Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
File: oynU0nVy71pqbb7NeS7vmM6QcW0.mft (raw, json)
Hash identifier: DjL3vX/bzztucmpr69d3ivUiQjOPVDou9G5y7Tlg+yQ=
Subject key identifier: 51:63:74:54:E8:AA:6C:D0:6D:8C:27:BA:B4:3B:50:8A:C2:6A:5C:09
Authority key identifier: A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
Certificate issuer: /CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Certificate serial: 0198D583E3C4BF307664534C3ADBBB0093F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 06:00:47 +0000
Manifest this update: Sat 23 Aug 2025 06:00:47 +0000
Manifest next update: Sun 24 Aug 2025 06:00:47 +0000
Files and hashes: 1: blse6v5EH2fVrElwGZmlrK99XJk.roa (hash: otAVsYT9s6hCs6g9uAr3ovy061yRH8/KdKxwyyD5qvk=)
2: oynU0nVy71pqbb7NeS7vmM6QcW0.crl (hash: sUoBoWo1RaXuSwi35ucOuINs7/Um9KOUQ+HNwPC3xj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:e3:c4:bf:30:76:64:53:4c:3a:db:bb:00:93:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Validity
Not Before: Aug 23 06:00:47 2025 GMT
Not After : Aug 24 06:00:47 2025 GMT
Subject: CN=51637454e8aa6cd06d8c27bab43b508ac26a5c09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:72:3e:4c:81:80:29:60:ea:29:02:14:0e:36:
be:30:03:a9:5f:cd:4b:06:36:2c:f2:a1:81:50:bb:
ae:40:37:25:5a:b5:9f:bc:bd:ad:88:f5:ea:30:e2:
01:1c:30:5d:52:b9:8b:cb:51:30:37:f8:f9:a8:c2:
b2:fb:8a:94:7f:e7:10:e5:c9:a3:aa:0f:a9:9f:c5:
61:4b:d4:3e:4f:9a:cf:9a:05:7e:0a:72:78:b9:4f:
a1:b6:46:d0:5d:08:fe:b8:6c:ef:c1:81:9d:2d:fe:
74:45:7a:ed:d1:86:dc:d6:b7:71:00:70:e6:28:18:
83:f8:1d:da:45:d1:2d:cf:5f:1f:e1:0e:e4:77:e0:
30:47:a1:4a:d6:6f:8e:6e:38:66:ed:b4:a4:e8:8b:
f1:85:71:89:0d:70:6b:58:26:de:ec:e3:63:0f:ae:
f7:76:b2:01:54:3c:c0:a5:54:21:a4:67:be:96:56:
90:d2:8e:dd:57:fe:ce:36:f3:b9:fa:05:b9:83:32:
7c:75:6c:a4:0e:57:5c:a2:ed:4d:3b:21:4c:32:12:
7c:39:98:5c:d3:ae:1e:b4:53:ad:a4:0b:5a:90:5a:
04:f9:5d:fa:c6:93:47:fd:76:41:39:23:20:95:52:
4f:0c:7d:8a:fc:ec:75:8d:20:76:d8:4f:cc:34:8c:
a6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:63:74:54:E8:AA:6C:D0:6D:8C:27:BA:B4:3B:50:8A:C2:6A:5C:09
X509v3 Authority Key Identifier:
keyid:A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:bf:d5:a1:a5:97:75:2b:9b:f4:6d:97:8c:b6:f4:17:bf:52:
31:bd:99:d1:4f:8d:80:30:ec:2b:13:2c:b9:48:da:df:0d:3c:
34:94:6f:9e:29:2f:a9:71:e0:54:9f:52:bd:6c:d8:6e:73:9b:
bc:a7:73:00:00:f0:24:65:c2:fc:89:bb:7c:d1:22:43:44:a8:
8c:3e:c4:11:97:4e:56:36:97:e1:d3:f1:a1:5d:7f:5e:4d:8e:
27:e9:7b:a5:04:0f:2d:b1:31:0a:25:ec:37:46:b1:80:83:15:
09:c9:e5:ab:06:4e:58:01:ad:07:85:ad:57:52:49:d1:86:2c:
71:7e:57:f3:28:39:05:3b:a9:19:aa:d4:c7:d8:99:76:86:e1:
1f:20:79:53:47:31:83:27:cb:19:fc:69:82:a8:60:74:10:ae:
6e:9f:4a:9c:ff:be:12:15:6c:7a:6e:54:8c:00:17:fb:71:06:
56:b2:cc:be:78:33:cb:6c:90:c5:63:ec:e9:bc:b5:80:b7:ca:
6b:2e:ff:dc:b1:82:ad:47:24:fd:08:85:94:0d:a3:9f:39:a3:
9b:86:f3:2f:30:07:97:7d:ce:6a:54:c0:84:16:d5:4a:b8:44:
e6:39:eb:aa:e5:ac:00:f5:01:4c:c9:62:cd:5e:c2:94:87:1c:
1d:51:75:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:48:34 2025 by rpki-client