Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json)
Hash identifier: 5pCpf+mD56apHdqhZcBYKtW2T1Ac0DIDvFfT+DSF964=
Subject key identifier: 8D:41:FE:16:9E:65:4F:67:F1:9B:C8:D7:89:06:FA:0A:8B:9C:C0:75
Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Certificate serial: 0198D4734A9B0ACB88E34317BCAB65FF3924
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
Manifest number: 0ADA
Signing time: Sat 23 Aug 2025 01:03:02 +0000
Manifest this update: Sat 23 Aug 2025 01:03:02 +0000
Manifest next update: Sun 24 Aug 2025 01:03:02 +0000
Files and hashes: 1: bcgHeTecNhcHR9QWO6gmvpmmI5c.roa (hash: EV6/wlUYGCbS7xEazmx8eI5Bar/BgAFt51P9o3UlOuQ=)
2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: C+axqVQ7chDmXRbC9XhKiVC0MdjaTvkITuyEZih9cwo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:4a:9b:0a:cb:88:e3:43:17:bc:ab:65:ff:39:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Validity
Not Before: Aug 23 01:03:02 2025 GMT
Not After : Aug 24 01:03:02 2025 GMT
Subject: CN=8d41fe169e654f67f19bc8d78906fa0a8b9cc075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:52:ce:de:dd:9b:ca:70:9c:39:49:5e:37:13:
5c:ae:fb:13:6d:9b:a6:3c:1a:36:f8:9b:eb:71:b0:
4c:8b:05:9d:61:c5:6d:ba:29:43:71:48:21:50:7b:
f8:ac:a5:fc:c3:8c:32:08:9c:be:8b:2b:f5:f0:0c:
69:8d:79:9a:d9:53:90:0c:96:9a:e4:9c:6e:80:02:
6f:72:8a:6e:4e:ce:50:b7:7a:08:07:64:c1:40:cf:
1e:f3:d0:6b:8f:53:05:5d:5d:f7:ee:4c:da:6d:f4:
c5:35:d5:37:d5:cc:4d:c5:35:7b:d3:3f:0e:05:56:
91:7d:88:75:47:0e:a8:a2:a7:c5:b0:d2:c5:9e:34:
fd:95:67:c9:82:40:95:59:d3:6e:34:0e:79:a4:4b:
2c:00:63:10:4a:1c:40:8b:aa:10:fa:f3:e0:03:9d:
e7:c1:a0:83:a6:08:fb:51:2e:dc:3e:80:59:78:34:
b8:f1:7b:cb:c4:67:b6:c7:0c:16:9a:d0:96:7d:ac:
23:14:e8:79:db:f6:a1:12:88:42:00:d8:b2:3c:f4:
ee:62:2b:65:35:41:c0:61:05:12:c3:fa:cd:9b:cb:
23:3a:64:e3:09:eb:eb:a0:21:e8:bb:2c:77:d3:57:
46:5d:64:d4:23:80:5e:05:a5:a1:30:fc:bf:7e:49:
ba:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:41:FE:16:9E:65:4F:67:F1:9B:C8:D7:89:06:FA:0A:8B:9C:C0:75
X509v3 Authority Key Identifier:
keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:c5:8b:1e:44:79:ed:e7:47:2e:44:7d:f5:aa:e2:c7:77:52:
c9:19:ed:3a:ad:d7:07:b6:21:a7:28:c0:06:97:2a:6a:0f:43:
02:b3:84:55:5c:b5:f0:12:87:cc:96:4e:e7:ce:3d:fd:16:d6:
61:de:a6:1d:c4:77:54:6d:ad:3d:b0:4e:56:14:1e:cd:15:c8:
0a:ba:22:64:e4:fd:b4:c1:68:54:b1:bf:47:ed:ba:58:52:e0:
ac:20:5d:aa:87:6b:06:68:7f:6e:52:e5:72:bc:d4:81:32:da:
b1:53:6e:7c:64:d2:19:bb:d8:45:85:3e:69:20:09:a7:3c:6a:
95:26:9f:8e:81:b2:ce:3e:97:19:4c:ed:1a:36:52:32:3e:32:
34:dc:e6:54:d9:f3:34:91:82:53:12:07:dd:0b:d7:de:ac:bf:
b4:9c:8b:42:90:98:35:18:9b:69:ab:cf:71:75:7c:1e:1b:db:
95:c8:26:63:b1:86:2d:f1:6e:87:90:40:57:34:93:6b:0f:2a:
db:90:c4:c2:31:88:f5:43:f7:9b:4b:15:f0:67:d6:33:7c:db:
33:76:0a:d8:2f:da:da:48:f7:6c:0b:13:96:fa:ad:f8:1c:fc:
b3:01:12:b1:1c:e6:51:67:40:e9:83:b5:1b:a8:14:dd:72:86:
1a:d2:e4:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:21 2025 by rpki-client