Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: V0J5dkZy5Pwgau9T+3ZlXhBzYi+qpmyu8aCIXLPiDVQ=
Subject key identifier: 18:9F:4A:63:FC:A8:8E:8E:98:80:1D:CA:71:E2:EE:31:46:E2:B7:4B
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 0198D583F2A7E1B447794C53E8815D3BC0BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 0C86
Signing time: Sat 23 Aug 2025 06:00:50 +0000
Manifest this update: Sat 23 Aug 2025 06:00:50 +0000
Manifest next update: Sun 24 Aug 2025 06:00:50 +0000
Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: rlzsmmEh3IvMrsYzDpGWV6mI3zp+5hiXDfSI5ukdymk=)
2: S5-p15oe6PO1US7yiwalFk2guhA.roa (hash: RxwUj9qrcB8W+bA9U60Y3Yd+aWieeN2zZTQTfRBMSD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:f2:a7:e1:b4:47:79:4c:53:e8:81:5d:3b:c0:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Aug 23 06:00:50 2025 GMT
Not After : Aug 24 06:00:50 2025 GMT
Subject: CN=189f4a63fca88e8e98801dca71e2ee3146e2b74b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:41:75:3d:0e:50:fa:c1:9e:53:bf:52:5a:5f:
10:c1:b2:c3:31:5c:22:a0:ee:79:18:5c:63:75:b0:
4e:1d:3e:bd:7b:6b:b4:43:ea:e8:87:5f:71:be:32:
d9:78:97:a4:39:ec:a1:55:d0:05:7d:eb:81:39:c9:
26:71:68:09:88:9e:0f:fb:ab:b4:ee:4a:df:ce:7e:
86:3e:f8:6d:b2:d4:23:0d:70:75:bd:d2:5c:e7:05:
9b:c3:43:50:13:4b:e3:98:5a:0f:2d:c2:ce:c0:a3:
86:25:b1:4a:81:f8:40:85:b2:e5:89:50:f5:00:6c:
93:18:af:4d:4a:38:b8:ca:86:a7:e6:ae:ab:b2:66:
84:e6:a0:c0:04:0c:8f:fc:e6:b7:c5:a3:51:db:9f:
1e:9a:63:2c:a5:4c:40:d9:11:ab:26:ee:33:90:a2:
ae:30:a4:b9:ff:8a:bb:89:4c:28:6e:fa:52:c0:de:
71:a4:4b:61:a7:7c:14:85:19:c9:f2:93:2c:fa:9b:
a5:00:24:e8:9e:a1:47:87:76:9f:95:0d:ab:bf:cc:
47:96:d9:3a:7f:b0:e0:c2:a5:c6:b7:82:7c:7e:f7:
2d:5d:cf:30:ef:eb:84:d7:16:b8:86:81:79:cf:3a:
d4:8d:0a:e2:c6:5d:55:7a:ed:a9:85:87:dd:56:8e:
ab:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9F:4A:63:FC:A8:8E:8E:98:80:1D:CA:71:E2:EE:31:46:E2:B7:4B
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:12:c7:89:56:a3:ed:95:ea:ba:20:60:b4:f1:54:19:ef:ca:
75:d2:57:05:20:5d:8a:e4:71:3e:26:eb:d0:5f:b4:f7:dd:ce:
d6:02:74:bb:d6:95:cb:21:78:c1:21:d0:99:f2:b3:f8:22:02:
1f:99:98:a5:e3:36:c3:1b:03:ac:3e:50:f7:4b:5a:01:12:4d:
dc:11:42:3f:90:d1:51:23:ae:03:0b:e6:a7:23:b9:21:c3:21:
ec:b2:a3:f4:9e:af:63:96:f1:cb:4c:89:ca:b9:87:65:12:43:
a1:90:3b:23:69:f7:f3:a2:f4:36:44:6f:88:a0:26:00:1d:16:
8d:22:52:80:49:ef:b2:24:47:0c:37:26:8f:f1:43:2e:9c:09:
76:53:ef:5d:fa:f8:a8:07:05:5b:02:90:43:10:1b:89:8a:78:
5b:15:55:5b:57:87:07:18:e7:22:83:9f:16:32:cb:4b:eb:39:
05:10:82:02:9d:e4:d2:db:2f:a7:cb:a5:4e:92:ac:81:5d:c8:
01:24:4a:e3:8c:01:55:c8:3c:cf:e0:b0:50:fb:e6:7a:00:ba:
de:5b:66:af:30:5c:33:b2:e3:cb:90:a9:8b:c5:27:d7:03:d7:
9c:b4:96:08:eb:7f:09:69:da:65:d1:94:e6:49:f3:e0:59:c5:
27:69:af:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:39 2025 by rpki-client