Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
File: o8-bZGUWkotdBsKoGestvA_pkgo.mft (raw, json)
Hash identifier: GmrLcSEgIbiFR6U3SNZXxYQf72mkrvJMmafIdqvtLVQ=
Subject key identifier: 36:8F:3C:F0:71:27:9E:CD:F4:21:BF:DB:AB:7D:F3:F2:7B:B3:E5:69
Authority key identifier: A3:CF:9B:64:65:16:92:8B:5D:06:C2:A8:19:EB:2D:BC:0F:E9:92:0A
Certificate issuer: /CN=a3cf9b646516928b5d06c2a819eb2dbc0fe9920a
Certificate serial: 0198D73B621570924AA344414E8C825CB4DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
Manifest number: 9D
Signing time: Sat 23 Aug 2025 14:00:49 +0000
Manifest this update: Sat 23 Aug 2025 14:00:49 +0000
Manifest next update: Sun 24 Aug 2025 14:00:49 +0000
Files and hashes: 1: X-QlQ7J2mkMQ7aCqISeZm-0GPp8.roa (hash: tcckn5v078MeQtwYD02YyKajWXUMPOWsBI1IguOQcTI=)
2: o8-bZGUWkotdBsKoGestvA_pkgo.crl (hash: E/GgTPyxIHve05OFGiMYfF/K4vsQBDTY+BhtHFXzqXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:62:15:70:92:4a:a3:44:41:4e:8c:82:5c:b4:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3cf9b646516928b5d06c2a819eb2dbc0fe9920a
Validity
Not Before: Aug 23 14:00:49 2025 GMT
Not After : Aug 24 14:00:49 2025 GMT
Subject: CN=368f3cf071279ecdf421bfdbab7df3f27bb3e569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:58:d0:6c:04:09:10:71:96:cd:dd:ca:52:84:
d4:40:60:9e:5a:d8:e8:d2:1e:00:d4:cd:43:03:59:
a5:dd:8d:7c:f1:8a:07:53:8e:05:c7:0c:14:1d:b7:
0d:0f:f8:38:ad:c7:17:db:79:7f:77:3f:e0:42:f9:
42:98:af:ae:e3:b5:ec:eb:d0:b6:ac:5b:4e:13:14:
af:d4:b9:3c:28:00:7e:2e:6f:0c:06:35:36:c3:64:
af:1b:7d:bb:36:73:b3:ca:23:cc:11:c6:d0:72:36:
6c:56:59:87:a1:1e:2c:bc:b8:12:66:14:7c:24:e2:
1d:a7:d9:5e:e8:22:05:84:2a:8f:db:80:25:45:28:
c5:11:fc:0c:85:3f:0a:34:71:da:09:53:72:32:3f:
25:f5:69:a8:4c:2f:34:95:a8:38:cd:10:f0:e2:bf:
58:24:c5:0e:65:31:70:8e:1e:f3:3d:6b:87:cd:90:
23:03:51:7d:f8:24:ef:38:80:24:b6:2b:f7:ef:af:
00:37:4e:eb:13:19:a3:70:55:cf:3b:b7:bb:08:c6:
36:d6:20:b9:ae:17:11:fc:6f:9a:b0:8d:fb:87:33:
8c:cb:7d:81:83:9b:2d:a0:18:3b:15:1a:51:5d:60:
b7:c9:93:7f:3a:85:96:67:72:7d:9b:32:ed:36:43:
b5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:8F:3C:F0:71:27:9E:CD:F4:21:BF:DB:AB:7D:F3:F2:7B:B3:E5:69
X509v3 Authority Key Identifier:
keyid:A3:CF:9B:64:65:16:92:8B:5D:06:C2:A8:19:EB:2D:BC:0F:E9:92:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8-bZGUWkotdBsKoGestvA_pkgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/394d07-05cc-4f72-bd46-289696cc99b9/1/o8-bZGUWkotdBsKoGestvA_pkgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:b3:f4:bb:3c:83:c2:60:a2:63:6b:97:2e:db:60:d6:3c:23:
5c:74:fe:0b:8d:e9:82:91:1f:6b:0b:f7:d8:23:4a:9b:e0:aa:
ff:8b:a8:60:ec:77:49:1d:d6:a5:d1:0a:b0:23:0f:42:24:9c:
95:95:98:65:fc:53:f7:05:54:95:03:28:0e:ea:df:1c:55:7a:
87:c5:2a:67:8a:4c:0a:e2:3b:b5:1e:8b:d7:41:2d:c3:f5:58:
7a:57:bb:0f:b4:f3:32:ca:f2:e0:ae:1f:2e:40:52:31:8a:93:
3d:3e:47:43:71:17:39:e9:39:3b:3f:6d:f9:51:18:68:4f:4d:
24:5f:17:e8:c9:29:05:c8:a6:70:7c:f0:39:3b:e5:87:ed:b1:
8c:c3:ae:c6:66:5e:a0:71:9c:ad:98:45:3d:20:4c:d0:65:0e:
c5:89:6c:07:83:39:04:4c:e7:d5:d6:dc:9b:e0:ef:88:63:7f:
c6:47:da:68:f6:95:d2:cb:15:91:a3:04:fd:14:08:00:b6:af:
b5:12:39:fe:26:fd:84:3d:5a:78:12:40:ac:da:9c:ed:25:fa:
46:24:cf:30:5e:9e:37:ac:73:47:7d:2d:6d:e2:a7:c8:b9:ef:
aa:e3:cb:b9:e0:76:91:4b:97:f3:9e:74:54:d4:c0:c6:28:0b:
ea:14:49:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:25:10 2025 by rpki-client