Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
File: oWKOOfRxrdx15xo5G4Ldklx_CB0.mft (raw, json)
Hash identifier: G0ERGxrl6hCdBalfoLSmGfYA9EAXp8UD4eLEA5H+Ths=
Subject key identifier: C9:57:6A:B0:4B:FD:C7:61:0E:42:47:F9:5B:51:92:3C:7D:40:92:A8
Authority key identifier: A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
Certificate issuer: /CN=a1628e39f471addc75e71a391b82dd925c7f081d
Certificate serial: 0198D5BBD3A2B8BB62839490C3490DD01C79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
Manifest number: 121C
Signing time: Sat 23 Aug 2025 07:01:52 +0000
Manifest this update: Sat 23 Aug 2025 07:01:52 +0000
Manifest next update: Sun 24 Aug 2025 07:01:52 +0000
Files and hashes: 1: 1-rpUgw0W3sKSFdW3yshaE1HCCc0.roa (hash: c/Tt5N/pZWiN2mpptC/U9LHYusWW/dCE4lcNMT3U+WE=)
2: oWKOOfRxrdx15xo5G4Ldklx_CB0.crl (hash: qLGRDnkol+v0Fy5VAVgnImQ5JK5m7uvUTTigfyWlAtA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:d3:a2:b8:bb:62:83:94:90:c3:49:0d:d0:1c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1628e39f471addc75e71a391b82dd925c7f081d
Validity
Not Before: Aug 23 07:01:52 2025 GMT
Not After : Aug 24 07:01:52 2025 GMT
Subject: CN=c9576ab04bfdc7610e4247f95b51923c7d4092a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e0:11:a7:11:cc:f9:e2:01:2b:15:17:f8:1e:
0b:79:1b:ac:02:1a:24:e7:42:12:55:12:d5:56:bd:
e5:80:96:d5:68:fc:25:0f:cf:57:bc:db:85:d0:d3:
6f:54:2a:72:e8:ad:0f:83:7a:97:39:b9:46:ab:85:
e1:aa:09:70:75:16:d7:06:83:45:21:f5:e5:0b:fa:
9a:ea:a8:78:87:2f:64:8c:8b:f2:ec:2f:43:5c:b5:
55:66:3b:41:32:bf:d9:cc:e6:86:43:af:b7:d2:55:
17:6c:d8:5e:42:31:c4:1b:de:ce:14:43:15:79:75:
14:12:1c:8b:e9:71:ba:20:3e:35:ef:ac:3b:5a:5d:
57:9f:bf:f0:29:d9:1e:d7:37:04:b3:2c:ec:59:10:
07:92:54:d6:b2:4b:38:a0:0c:43:98:02:77:a4:1b:
6d:ea:2c:d6:36:19:b9:c0:21:63:16:d0:d8:91:94:
8a:3a:2a:dd:e9:27:be:28:71:3c:aa:76:f3:48:35:
ff:ea:c9:9f:a7:6e:e1:72:53:49:c6:fa:c1:91:0a:
0d:eb:33:02:38:5a:08:62:ca:04:44:24:cd:6c:1b:
5c:e3:a6:db:63:a5:62:fb:c8:77:39:e8:dc:43:16:
ab:b7:9b:f9:e2:ce:ec:32:27:1e:b6:ad:e5:bf:53:
97:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:57:6A:B0:4B:FD:C7:61:0E:42:47:F9:5B:51:92:3C:7D:40:92:A8
X509v3 Authority Key Identifier:
keyid:A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:13:9f:3b:e7:30:aa:98:00:24:bb:1b:30:bf:32:b2:33:0b:
27:dd:f8:ee:08:a6:17:46:97:bb:25:a7:fa:7d:1f:5d:e6:4a:
09:16:4b:24:1b:e2:72:cb:62:2f:73:45:22:57:fc:b9:0e:7f:
5b:45:36:a7:b8:7d:21:de:10:bd:32:d6:0f:b7:d4:73:e1:0a:
b2:6a:83:6c:11:f8:f1:55:c4:68:3f:c8:98:7b:46:88:d7:2f:
3d:74:e3:de:b2:00:97:7d:77:13:20:1d:c7:36:82:09:0d:33:
ba:67:dc:5e:d4:67:3c:d7:20:de:c8:96:fe:4b:8c:29:27:95:
eb:98:97:b2:e5:44:d2:6a:c7:b8:2f:5e:7c:0d:b6:4b:8d:a7:
39:6f:b6:a7:37:eb:88:97:f1:1c:03:bc:56:7b:89:b4:54:bc:
88:9a:a4:cd:ca:51:6d:40:9c:93:67:56:13:c7:dd:6c:56:69:
bc:ea:c6:32:33:35:ee:d4:70:bd:9f:90:b2:be:f2:fe:a0:e1:
a6:d2:03:cf:b3:f3:70:ce:b7:e0:dd:5f:f3:f5:f1:5e:ee:08:
e0:ad:b9:64:60:46:20:cc:58:62:b2:6a:72:a0:4d:d5:ed:2e:
4f:d9:cc:77:fb:fb:90:54:7f:02:5d:de:71:40:60:1f:db:c1:
5b:f2:db:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:10 2025 by rpki-client