Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft
File: ogqr6NvAhXg0PCW4xomHpevAOMk.mft (raw, json)
Hash identifier: Ds5KkiyZh1/aQeT/RTIjzqYazqr4ZFP4eqYvWZjbuSU=
Subject key identifier: 86:DA:A8:09:DE:59:B5:5E:E3:AB:09:8D:BF:0D:CC:BB:28:EB:FE:20
Authority key identifier: A2:0A:AB:E8:DB:C0:85:78:34:3C:25:B8:C6:89:87:A5:EB:C0:38:C9
Certificate issuer: /CN=a20aabe8dbc08578343c25b8c68987a5ebc038c9
Certificate serial: 0198D705A4A58F3A6A607A58B6DF78D33462
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft
Manifest number: 9A
Signing time: Sat 23 Aug 2025 13:02:07 +0000
Manifest this update: Sat 23 Aug 2025 13:02:07 +0000
Manifest next update: Sun 24 Aug 2025 13:02:07 +0000
Files and hashes: 1: ogqr6NvAhXg0PCW4xomHpevAOMk.crl (hash: YitaGK+xyEp+xgg4psGxAsZ7BjciCno8K0UkIK9HXhQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:a4:a5:8f:3a:6a:60:7a:58:b6:df:78:d3:34:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20aabe8dbc08578343c25b8c68987a5ebc038c9
Validity
Not Before: Aug 23 13:02:07 2025 GMT
Not After : Aug 24 13:02:07 2025 GMT
Subject: CN=86daa809de59b55ee3ab098dbf0dccbb28ebfe20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:05:cf:0e:9a:30:8b:9c:4a:54:5f:8f:7a:68:
92:36:e8:0f:54:87:cc:eb:87:40:df:ff:fc:00:fc:
a5:5d:55:04:20:56:d3:4e:de:49:a4:80:47:58:e2:
ca:53:74:65:0a:f0:6b:ef:e2:77:ec:87:93:f0:97:
b0:b2:d8:84:d9:02:b1:22:80:e8:aa:49:9a:82:1b:
d9:5c:ed:f8:d1:3d:2f:af:2f:a9:e7:ba:5a:e4:72:
af:18:a8:3b:5c:f6:e6:6a:19:84:1d:47:e4:cb:a2:
23:ea:9d:1c:50:f4:f7:e8:35:90:3c:c2:05:85:8a:
27:0d:13:8d:a8:d5:2a:c4:25:88:c2:26:44:f2:7a:
cd:48:82:45:4b:03:26:03:28:9c:66:7d:b7:74:19:
ea:61:93:31:8d:9a:5f:d1:1b:53:72:b1:90:cb:01:
32:a2:cf:29:d8:ef:6f:47:a4:8f:01:22:f3:2e:07:
e8:6c:2e:4c:6c:0e:10:3e:ea:2f:25:bc:58:77:68:
7b:ce:3f:da:ff:7d:41:c9:c8:79:1b:bf:f1:21:8b:
39:c3:d0:8c:f8:7c:52:c9:99:60:27:9f:5f:ca:c2:
b7:cf:66:0d:bb:c8:49:a4:e7:22:b5:a5:11:1a:28:
3b:e7:6c:5b:e2:d9:a8:8e:1b:8c:15:88:fb:8b:cd:
c3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DA:A8:09:DE:59:B5:5E:E3:AB:09:8D:BF:0D:CC:BB:28:EB:FE:20
X509v3 Authority Key Identifier:
keyid:A2:0A:AB:E8:DB:C0:85:78:34:3C:25:B8:C6:89:87:A5:EB:C0:38:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:0e:af:1a:5d:0d:fa:a0:73:ba:25:1e:de:aa:7d:0c:75:1d:
02:78:27:7b:18:54:2f:22:aa:30:ca:e1:89:d2:1b:a3:0d:fe:
1b:e1:6e:cd:16:ea:4e:28:10:40:23:0f:fd:51:2a:f9:dc:0a:
21:4d:ae:61:e3:48:16:62:e2:4e:8e:2d:b8:3d:8e:0e:64:23:
b4:7c:a3:82:59:db:58:5b:fd:e5:2d:a6:dc:ad:ce:89:6a:c4:
fd:a9:cf:9b:c1:94:dc:61:ea:4a:80:56:45:71:6a:3f:73:78:
97:62:8c:0a:f9:09:b2:4d:d0:60:d5:4a:58:16:23:c8:87:24:
3f:ee:74:84:2d:02:02:73:d9:4a:5c:2c:de:ca:89:0d:56:2a:
fb:28:1f:a9:95:fd:90:05:ab:7b:c1:03:c4:6e:90:9d:e3:05:
19:13:4a:d0:0c:ca:2d:80:85:0e:17:c3:16:70:1e:d8:e5:d9:
7c:fc:cf:d0:57:63:9d:9e:c4:6d:0d:05:2a:2d:06:fe:74:45:
aa:dd:6a:d3:2f:35:a0:51:b4:91:49:e1:df:7a:17:fb:99:df:
62:18:b7:44:39:a0:5b:38:4f:fa:7f:4d:8d:35:ef:9d:50:27:
aa:0d:d0:14:c0:60:b9:d9:16:32:19:7d:0c:3c:df:4c:ec:80:
1d:96:9e:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:23:47 2025 by rpki-client