Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
File: oNki4v4kvSzaeToqrcEzYlAM2bE.mft (raw, json)
Hash identifier: haoBomwa15eSTrWS5Xqp4XFwxc+U9FMx0iROcHjI5Wk=
Subject key identifier: 6C:FF:96:86:9F:E9:6B:5B:EE:52:72:76:14:6A:D4:F7:02:DF:DD:D9
Authority key identifier: A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1
Certificate issuer: /CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1
Certificate serial: 0198D515EDE8FFE582F67831FA83B316E56E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
Manifest number: 0C4C
Signing time: Sat 23 Aug 2025 04:00:40 +0000
Manifest this update: Sat 23 Aug 2025 04:00:40 +0000
Manifest next update: Sun 24 Aug 2025 04:00:40 +0000
Files and hashes: 1: QU8GopeOlHwkTprCT-S3aTgX93c.roa (hash: wdEn+nBxYgSylw1Zt9va3XXWns8S/pGLaLLxEZ/5irY=)
2: oNki4v4kvSzaeToqrcEzYlAM2bE.crl (hash: KQMEnMiz7xs2ew/2iONRVYPONNeCGGCcX6HHg3EAxFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:ed:e8:ff:e5:82:f6:78:31:fa:83:b3:16:e5:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1
Validity
Not Before: Aug 23 04:00:40 2025 GMT
Not After : Aug 24 04:00:40 2025 GMT
Subject: CN=6cff96869fe96b5bee527276146ad4f702dfddd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:07:c3:67:b4:1a:a9:7b:df:99:68:63:d2:33:
3d:b7:ee:c4:21:d4:36:c4:fc:e6:89:cf:b0:c7:2e:
40:27:60:14:2a:18:d6:b1:40:c5:43:5f:0b:29:0a:
87:30:fc:fe:e1:72:bc:e0:41:1a:e4:af:ad:9c:42:
8c:e5:a8:57:c6:24:8f:a3:e4:26:9d:cb:7d:96:33:
86:a5:cb:a2:52:28:0f:5a:16:07:3b:b0:a5:56:a9:
ac:1b:e2:4d:7b:49:08:c7:00:d7:d2:ad:0e:ab:b1:
9f:de:64:81:59:23:4f:ec:83:e9:23:2e:7f:e1:d1:
de:66:42:ad:70:46:0c:8a:16:a4:fc:9b:fa:50:3c:
c8:0b:a3:80:1b:9e:40:11:c8:12:f2:2e:63:15:77:
04:a5:4b:e7:10:21:d8:be:86:4a:0a:87:5a:64:64:
c8:41:f9:4e:1d:4f:c2:5f:fd:ea:9a:63:2b:bc:66:
46:04:56:0d:3b:31:12:fa:05:e1:60:a5:9a:63:47:
b6:2c:06:ee:4a:f5:d6:d2:3f:04:44:2d:e1:63:f7:
c6:09:ac:f4:c4:36:76:55:02:4d:24:e3:f3:bc:ed:
d6:a3:b8:ec:bb:f2:7c:49:d8:10:ee:ae:dd:b2:fe:
69:ae:ca:63:a9:27:fc:7c:44:f0:f5:e2:6d:f7:f7:
5b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:FF:96:86:9F:E9:6B:5B:EE:52:72:76:14:6A:D4:F7:02:DF:DD:D9
X509v3 Authority Key Identifier:
keyid:A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:23:ad:da:19:79:86:04:59:56:3c:e4:75:7f:d0:90:42:b8:
f3:ce:57:f7:57:18:6e:49:14:db:85:9b:80:3a:6e:40:ce:75:
08:38:18:b2:3a:58:06:62:15:23:b2:fa:5e:69:44:f6:d6:6e:
f9:85:ac:c2:9f:a4:bb:c8:bd:ef:6a:3d:fb:93:cf:e9:18:47:
4e:0d:a1:24:a4:71:07:af:18:74:e6:64:f0:a8:45:5f:87:d8:
8f:c7:99:94:1c:5d:53:a6:14:5f:14:78:37:f6:e5:d8:10:17:
b9:03:0e:54:8f:ea:90:80:94:8b:4a:5c:cf:6e:de:e5:68:c2:
b6:e1:02:81:8b:73:c9:a7:e6:fc:3f:e6:aa:2a:c4:79:99:ff:
ec:5b:f1:a5:9a:ed:9f:a1:8f:5d:59:5f:a2:19:f7:98:c0:0c:
d7:71:61:a3:05:e4:5c:b0:e9:87:b6:f7:ff:e4:64:15:5d:23:
ea:63:65:22:54:a5:24:66:26:4c:f6:a5:85:e0:b0:9e:d4:43:
16:9f:46:4c:d0:fa:4e:75:e6:0b:3e:b9:92:28:ae:41:75:89:
83:e9:ef:ba:a6:c2:39:ca:b2:fe:98:17:b1:8a:38:14:80:a3:
18:f8:d6:02:a2:23:c4:f4:ae:6d:9b:e7:5c:3a:4d:cb:dd:3e:
84:c9:9b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:31:06 2025 by rpki-client