Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
File: oaLRWp2N_ezej-awwYBNCp7i5ig.mft (raw, json)
Hash identifier: hLWHgNFr9TKP2C6BiYcPLWYQipIa/sRRoO+7R0VIhoQ=
Subject key identifier: C7:27:F5:F9:7C:8F:59:CA:96:2B:A3:6D:36:60:8D:A3:0F:AE:03:5D
Authority key identifier: A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
Certificate issuer: /CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Certificate serial: 0198D7E150EF1459501C3B816322878A776E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
Manifest number: 10E5
Signing time: Sat 23 Aug 2025 17:02:04 +0000
Manifest this update: Sat 23 Aug 2025 17:02:04 +0000
Manifest next update: Sun 24 Aug 2025 17:02:04 +0000
Files and hashes: 1: g8PGSyPYHcwtTKtN52pgkwL2VLw.roa (hash: d/0R1T8TL/elS7S9V2dPYN7wq40xN73ObdYQKEckxT4=)
2: oaLRWp2N_ezej-awwYBNCp7i5ig.crl (hash: ZzjQfIyh3IcHIXDLSSMKR7b+vCYzf1aC1hELSbjtQ2I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e1:50:ef:14:59:50:1c:3b:81:63:22:87:8a:77:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1a2d15a9d8dfdecde8fe6b0c1804d0a9ee2e628
Validity
Not Before: Aug 23 17:02:04 2025 GMT
Not After : Aug 24 17:02:04 2025 GMT
Subject: CN=c727f5f97c8f59ca962ba36d36608da30fae035d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:47:b6:a8:d8:d0:2a:a0:58:d6:72:84:e3:cd:
1b:ac:c7:e3:76:71:f6:7b:c8:7c:45:ef:8d:3f:9b:
99:94:cc:55:d2:35:30:c2:d3:32:e5:6c:af:50:d9:
96:f1:b4:35:ce:a1:49:83:ca:4c:af:4c:14:e0:81:
d2:93:bc:92:44:a0:85:32:46:69:dd:af:de:41:1a:
c9:2e:59:99:6d:a4:da:9e:f5:c7:ae:43:c0:7b:57:
bb:f8:e6:b5:bd:c2:e3:2d:c5:5d:b6:09:c7:d4:7c:
e5:49:33:b3:96:1b:0e:48:47:0d:83:77:ad:cb:27:
e6:29:29:74:c2:47:ef:aa:a9:5d:80:20:bc:b6:72:
79:6e:23:e0:e3:14:eb:4b:76:84:b8:d2:4b:49:10:
dc:a7:f7:84:b1:05:b1:96:e8:73:1c:00:9f:76:d9:
c3:f7:84:c8:15:0e:0e:86:e5:1f:1a:ed:c6:da:cb:
00:bb:93:99:aa:3b:fd:06:3b:9e:55:ac:ac:80:02:
c7:ff:91:bf:17:ac:71:c8:5e:53:f1:a6:b3:be:79:
d0:b4:84:de:c6:d6:0e:65:a6:83:f4:61:29:b6:f3:
c5:4a:76:0a:b0:ad:7c:3c:e9:5c:f4:0d:6b:5a:0c:
48:25:43:65:a9:e1:88:94:f7:7e:cd:9f:6d:c0:dd:
7e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:27:F5:F9:7C:8F:59:CA:96:2B:A3:6D:36:60:8D:A3:0F:AE:03:5D
X509v3 Authority Key Identifier:
keyid:A1:A2:D1:5A:9D:8D:FD:EC:DE:8F:E6:B0:C1:80:4D:0A:9E:E2:E6:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaLRWp2N_ezej-awwYBNCp7i5ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/b640a6-7ecd-420b-86ed-86d194ae8a71/1/oaLRWp2N_ezej-awwYBNCp7i5ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:9a:e4:1f:81:83:6a:c0:f1:3b:85:dc:e7:61:bc:b8:53:6f:
9d:ba:50:c5:6b:26:c6:96:af:54:7e:91:0d:4a:25:a4:8b:6c:
f8:b0:53:ea:20:d2:37:2b:31:6d:08:8e:bf:6f:a8:ca:87:97:
9c:59:54:a7:cb:85:f6:b1:c2:1e:ee:36:f2:86:f4:ba:f0:c7:
cf:b9:ea:39:9d:be:1c:3f:1f:6c:ab:ce:5f:7d:dd:1f:1e:02:
e7:cb:ca:e7:5a:6b:c5:6b:95:5b:73:95:86:e2:74:6b:31:74:
93:a3:88:77:90:54:2d:ed:28:0e:f9:56:15:22:17:cf:00:cd:
f1:c2:bd:a6:62:d1:fc:fd:de:37:f1:95:f6:51:eb:9c:cb:cb:
eb:ee:72:ef:66:95:2e:cc:4d:66:31:e8:c7:cc:3e:c5:dc:18:
33:81:4c:d3:07:62:9d:71:4f:fb:15:11:79:bc:e9:cf:b6:5f:
0a:97:7b:b5:30:99:d1:81:88:b6:1d:76:9b:46:3d:2f:ad:e3:
f3:ff:ae:47:98:98:24:41:1f:11:7f:72:0b:72:5e:f1:1f:ea:
72:f0:02:0c:2e:8a:ee:35:2d:7d:a9:59:b8:4b:e9:09:d2:80:
24:f1:97:88:11:31:ec:2a:71:7b:0b:4a:96:c6:70:19:c2:4a:
f6:fd:89:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:28:12 2025 by rpki-client