Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
File: OhoMABa5sz-T6Kejk9CRkNXhhJk.mft (raw, json)
Hash identifier: llMeEX5HhZsIGI2a/w5ii6+sb8PiSb2oMvTNDllN0RE=
Subject key identifier: 93:AF:9B:DA:E2:10:4D:0C:70:91:19:D1:1B:61:4C:9F:22:6A:8D:56
Authority key identifier: 3A:1A:0C:00:16:B9:B3:3F:93:E8:A7:A3:93:D0:91:90:D5:E1:84:99
Certificate issuer: /CN=3a1a0c0016b9b33f93e8a7a393d09190d5e18499
Certificate serial: 0198D6CD4BB6CC8B6B71AEB3F15F30FE1003
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
Manifest number: 0C21
Signing time: Sat 23 Aug 2025 12:00:34 +0000
Manifest this update: Sat 23 Aug 2025 12:00:34 +0000
Manifest next update: Sun 24 Aug 2025 12:00:34 +0000
Files and hashes: 1: OhoMABa5sz-T6Kejk9CRkNXhhJk.crl (hash: PmkBjTolbzF7Y1Fj9vM892GGXmtLnMC0kW5OvKtdrbs=)
2: UG2XZdsSP9vahLS8deUbiGwgM84.roa (hash: H+YkvMLky6FPgjSDWIrs7G2kpfOLt2YF+/59bitetA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:4b:b6:cc:8b:6b:71:ae:b3:f1:5f:30:fe:10:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1a0c0016b9b33f93e8a7a393d09190d5e18499
Validity
Not Before: Aug 23 12:00:34 2025 GMT
Not After : Aug 24 12:00:34 2025 GMT
Subject: CN=93af9bdae2104d0c709119d11b614c9f226a8d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:36:17:0a:db:82:bf:84:61:27:b6:ba:25:49:
68:54:49:2b:ad:d6:82:29:8f:76:92:ee:d3:42:88:
7c:c0:4c:d4:ad:c7:c6:93:2a:de:20:81:0c:51:d2:
b9:57:b6:2e:6d:19:c6:5e:8a:9b:10:59:64:32:42:
13:e9:00:5f:2f:a4:5e:74:3f:39:bb:d5:4e:1d:d5:
9c:28:89:e2:5c:40:e9:35:6b:fa:ee:18:c9:52:1e:
fc:16:8b:c6:dd:0f:e2:19:3a:33:30:c5:4b:f4:8b:
0b:d8:51:72:e7:52:c2:a0:6d:8f:38:80:db:ac:fc:
21:7f:ee:c6:ff:bc:fb:8e:2e:91:d2:ac:0c:20:58:
3b:aa:09:da:71:d5:a7:62:da:05:66:37:92:f6:5c:
0d:8e:6d:be:46:c8:85:25:8c:ba:ea:2a:d6:e3:24:
b5:43:3c:52:20:e1:22:eb:43:27:ce:67:6e:50:8f:
fb:e5:3a:0c:3d:0c:60:7d:b6:98:25:e4:80:ea:ed:
59:fa:f9:6e:54:90:ba:9a:46:fe:9a:c5:3b:4b:de:
48:d8:94:a9:03:4a:ba:5a:b0:40:86:bc:62:5e:8d:
db:68:e4:95:11:38:58:da:ab:11:b8:72:d9:12:77:
73:3a:e1:c2:db:3c:bd:cc:48:ba:1e:7e:a7:22:ea:
d6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:AF:9B:DA:E2:10:4D:0C:70:91:19:D1:1B:61:4C:9F:22:6A:8D:56
X509v3 Authority Key Identifier:
keyid:3A:1A:0C:00:16:B9:B3:3F:93:E8:A7:A3:93:D0:91:90:D5:E1:84:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhoMABa5sz-T6Kejk9CRkNXhhJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/995881-39cd-4104-9b29-0b6459775b64/1/OhoMABa5sz-T6Kejk9CRkNXhhJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:cb:39:93:b4:f7:a8:fa:b1:cf:3d:b4:cd:25:5e:a0:54:9c:
