Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
File: oKrlhQo22yiCKmwa_F_6z_AH7vI.mft (raw, json)
Hash identifier: t9xTt/xwDpmtpaahAdG1o7aECF5icRYGYlUY97502dY=
Subject key identifier: 76:2E:67:67:E1:4A:51:17:1C:C2:88:C9:A6:E5:F4:EA:73:AE:97:DC
Authority key identifier: A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
Certificate issuer: /CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Certificate serial: 0199FD6ADD918B0E1A0BC3F661B2F53EFCDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
Manifest number: 09D9
Signing time: Sun 19 Oct 2025 17:01:03 +0000
Manifest this update: Sun 19 Oct 2025 17:01:03 +0000
Manifest next update: Mon 20 Oct 2025 17:01:03 +0000
Files and hashes: 1: oKrlhQo22yiCKmwa_F_6z_AH7vI.crl (hash: tYUSN6o6oEc3dpNrKpN6gxFoXqZ+vPyycYmVIDZdr9c=)
2: vPivcilO-E_vThnuw1Jbeo7vl7Q.roa (hash: ue62obgrVIotq1vJM56av/nq50vzkGkDbEL5zd0kvpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6a:dd:91:8b:0e:1a:0b:c3:f6:61:b2:f5:3e:fc:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Validity
Not Before: Oct 19 17:01:03 2025 GMT
Not After : Oct 20 17:01:03 2025 GMT
Subject: CN=762e6767e14a51171cc288c9a6e5f4ea73ae97dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bb:81:b7:79:84:9c:2b:fd:1e:5d:b1:da:28:
4d:cf:a6:ef:10:a8:7d:88:ee:85:3f:77:b8:52:1a:
98:09:48:6e:af:b4:30:bc:10:7f:2e:1e:52:dd:9b:
cc:7d:f0:27:b3:76:81:40:07:c6:bb:9d:13:84:93:
d8:2a:7a:dc:f8:c0:16:8f:42:6b:5e:db:4e:2d:f2:
13:c6:19:56:45:dc:48:37:c2:a3:8b:7e:42:cc:86:
0a:7e:6e:b3:44:3d:17:fa:ee:39:40:dd:24:db:f7:
5d:80:79:66:a5:e5:a4:cf:0b:0e:25:28:e0:7e:87:
44:4c:3f:d9:b2:2c:bc:f7:76:27:d2:d6:a8:b9:e0:
d5:79:33:d0:85:cb:1e:dd:7d:f6:4a:ca:e0:a6:fb:
4c:86:e7:0a:75:c9:33:3e:68:a8:ef:b0:1b:50:1d:
d0:2d:c9:2d:37:16:37:eb:30:b3:83:bb:68:bf:82:
94:18:52:d1:fb:83:c8:ad:df:bb:c3:17:43:bd:7f:
b2:15:8e:f3:f5:c3:f6:2a:48:dc:59:35:c9:0c:b8:
a6:57:8c:55:37:4a:68:46:02:78:31:1f:e7:c9:e9:
f3:c3:6e:26:0c:fc:51:84:d8:f3:7e:d2:c5:db:77:
7b:be:0f:ca:8f:19:1e:b3:21:e3:8a:a0:23:38:0d:
1a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:2E:67:67:E1:4A:51:17:1C:C2:88:C9:A6:E5:F4:EA:73:AE:97:DC
X509v3 Authority Key Identifier:
keyid:A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:69:f7:68:47:2b:b2:f9:71:cc:1c:01:b5:6a:ad:7c:20:2a:
69:20:6b:72:2d:2d:9f:e9:e8:83:6d:52:b5:8b:20:d3:43:37:
89:02:5a:fe:27:56:fc:21:40:8f:e3:7f:30:aa:3a:65:5e:67:
9a:f7:cb:ad:48:68:6a:48:7f:75:87:f8:3c:da:fe:97:f0:d4:
93:64:45:5d:bd:67:1c:79:5c:83:71:6f:aa:ba:78:aa:cd:62:
05:6e:f7:b1:d1:14:eb:9f:1b:64:30:57:b0:ef:8a:1f:47:6a:
21:f2:4b:b2:ef:8e:ed:cb:a9:3e:e3:92:b3:f6:71:53:ef:4f:
4f:bf:61:dc:54:cd:36:d8:e8:22:9d:c4:6c:d2:4d:c8:48:af:
ed:5b:a3:94:c6:d9:11:62:23:8a:ab:7d:78:85:c7:07:37:95:
2c:9d:64:25:21:ae:db:4a:78:6f:2e:55:03:f1:a1:8d:42:96:
d5:6a:29:4b:e1:8b:0b:83:c9:0c:83:ae:9d:16:f2:08:50:bb:
0d:d1:0e:fc:d5:d3:be:88:cc:b0:5f:7d:bf:fe:ef:27:5d:d2:
50:51:e5:55:99:0c:32:ee:cd:cd:bb:29:fc:6a:e3:71:d1:cf:
70:9e:8d:e2:4a:a1:bb:f6:f1:06:93:01:50:b0:bb:a2:2e:66:
f3:4f:86:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:49:10 2025 by rpki-client