Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
File: oNMhbMzIY-ygw90YmUGxueo3ys0.mft (raw, json)
Hash identifier: 5JxGR0bdxw7T1jwQ9h/KBScMlGRBXCd5gOSA7u/TXag=
Subject key identifier: 64:78:DB:C5:37:3A:2B:82:84:84:CD:74:15:BC:FE:ED:93:CA:3E:87
Authority key identifier: A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
Certificate issuer: /CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Certificate serial: 0198D6614B47949BA9708E5B715CA19A1D0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
Manifest number: 0E94
Signing time: Sat 23 Aug 2025 10:02:37 +0000
Manifest this update: Sat 23 Aug 2025 10:02:37 +0000
Manifest next update: Sun 24 Aug 2025 10:02:37 +0000
Files and hashes: 1: YAQOG7HS14oLGl_AE__5KljKQek.roa (hash: vYFfnqVBOtNvOIxvJDmuRRaUo+YW3T+OADCuratSdoU=)
2: i2HYpKIvdGotH7mKcmQ5RAG3huY.roa (hash: 4Nz6YUMbPlVe3PbppTQU2sGDWl5KATygr4DtzeG8qCU=)
3: oNMhbMzIY-ygw90YmUGxueo3ys0.crl (hash: bAhypgotE/7A/gCsEYgNLQ3RsfHWOzOQJU6kWcnm1GI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:4b:47:94:9b:a9:70:8e:5b:71:5c:a1:9a:1d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3216cccc863eca0c3dd189941b1b9ea37cacd
Validity
Not Before: Aug 23 10:02:37 2025 GMT
Not After : Aug 24 10:02:37 2025 GMT
Subject: CN=6478dbc5373a2b828484cd7415bcfeed93ca3e87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fc:b2:c7:e6:09:fc:30:80:e1:f3:af:fe:83:
f7:a4:66:36:0d:20:a9:30:36:4b:ae:e9:37:a0:63:
54:d0:9c:87:b6:80:17:91:ac:f0:16:40:5d:6a:c3:
f8:fc:13:69:05:b2:6e:6a:31:75:a4:8c:85:d9:08:
72:6c:e3:6a:69:aa:b5:57:0d:ae:73:fb:0d:fc:ff:
74:33:8e:b7:bd:a2:61:2e:14:47:6d:e9:19:e8:3f:
c2:dd:1c:55:6a:72:d8:ee:96:84:35:e7:2f:f5:54:
31:89:9f:9b:fd:92:54:c4:d1:a2:5d:ac:6e:6c:b4:
2e:12:ca:23:e0:8a:c9:45:f3:d8:9a:ab:32:3a:62:
c9:c6:28:27:8a:de:24:b5:b7:f2:35:e9:6c:06:f4:
23:57:f5:45:ba:f9:cf:52:e6:9d:cf:f4:d9:d9:49:
44:f5:b3:b3:9d:40:e3:f3:e9:53:78:39:75:00:de:
29:73:f8:62:58:65:39:20:54:8f:21:ed:ef:5c:66:
9e:99:2d:69:ab:10:a0:d3:9f:23:07:df:ea:d6:d8:
59:37:ca:68:6b:02:0b:ca:f4:26:03:dc:1e:3e:df:
8b:ce:94:7f:7f:1c:e7:ab:0d:fd:7c:6d:7c:a7:79:
46:f7:0d:80:8c:be:8a:11:04:30:63:c7:28:f5:12:
09:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:78:DB:C5:37:3A:2B:82:84:84:CD:74:15:BC:FE:ED:93:CA:3E:87
X509v3 Authority Key Identifier:
keyid:A0:D3:21:6C:CC:C8:63:EC:A0:C3:DD:18:99:41:B1:B9:EA:37:CA:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNMhbMzIY-ygw90YmUGxueo3ys0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5b2d1-cba0-4a54-b438-0d44c04a8448/1/oNMhbMzIY-ygw90YmUGxueo3ys0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:5e:e2:9b:8d:e5:11:c2:69:8d:ca:47:f6:5f:ed:50:c4:b1:
00:7e:9f:31:6a:ca:d5:41:7c:4f:36:24:8f:81:09:9a:c0:fd:
94:38:f1:84:c9:27:51:bc:75:ef:3c:33:61:77:d7:a5:af:57:
f7:f8:3a:5a:60:7c:b8:34:b9:9a:94:57:f0:54:3c:32:bc:39:
35:e4:92:f7:31:e4:f2:1d:26:dc:b5:09:c3:4f:4f:e0:39:6c:
64:2c:ae:c0:2f:02:61:41:8f:bd:ec:91:17:8f:99:3c:2c:d5:
a1:75:09:8a:ef:3b:44:e3:42:05:c5:ea:79:4b:4d:6c:7e:d1:
3e:68:2a:4c:2a:4e:18:c8:cd:c9:1b:65:aa:02:73:f0:90:e2:
76:5d:a5:ac:86:ce:84:82:05:de:cb:a9:2f:2d:c5:4f:3d:68:
11:5e:bb:b0:1d:2d:1d:4e:65:ca:88:31:77:29:9e:79:af:fc:
73:21:57:f1:9e:7f:04:48:94:4b:29:1e:2c:0c:6c:de:64:80:
6b:ac:58:81:47:e6:75:a6:ba:a0:bc:7d:65:21:d2:5a:95:1f:
19:f5:2b:0d:dd:bd:2a:37:a3:ab:42:bb:cf:e1:77:b7:f8:e7:
71:de:09:f8:0a:4f:0d:86:6f:58:d9:99:99:18:34:a9:6f:07:
66:cd:80:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:22:10 2025 by rpki-client