6:52:63:9c:97:56:fe:cd:
7e:44:1c:f1:88:64:b4:ba:ec:69:10:88:21:5d:48:e9:f6:13:
15:81:a3:3f:53:26:d0:c8:34:af:25:10:1c:b8:78:26:0f:31:
ef:0a:73:a0:47:c5:b8:59:2d:6f:95:86:c7:34:68:1a:1d:0f:
a8:84:0c:14:a4:42:c0:bd:c4:be:93:fb:2f:29:d4:66:07:94:
3a:e1:e7:58:5f:37:3f:81:c4:8a:b2:0f:a8:ed:f2:f5:ed:ca:
2d:c8:e8:08:11:38:e3:6f:0f:49:42:50:3d:c3:19:25:6d:0c:
5b:13:9d:68:7a:00:72:b2:66:85:0f:42:ac:ea:00:a1:cb:c9:
4e:75:22:7b:39:84:73:e7:3a:44:40:72:88:31:f8:5c:10:02:
06:99:e1:9b:6f:b8:ab:18:94:7c:7a:5d:29:f0:4e:3d:20:76:
b0:d0:0b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:22:24 2025 by rpki-client