Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
File: OA-TW80EhiXnAVXPLMKCniwgcqY.mft (raw, json)
Hash identifier: nlDKf4yQK0mOLbvdZubrxBoG8sbCFn0kpdEa4IzjJU0=
Subject key identifier: 23:C7:5A:EC:DD:B7:B2:57:65:49:70:75:FC:A4:35:A0:4E:04:29:9E
Authority key identifier: 38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
Certificate issuer: /CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Certificate serial: 0199FD33F59BA3139074430246B0C72FD43F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
Manifest number: 03C8
Signing time: Sun 19 Oct 2025 16:01:04 +0000
Manifest this update: Sun 19 Oct 2025 16:01:04 +0000
Manifest next update: Mon 20 Oct 2025 16:01:04 +0000
Files and hashes: 1: OA-TW80EhiXnAVXPLMKCniwgcqY.crl (hash: 4CS2hkzUcOBPpN4LX65/911oTmLbq6wgYxTIHNG1AAg=)
2: Q5qSxQZ6AuTJXsJJ-9RRWDA26wA.roa (hash: 64WIeN1+JBWLPlD+mMTcZ54izCFjiXRNJWE/ls/16OM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:33:f5:9b:a3:13:90:74:43:02:46:b0:c7:2f:d4:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380f935bcd048625e70155cf2cc2829e2c2072a6
Validity
Not Before: Oct 19 16:01:04 2025 GMT
Not After : Oct 20 16:01:04 2025 GMT
Subject: CN=23c75aecddb7b25765497075fca435a04e04299e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:87:4d:2e:48:f9:ce:c3:82:ca:ed:8a:49:06:
a2:f2:de:af:6f:f0:59:29:02:34:76:25:85:70:c7:
ea:73:08:90:40:ff:43:ea:d5:01:d3:4b:8b:2b:d0:
dd:21:fa:55:9b:c0:10:7e:3e:99:f9:14:03:db:29:
40:61:8e:06:77:45:76:4d:3f:e0:06:a2:83:d5:e0:
b9:78:a3:a4:3a:f0:c2:3e:5d:37:88:eb:74:20:c6:
93:61:4f:72:ab:3c:3a:31:b0:31:7f:2e:d7:5c:8e:
db:2d:d8:0f:9c:0e:b7:f7:eb:ec:52:e1:c8:0b:c0:
a0:7c:55:84:65:1f:54:7e:ff:52:a4:f1:25:3a:80:
53:7b:b8:38:e1:c6:1b:88:e6:2a:0a:6f:1b:3d:40:
27:af:12:64:59:02:ad:92:9a:ba:88:70:1f:a9:73:
54:bb:8a:01:f3:a2:a8:db:88:8e:08:c4:9a:fc:91:
8a:ca:a0:1b:9a:aa:26:14:7c:63:6f:1b:24:08:e6:
ba:7b:73:75:88:ba:a3:1b:d1:17:99:90:6a:83:03:
ea:12:6f:e9:2f:24:06:f3:e2:30:e7:f0:32:f2:6d:
d7:6b:0d:d3:34:87:15:50:29:70:00:1b:62:ab:a8:
fd:a9:9b:58:38:b7:c5:b3:0f:09:8d:1d:ac:dc:b0:
a8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C7:5A:EC:DD:B7:B2:57:65:49:70:75:FC:A4:35:A0:4E:04:29:9E
X509v3 Authority Key Identifier:
keyid:38:0F:93:5B:CD:04:86:25:E7:01:55:CF:2C:C2:82:9E:2C:20:72:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OA-TW80EhiXnAVXPLMKCniwgcqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/22744a-8588-4290-b23c-6c0771f25396/1/OA-TW80EhiXnAVXPLMKCniwgcqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:56:0c:cb:08:b4:b5:dd:68:f9:0d:80:1c:88:55:0b:18:00:
3b:b7:1a:02:96:8f:76:bc:49:bf:be:fa:a9:f6:bb:60:98:14:
fb:c8:0a:05:e2:d5:bb:66:a4:ae:c6:b0:07:84:11:b6:82:6b:
73:a1:ea:e9:66:05:13:c5:4c:dd:a5:ca:1d:88:89:90:01:85:
fb:39:b6:b5:27:f4:8b:6b:6e:93:24:dc:bf:a3:b8:39:7a:06:
b4:cb:af:42:ac:18:fd:55:64:c5:25:4f:72:62:9b:87:69:17:
6f:df:54:a6:1a:9f:4c:ba:31:4a:6b:e4:a4:a5:40:f1:46:52:
eb:e8:61:60:0f:f4:28:fb:5e:a7:07:47:f5:e1:de:99:20:86:
6c:0c:ae:b2:72:26:1f:e9:74:bc:f9:0c:19:8a:93:5e:f0:a7:
40:2c:c2:6c:61:9c:44:23:e8:a9:c1:1d:b0:fa:a4:19:44:12:
68:01:ee:29:33:99:09:6a:ce:44:7a:c4:e7:48:a8:a8:b4:89:
29:da:ed:02:41:6f:9f:de:23:dc:82:d2:ef:1c:4d:b1:58:c6:
c6:e5:0b:4c:40:19:41:b0:2e:7e:4b:93:ad:30:de:a8:17:1e:
26:93:99:b9:2c:a4:6d:49:a1:17:62:67:0d:87:38:f6:1c:23:
6c:6a:2d:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:45:03 2025 by rpki-client