Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
File: oixSeMS7sCbhL_12C-rFn8FV_CU.mft (raw, json)
Hash identifier: 9UZzXkbVS3lxmc8YzbQDHKo+1Ucg36UKoL2IJH057ec=
Subject key identifier: F6:3E:2F:02:11:7F:4A:21:D3:1D:3A:1A:07:C3:54:D5:56:97:53:C0
Authority key identifier: A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25
Certificate issuer: /CN=a22c5278c4bbb026e12ffd760beac59fc155fc25
Certificate serial: 0198D65F8BF4A0C1B60D04D776349C004FF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
Manifest number: 0AB6
Signing time: Sat 23 Aug 2025 10:00:42 +0000
Manifest this update: Sat 23 Aug 2025 10:00:42 +0000
Manifest next update: Sun 24 Aug 2025 10:00:42 +0000
Files and hashes: 1: P8h8nlnz4dD4fkTghoS9unFyKig.roa (hash: MYpmJNo5HIfucuzKcNdlv0aQadbbtMqL8vbh/XHclWY=)
2: oixSeMS7sCbhL_12C-rFn8FV_CU.crl (hash: ZXjTRbyi4bNz48r6no7M1k9J8ymCl/8a56nbRfschrE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:8b:f4:a0:c1:b6:0d:04:d7:76:34:9c:00:4f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a22c5278c4bbb026e12ffd760beac59fc155fc25
Validity
Not Before: Aug 23 10:00:42 2025 GMT
Not After : Aug 24 10:00:42 2025 GMT
Subject: CN=f63e2f02117f4a21d31d3a1a07c354d5569753c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:1c:06:cb:4f:06:d4:e9:c4:20:ad:66:93:b1:
aa:ec:31:cb:e4:1f:1d:d8:5d:e9:19:94:92:a7:4c:
60:b4:73:ce:fa:0b:2c:00:53:cf:62:2d:49:c4:a4:
3f:83:1c:d8:6d:2e:cc:8f:4d:70:06:20:cb:4a:f1:
c3:0b:4e:de:65:0d:e4:17:9e:28:e0:d2:b5:ad:f4:
b3:ee:ca:13:ac:ad:a4:b6:10:7b:9a:ee:38:80:e9:
53:ae:a7:ce:a3:58:6c:dd:dc:e4:d1:12:cb:78:6e:
d6:e7:47:57:30:1e:a5:45:b8:be:10:54:a3:19:cb:
ad:72:51:05:88:31:1e:3c:69:83:3c:e5:7e:75:ef:
31:bd:f6:2b:0a:3c:5c:48:0f:30:7d:cc:6d:17:a5:
ba:1a:c3:2f:4e:15:41:07:62:84:79:5c:f0:97:3b:
b9:23:7e:20:26:23:f9:6b:af:8c:92:73:46:9b:4b:
81:27:d8:5c:b2:80:ba:d8:fd:33:3d:d3:0e:c4:22:
84:3d:c7:e6:fe:d8:7f:b9:87:84:a8:14:92:1f:fd:
12:82:19:62:a5:5c:17:9f:e6:02:05:fd:c1:1b:51:
50:6c:14:a4:a1:02:5c:7a:28:c9:c1:00:11:9d:11:
b6:60:ed:91:92:53:94:d5:89:33:52:67:7c:47:d1:
ca:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:3E:2F:02:11:7F:4A:21:D3:1D:3A:1A:07:C3:54:D5:56:97:53:C0
X509v3 Authority Key Identifier:
keyid:A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:97:dc:4d:e2:4f:c9:e6:b5:a1:a1:6e:3e:ee:40:cd:00:b5:
10:13:1d:d5:b9:18:02:ca:5c:25:8f:8e:b3:e5:4d:f6:a2:ef:
df:9d:19:c1:74:2c:ed:1e:fc:5b:cf:23:5e:bd:2a:ae:3f:92:
8a:47:f9:92:67:97:ac:dd:5d:8c:34:16:63:02:e5:e1:f8:f1:
16:1e:20:d2:ef:60:66:3c:dc:93:7c:18:4d:79:7b:45:19:20:
eb:05:78:80:2d:0c:86:18:6e:9d:0c:e3:19:f2:f3:ad:d0:4a:
5a:cb:d7:1b:d0:10:aa:e4:e7:c4:5a:c4:16:06:53:97:69:35:
fa:10:8b:c2:82:27:bb:9d:f3:17:04:70:31:35:95:e5:75:0d:
93:eb:71:6d:81:df:74:01:00:d6:18:e9:c0:e2:9d:62:b7:39:
5a:f2:d4:77:25:0a:e4:a1:71:11:23:34:68:27:b6:c4:4d:eb:
1e:86:6e:09:be:e8:82:31:a1:4c:9a:34:43:9f:4d:55:5d:fb:
c8:60:98:9d:45:ce:6c:bb:96:2a:9c:9e:f8:c4:3f:57:a6:bd:
21:67:f0:e9:84:b4:3e:ed:d8:52:7e:07:a8:37:1a:d5:12:3a:
36:71:91:f2:6f:ee:3c:88:2e:f9:34:dc:05:e5:b4:19:25:19:
d9:6e:7e:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:46:10 2025 by rpki-client