Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
File: OA-TW80EhiXnAVXPLMKCniwgcqY.mft (raw, json)
Hash identifier: zI3hIqGh12/MHZoNFnYTGLr1p4M60rajfR6/v+qkVVc=
Subject key identifier: 9B:A7:9A:F6:DE:5D:CD:0A:8A:05:FF:F4:A1:5E:39:9D:4E:01:AF:67
Authority key identifier: 38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
Certificate issuer: /CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Certificate serial: 0198D7E17B14861886B471CF884625832551
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
Manifest number: 0330
Signing time: Sat 23 Aug 2025 17:02:15 +0000
Manifest this update: Sat 23 Aug 2025 17:02:15 +0000
Manifest next update: Sun 24 Aug 2025 17:02:15 +0000
Files and hashes: 1: OA-TW80EhiXnAVXPLMKCniwgcqY.crl (hash: 9jMy2jYkigDgjKHtKWU+KYQJTz3eG3AWL8GqdUdmJr4=)
2: Q5qSxQZ6AuTJXsJJ-9RRWDA26wA.roa (hash: 64WIeN1+JBWLPlD+mMTcZ54izCFjiXRNJWE/ls/16OM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e1:7b:14:86:18:86:b4:71:cf:88:46:25:83:25:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Validity
Not Before: Aug 23 17:02:15 2025 GMT
Not After : Aug 24 17:02:15 2025 GMT
Subject: CN=9ba79af6de5dcd0a8a05fff4a15e399d4e01af67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:14:66:1b:80:dc:a1:eb:23:9e:2c:62:da:49:
f0:54:20:9e:85:97:25:ce:53:1d:7d:af:f8:23:c8:
ac:dc:6a:02:fc:f4:00:e7:8c:c5:e3:b9:ba:2b:e2:
03:1f:2e:9a:76:73:96:87:cc:bb:90:75:cf:8d:13:
64:e5:fd:38:56:84:82:c3:0a:96:9c:ca:8f:93:09:
e8:e6:85:ab:6b:ce:ef:35:5e:56:98:29:16:aa:1f:
cd:47:ac:54:38:6f:f4:77:df:79:cb:81:81:69:19:
8c:43:55:da:54:ce:29:ab:ea:48:3f:8b:97:87:66:
80:56:2f:07:75:32:4d:a7:13:ce:86:29:46:91:2b:
b0:85:98:f3:5c:5b:ef:a6:fc:35:56:39:7d:00:92:
d8:92:9b:63:f0:cf:cb:7e:60:cd:f9:cc:3f:9c:c9:
3c:96:36:5c:4c:c0:9d:5b:35:5e:5a:71:72:75:40:
b1:2c:72:df:30:d8:d5:88:89:88:ae:c9:a0:2f:e6:
cd:c4:42:7b:29:b6:e8:f5:d5:61:0f:9d:7d:9e:e2:
ac:20:0d:db:73:51:2d:3f:fc:03:e6:1a:e6:7f:fd:
7e:9a:41:34:c2:df:c0:21:d0:b1:d1:9c:70:fd:96:
83:06:b7:3d:69:e4:79:40:90:f9:83:bf:d8:01:23:
7b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A7:9A:F6:DE:5D:CD:0A:8A:05:FF:F4:A1:5E:39:9D:4E:01:AF:67
X509v3 Authority Key Identifier:
keyid:38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:1b:ce:da:19:e1:ce:be:70:82:1d:c4:07:49:62:0f:c1:21:
43:62:89:3a:98:7c:b3:23:4e:6a:71:25:63:75:54:53:83:f3:
35:a7:d3:dc:b0:ba:7b:68:77:cb:6b:fc:3f:f7:49:a7:ad:c4:
1f:dd:0d:b1:78:e7:e1:f7:91:fe:b5:a6:16:26:b8:6d:53:87:
6c:e2:3e:b5:1e:e4:e1:96:dc:47:45:f7:eb:8b:f8:67:dc:5c:
7c:71:03:6c:e1:c7:39:da:5f:92:f9:92:bc:61:4e:a4:91:2c:
36:74:68:8d:1d:89:7c:4b:05:b5:de:65:0e:98:86:6a:d6:98:
15:68:77:56:17:cb:65:ea:b8:e4:f4:a9:58:c3:61:8e:23:d7:
10:e2:cb:a9:a2:a2:c9:3e:b8:42:11:3f:75:d7:94:83:5c:bb:
65:be:25:14:d0:94:41:b9:85:b0:91:24:e5:b7:49:ac:d0:53:
01:4b:d8:a5:13:ad:21:2d:81:9d:cd:34:c7:94:2e:25:1c:48:
fe:11:97:23:d7:1c:d4:86:27:24:e8:14:9e:04:39:ae:21:3f:
8f:94:0d:76:8b:3c:71:70:60:19:1d:b4:d9:90:19:68:99:de:
8d:83:5c:97:e8:c8:7b:09:97:65:dd:78:c5:f3:49:e3:bc:2a:
25:46:fc:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:14:46 2025 by rpki-client