fa:14:64:61:89:17:f8:3f:cb:15:65:ff:ff:c0:74:d0:6f:b3:
91:0d:9f:25:3c:78:65:b4:5d:29:63:78:dd:9c:5b:01:0c:0b:
3a:cb:fb:d9:86:e2:f6:c8:ca:4f:b8:62:38:dd:66:98:92:d3:
1e:08:9d:44:5a:ec:51:32:59:4e:0a:38:ab:71:16:ac:c2:79:
72:af:ff:46:78:be:aa:ce:d8:c2:c5:6d:8c:18:fc:3f:16:52:
84:f5:51:a2:5d:b2:95:75:f4:f5:c7:56:cd:04:a8:d3:50:43:
f5:24:42:1e:66:5d:98:33:ca:ce:53:7e:1d:6a:a6:ab:f2:aa:
7e:12:98:db:49:01:09:1c:8c:f1:ee:56:d5:27:ef:1c:c2:33:
fa:cb:d7:d4:45:78:de:02:fe:c6:53:5f:f8:90:e2:90:59:a3:
1a:02:cd:c1:89:9d:b6:08:38:13:5c:f7:cc:32:95:e5:a3:f9:
7f:18:af:4a:4f:fe:46:21:c9:d1:8e:82:36:a4:52:db:83:82:
f4:4e:53:6a:1d:14:a5:f6:63:58:6d:77:23:21:81:27:bf:ba:
42:de:fc:cd:02:d3:28:2f:e9:d2:0e:d8:9a:f1:4b:99:54:70:
17:a2:1d:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzUu2zItrca6z8V8w/hADMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMWEwYzAwMTZiOWIzM2Y5M2U4YTdhMzkzZDA5MTkwZDVl
MTg0OTkwHhcNMjUwODIzMTIwMDM0WhcNMjUwODI0MTIwMDM0WjAzMTEwLwYDVQQD
Eyg5M2FmOWJkYWUyMTA0ZDBjNzA5MTE5ZDExYjYxNGM5ZjIyNmE4ZDU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTYXCtuCv4RhJ7a6JUloVEkrrdaC
KY92ku7TQoh8wEzUrcfGkyreIIEMUdK5V7YubRnGXoqbEFlkMkIT6QBfL6RedD85
u9VOHdWcKIniXEDpNWv67hjJUh78FovG3Q/iGTozMMVL9IsL2FFy51LCoG2POIDb
rPwhf+7G/7z7ji6R0qwMIFg7qgnacdWnYtoFZjeS9lwNjm2+RsiFJYy66irW4yS1
QzxSIOEi60MnzmduUI/75ToMPQxgfbaYJeSA6u1Z+vluVJC6mkb+msU7S95I2JSp
A0q6WrBAhrxiXo3baOSVEThY2qsRuHLZEndzOuHC2zy9zEi6Hn6nIurWxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJOvm9riEE0McJEZ0RthTJ8iao1WMB8GA1UdIwQY
MBaAFDoaDAAWubM/k+ino5PQkZDV4YSZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2hvTUFCYTVzei1UNktlams5Q1JrTlhoaEprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy85OTU4ODEtMzljZC00MTA0LTliMjkt
MGI2NDU5Nzc1YjY0LzEvT2hvTUFCYTVzei1UNktlams5Q1JrTlhoaEprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy85OTU4ODEtMzljZC00MTA0LTliMjktMGI2NDU5Nzc1YjY0
LzEvT2hvTUFCYTVzei1UNktlams5Q1JrTlhoaEprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWss5k7T3
qPqxzz20zSVeoFSc+hRkYYkX+D/LFWX//8B00G+zkQ2fJTx4ZbRdKWN43ZxbAQwL
Osv72Ybi9sjKT7hiON1mmJLTHgidRFrsUTJZTgo4q3EWrMJ5cq//Rni+qs7YwsVt
jBj8PxZShPVRol2ylXX09cdWzQSo01BD9SRCHmZdmDPKzlN+HWqmq/KqfhKY20kB
CRyM8e5W1SfvHMIz+svX1EV43gL+xlNf+JDikFmjGgLNwYmdtgg4E1z3zDKV5aP5
fxivSk/+RiHJ0Y6CNqRS24OC9E5Tah0UpfZjWG13IyGBJ7+6Qt78zQLTKC/p0g7Y
mvFLmVRwF6Id5A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 19:41:47 2025 by rpki-client