Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
File: oJfWos9CiA2-v0KjJRkHohyRpKU.mft (raw, json)
Hash identifier: jrBzMbG0lJhbWZEhNsE31igKAjbFsqDQQ8OxxwM/LG8=
Subject key identifier: E8:42:71:B7:5D:E0:C0:43:A6:60:81:BE:2C:A4:DA:98:21:7F:43:02
Authority key identifier: A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
Certificate issuer: /CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Certificate serial: 0198D705D4D5F2B712C41EDA75C03EEA1D96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 13:02:20 +0000
Manifest this update: Sat 23 Aug 2025 13:02:20 +0000
Manifest next update: Sun 24 Aug 2025 13:02:20 +0000
Files and hashes: 1: 9xc32CvuOjNWHQB-PWYWWQOY_yA.roa (hash: PjbNQ/Rs2a2yPfO42XDBv2ntO3mtq/Wj2Yqgz9eO9jA=)
2: oJfWos9CiA2-v0KjJRkHohyRpKU.crl (hash: MtK9BIcrFmEczlzXbpMalLgJj2qlSXpUOKTa3nOMxew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:d4:d5:f2:b7:12:c4:1e:da:75:c0:3e:ea:1d:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Validity
Not Before: Aug 23 13:02:20 2025 GMT
Not After : Aug 24 13:02:20 2025 GMT
Subject: CN=e84271b75de0c043a66081be2ca4da98217f4302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e0:45:76:95:43:ab:2c:38:d6:a4:9c:7c:30:
eb:17:8c:54:26:ee:24:77:9d:9c:be:c1:4a:ff:39:
a2:5d:8c:71:fa:ee:31:27:2a:31:26:83:d7:c3:7e:
59:18:a5:50:e6:ed:97:6c:e6:66:41:93:3c:dc:61:
83:b8:1f:8a:cf:05:f0:14:89:60:5f:cd:76:63:77:
44:8b:0a:ec:7a:f6:20:be:66:4f:70:30:9d:9e:0d:
5d:80:01:09:40:17:19:79:24:7d:c1:8f:1a:5b:3a:
43:61:a3:5a:f7:c1:8d:7f:a5:18:43:ef:9f:60:d2:
0d:8e:17:7f:2a:0f:ff:49:86:2f:89:ec:09:33:ac:
24:dd:87:e5:47:bf:ec:89:e2:40:8a:72:62:99:13:
db:0e:77:49:b3:2c:da:ae:15:96:1b:b7:00:ab:8b:
bf:65:c2:f4:89:5a:a2:c5:90:73:58:d9:d2:28:01:
e5:6b:03:6c:1f:de:17:8a:0e:3b:28:ca:05:ca:35:
76:00:49:b3:19:ed:4b:e8:84:54:2a:51:88:b3:c5:
d8:75:6b:04:57:b4:22:5c:ab:3b:7c:33:74:8e:a6:
6b:92:90:fc:14:c8:ef:7b:43:6a:0c:2b:e8:8d:9d:
c5:1b:0a:bb:9d:1f:7d:3e:06:ca:7f:ff:3d:08:33:
c3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:42:71:B7:5D:E0:C0:43:A6:60:81:BE:2C:A4:DA:98:21:7F:43:02
X509v3 Authority Key Identifier:
keyid:A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:f0:79:72:02:80:b9:27:9d:3c:3a:22:51:bc:28:f4:0a:90:
d4:40:41:b0:04:56:c3:f0:6f:11:8b:5c:c7:4a:0a:ff:73:87:
20:ba:02:4b:df:0f:8a:61:74:87:73:98:8d:b0:3f:fb:a7:36:
5e:b3:0c:a4:0b:87:44:4e:c5:70:68:4a:07:cd:d2:06:2a:78:
a8:3e:96:83:9d:20:ce:44:df:1d:ba:de:ae:f6:56:b7:9b:f9:
97:98:35:7a:6e:f1:14:ad:b8:57:28:61:62:e7:54:2c:3b:a8:
1d:2f:11:dc:38:8d:89:52:fd:d1:52:9c:e6:4d:77:76:7f:b1:
20:eb:ee:d4:62:c6:ae:ce:35:3e:25:01:5b:c9:0e:40:93:e7:
d3:11:7b:aa:96:de:0f:9f:ba:ff:d1:a9:e4:d9:1b:24:bf:58:
fa:64:83:5c:49:66:1e:60:78:de:ff:e4:e0:11:57:b7:e5:41:
e8:0e:fc:5e:ca:86:d3:31:18:3c:0f:fb:8c:73:82:95:44:60:
9e:df:44:22:83:e6:ee:eb:34:4b:64:05:0e:eb:ab:5e:87:a5:
2f:66:b3:9c:5e:7d:4b:76:5d:e4:d4:a3:02:e0:fb:c3:2c:65:
85:41:94:4a:17:41:66:d7:a5:38:76:39:c8:2e:8c:6f:40:6d:
85:a9:8e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:28:18 2025 by rpki-client