Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
File: oKrlhQo22yiCKmwa_F_6z_AH7vI.mft (raw, json)
Hash identifier: Pl5x4POqEGbiyTcv340vmyk2eXgZDkX5tHbDqZr8Y2M=
Subject key identifier: E0:67:4F:17:A6:7D:55:DC:AF:8E:10:0C:CC:F9:1D:7E:F2:5F:3F:76
Authority key identifier: A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
Certificate issuer: /CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Certificate serial: 0198D5F18C39F25E598456F9EAB8510AA10B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
Manifest number: 0940
Signing time: Sat 23 Aug 2025 08:00:33 +0000
Manifest this update: Sat 23 Aug 2025 08:00:33 +0000
Manifest next update: Sun 24 Aug 2025 08:00:33 +0000
Files and hashes: 1: oKrlhQo22yiCKmwa_F_6z_AH7vI.crl (hash: E+91nko2W2eAsQL2iRmBGIv8vh9WrrTmAjBF9YrnsRA=)
2: vPivcilO-E_vThnuw1Jbeo7vl7Q.roa (hash: ue62obgrVIotq1vJM56av/nq50vzkGkDbEL5zd0kvpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:8c:39:f2:5e:59:84:56:f9:ea:b8:51:0a:a1:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Validity
Not Before: Aug 23 08:00:33 2025 GMT
Not After : Aug 24 08:00:33 2025 GMT
Subject: CN=e0674f17a67d55dcaf8e100cccf91d7ef25f3f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:88:d4:64:0d:cf:a8:6f:1a:b0:e4:c2:c5:0c:
8e:98:11:fc:0d:e9:58:15:8c:72:a1:e9:6e:a6:21:
bc:44:0b:eb:8d:d7:8a:74:56:8e:c6:43:ef:12:c6:
fd:e9:91:22:30:0c:7a:4b:e5:df:02:ca:f5:20:0f:
ec:62:99:09:09:b1:43:72:b7:5d:8b:80:5f:89:1e:
38:2d:31:fe:eb:6a:8b:74:f0:19:40:c0:cd:99:eb:
c8:f7:3e:a5:b7:eb:83:8d:4c:8e:7e:06:45:21:93:
d1:02:7b:e1:f8:3d:0c:f3:18:bf:f6:e0:eb:a7:41:
59:9c:6b:0f:76:ec:c9:dc:fa:ec:7e:61:b0:4b:ae:
4a:86:13:18:43:b0:6c:83:2d:46:87:f6:65:f7:31:
50:4a:e7:7d:27:ac:6b:05:16:37:12:83:9a:a2:29:
60:34:da:3f:70:ca:bb:5c:b8:a3:23:1e:43:92:44:
47:f8:2d:51:07:cd:37:71:2c:38:89:ac:32:19:79:
7e:b1:bb:47:21:39:09:22:4a:4d:4c:27:f3:ab:7e:
5a:45:d6:e3:55:56:d0:c7:f7:16:06:90:8e:cd:4e:
49:10:3f:76:a3:0c:80:15:ca:fe:7f:6e:d0:5f:37:
14:2d:82:aa:95:55:de:30:6c:5c:3a:f2:5a:80:c8:
b0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:67:4F:17:A6:7D:55:DC:AF:8E:10:0C:CC:F9:1D:7E:F2:5F:3F:76
X509v3 Authority Key Identifier:
keyid:A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:25:20:d2:c1:1d:4d:6d:1d:2d:08:f3:60:50:1a:b8:f2:04:
85:c7:30:06:11:6f:65:85:b8:49:d0:19:91:1c:de:55:48:c8:
f1:e5:56:18:a2:9c:c6:a6:21:79:97:4f:93:42:cd:97:a4:bf:
27:85:6d:dc:06:96:b3:bf:77:c7:89:24:9c:e4:d6:80:c6:1f:
be:e2:44:6d:d2:7b:1f:84:02:8d:2b:9e:53:e9:21:7c:6a:53:
9a:df:a1:5d:43:7f:04:88:96:43:98:38:7d:d9:09:a4:a2:19:
0b:0b:b5:31:9d:e2:41:03:2d:20:09:8e:00:3e:04:e8:5c:0b:
48:ae:65:f2:bc:d4:35:92:1b:e8:a7:58:33:5e:8d:14:6e:37:
c6:05:19:5b:f7:a5:07:37:c7:1e:d8:aa:d2:11:f5:d0:a3:0f:
ab:89:d4:95:81:68:7f:4e:b9:ff:1c:b3:ad:fd:24:94:ad:d4:
34:76:c6:95:d2:46:ee:72:eb:4f:c5:86:7b:19:94:10:3a:74:
bb:ee:c4:1d:66:27:3b:5c:df:c0:7e:87:c6:17:dd:21:a3:e1:
1f:81:af:b8:94:0d:45:01:4c:54:09:c4:ee:34:cf:eb:1a:4d:
d7:98:68:f8:e4:d6:b9:90:39:cb:2e:21:37:da:0f:ff:6a:bb:
f2:d5:61:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:50:58 2025 by rpki-client