Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
File: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft (raw, json)
Hash identifier: oyyy5Rty6PsxklaWeUtAyyxa7eNd49GTIgcAW3EtdSk=
Subject key identifier: 20:8F:63:C2:91:7F:10:A0:39:1A:7D:60:9A:74:AE:F2:F6:9E:5C:07
Authority key identifier: A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
Certificate issuer: /CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Certificate serial: 0199FDD8F304B6B1FBB402B9D4A50BE1B104
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
Manifest number: 1011
Signing time: Sun 19 Oct 2025 19:01:17 +0000
Manifest this update: Sun 19 Oct 2025 19:01:17 +0000
Manifest next update: Mon 20 Oct 2025 19:01:17 +0000
Files and hashes: 1: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl (hash: IsfICYrnr2g4w4b8hEkFqljOEH2a3HIzup5JjuvP3+w=)
2: y54lwyg0yxWntbnoIO-4zit0Jno.roa (hash: H4sOyX+DnDSSZx2P69W1kPQ6mzjJ5+oKrKghYFIkZco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:f3:04:b6:b1:fb:b4:02:b9:d4:a5:0b:e1:b1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Validity
Not Before: Oct 19 19:01:17 2025 GMT
Not After : Oct 20 19:01:17 2025 GMT
Subject: CN=208f63c2917f10a0391a7d609a74aef2f69e5c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:64:6a:45:77:76:a5:bb:61:07:a9:af:51:47:
83:50:02:98:3c:be:ae:ae:33:df:5e:6c:49:c6:d2:
1c:23:21:26:ce:a2:9e:1b:09:aa:8e:69:16:f3:97:
e5:ac:4e:66:64:10:53:4e:75:7c:33:95:58:0d:a9:
63:ea:73:bc:2e:27:56:b1:59:03:07:12:9c:6d:fc:
3a:f5:59:f7:4d:14:35:6a:36:a2:36:b4:1f:34:20:
8e:1c:35:87:ec:0d:53:2d:f5:ab:21:9c:91:e8:50:
ea:e4:1a:1e:7f:5c:db:b2:18:0a:57:00:4d:4a:f7:
d4:b7:a7:7e:bd:c9:19:85:60:23:ed:96:4b:41:78:
01:9d:17:c6:65:3d:1f:9a:11:c3:ca:95:26:e3:25:
30:6a:0e:9f:0b:6f:2a:8f:af:58:4a:96:7d:f0:19:
98:b2:dd:f7:ec:cc:b4:c8:5b:fe:99:cc:4a:5c:ac:
ca:c7:f2:4c:42:67:62:f3:a6:2f:bc:ea:3f:c8:0f:
8e:ed:86:dc:c8:7a:b3:b0:3e:52:3e:f5:1f:eb:bb:
d0:fb:2f:57:18:37:a9:7b:84:2d:b5:44:0e:bf:73:
8f:bd:9d:d9:9f:46:a3:8b:fb:5f:f4:86:45:42:5b:
7a:93:5a:aa:d1:92:ed:3a:30:c8:1e:81:8e:b3:a7:
59:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8F:63:C2:91:7F:10:A0:39:1A:7D:60:9A:74:AE:F2:F6:9E:5C:07
X509v3 Authority Key Identifier:
keyid:A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:c2:30:50:8a:66:b8:6e:f8:39:93:c6:2d:6e:be:2d:53:c9:
04:82:31:43:d9:78:45:c7:38:c5:ad:88:ca:92:ad:64:89:7c:
9d:6e:84:f5:91:c7:5a:b4:29:6a:21:f2:b0:e3:9d:73:9e:39:
c1:a7:f3:24:30:9a:f0:c0:6a:02:90:f4:d3:4c:b5:af:0f:79:
59:ac:0a:d6:0f:1b:4f:bc:f0:f1:df:f0:c8:8a:1e:37:59:37:
c9:75:dc:d7:66:d9:49:69:2f:16:3b:9a:ed:92:f8:27:d3:bb:
40:d9:84:02:8d:33:7a:3e:67:ac:88:de:2c:b1:41:8d:22:8e:
dc:fd:f8:f5:46:5b:59:cd:d4:63:cf:a6:ee:e7:a0:b4:69:36:
85:a2:fc:e5:fc:60:48:2a:cb:b7:d7:dd:0f:b2:fa:ce:7c:fe:
1e:f9:38:4a:a0:29:f4:d7:bb:91:01:66:55:bf:56:87:c9:1a:
4a:b7:1f:c7:42:9d:e7:4c:8a:8f:0b:de:6a:67:89:df:c2:a3:
e7:67:1e:ea:9f:1d:69:1f:08:91:fe:b9:c1:87:ee:ab:aa:08:
5c:f4:f4:16:4e:38:91:a0:b7:a8:a9:0e:58:47:97:95:0c:ad:
18:10:30:7e:70:ef:a6:1d:20:6c:d3:a8:76:27:04:7b:f6:8b:
f0:8c:4f:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:01:01 2025 by rpki-client