Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
File: oNPtV5U0igTn7NFy12QvqWIJcoc.mft (raw, json)
Hash identifier: Lb3aKiUicw5CxlbM0CfKyFZtEhAmANjcS+DKMsWe48s=
Subject key identifier: 75:85:46:9F:80:FF:C8:16:DE:87:8D:1F:3F:48:16:11:AE:74:6D:1D
Authority key identifier: A0:D3:ED:57:95:34:8A:04:E7:EC:D1:72:D7:64:2F:A9:62:09:72:87
Certificate issuer: /CN=a0d3ed5795348a04e7ecd172d7642fa962097287
Certificate serial: 0198D54DF70879BD321F75957271873EE477
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
Manifest number: 0330
Signing time: Sat 23 Aug 2025 05:01:53 +0000
Manifest this update: Sat 23 Aug 2025 05:01:53 +0000
Manifest next update: Sun 24 Aug 2025 05:01:53 +0000
Files and hashes: 1: _Z612WlN8ZfOi7lH-p4HrmdXgXQ.roa (hash: QscoaDsHFH3nysubWrv1ADSV365kESJ9Bam6CnFtw2M=)
2: oNPtV5U0igTn7NFy12QvqWIJcoc.crl (hash: S5DlYD0Jg1YEibi3sIyBzeLhfkpTUm337VU4lzmf1mU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:f7:08:79:bd:32:1f:75:95:72:71:87:3e:e4:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3ed5795348a04e7ecd172d7642fa962097287
Validity
Not Before: Aug 23 05:01:53 2025 GMT
Not After : Aug 24 05:01:53 2025 GMT
Subject: CN=7585469f80ffc816de878d1f3f481611ae746d1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:3c:3d:17:82:56:0f:4f:1e:07:e7:a7:3a:23:
c6:3b:af:62:c6:ff:38:fd:be:e5:ad:ed:f0:b8:ac:
18:79:32:2f:7d:3a:62:bd:71:05:7b:36:a0:a9:4b:
42:1f:d8:35:a3:b6:23:1c:92:a7:a4:70:25:17:e5:
23:f8:b7:3c:4d:ab:86:f4:f3:93:c2:16:d6:f0:88:
30:71:76:65:b3:6c:7f:0e:59:02:f6:1a:04:00:60:
94:5e:77:be:6f:e7:91:a0:21:4b:ac:21:b6:bf:78:
f9:39:d3:f9:df:56:b7:0a:46:0e:e6:74:ec:47:ab:
b0:05:02:75:53:6e:07:61:eb:11:cc:94:e7:e1:0a:
34:02:f0:81:3f:3a:5f:48:82:a5:0f:a5:8f:95:5a:
47:50:5b:27:67:3b:24:76:78:d9:ea:82:09:71:cd:
cf:39:d2:86:36:76:42:31:fd:17:54:71:bf:8d:1a:
10:e9:6c:43:f0:23:4b:58:1e:59:67:ad:92:3c:5e:
f4:29:2c:ae:05:e7:6e:35:51:e1:8c:5a:05:ea:82:
8f:73:0e:9c:37:c2:dc:b8:c0:31:cb:b2:a6:38:3b:
c6:ba:09:ca:fb:a0:a1:fa:51:25:e0:7a:1d:6a:0a:
48:6a:a3:62:c8:7c:b9:1b:85:6c:2a:d6:b0:5b:8c:
bc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:85:46:9F:80:FF:C8:16:DE:87:8D:1F:3F:48:16:11:AE:74:6D:1D
X509v3 Authority Key Identifier:
keyid:A0:D3:ED:57:95:34:8A:04:E7:EC:D1:72:D7:64:2F:A9:62:09:72:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:5e:51:72:89:3d:44:42:36:6a:53:af:01:a2:34:92:da:ad:
c4:24:57:9e:22:ec:50:10:eb:3f:98:e6:f5:89:fc:91:62:4f:
1c:74:e0:0b:94:90:61:d7:55:aa:54:84:0c:c6:1f:ad:86:7b:
27:ef:cc:88:1a:54:39:8a:03:69:05:c9:8f:da:b9:98:f0:d9:
ca:f9:e4:5a:05:54:b4:b6:97:41:17:1b:f9:ba:ae:d7:a8:05:
cf:35:55:78:f3:7b:c3:e5:9d:3d:77:d2:6d:12:d1:95:f2:4f:
6d:a6:e4:d0:33:c9:5c:54:0c:46:8c:af:a4:e6:c2:1d:61:52:
d6:87:f3:06:e8:a4:b7:11:9b:83:3b:34:70:b8:2b:e2:4b:92:
98:fa:05:63:54:79:d3:56:a3:c9:ab:c2:cd:11:a1:aa:8f:61:
93:a4:6b:a3:04:6e:25:1f:4f:a5:25:0d:2a:02:37:1e:33:16:
74:bc:ca:2a:d7:40:bb:02:2e:a7:c1:3c:41:59:af:d8:a7:7b:
0b:d5:c4:87:8e:7c:aa:86:d9:76:83:04:b3:c2:68:75:29:c4:
24:8b:dc:81:a1:b5:cc:6a:5c:bc:88:b8:85:f1:1e:39:c9:c9:
22:a9:d7:53:e7:c0:81:be:af:fc:c8:6b:16:de:04:bb:89:fe:
f0:cc:80:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:03 2025 by rpki-client