Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
File: pOuetVR8f18ar8CtoUCAVBlhhyY.mft (raw, json)
Hash identifier: T5tPDhZHeAIFZV4mNQlAXOOniA8KZtJfXm2NK66RD+0=
Subject key identifier: A7:74:35:A6:9E:2A:8C:5A:AD:60:E3:33:8A:2B:75:B6:8A:C8:61:2C
Authority key identifier: A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
Certificate issuer: /CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Certificate serial: 0198D583AADF45E2AAB8682CB0C2C58BA162
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
Manifest number: 0A3A
Signing time: Sat 23 Aug 2025 06:00:32 +0000
Manifest this update: Sat 23 Aug 2025 06:00:32 +0000
Manifest next update: Sun 24 Aug 2025 06:00:32 +0000
Files and hashes: 1: J_w-klg8Fz7usxtg6f6kBplmW2Q.roa (hash: wSUiP/GQT3afkhYb4zAVk2weNrXx80BBBUvY2crSbB8=)
2: pOuetVR8f18ar8CtoUCAVBlhhyY.crl (hash: JacgEyVRR33gBT/Ill79MDIOPX8Jz9rku7Sk77g9eg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:aa:df:45:e2:aa:b8:68:2c:b0:c2:c5:8b:a1:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Validity
Not Before: Aug 23 06:00:32 2025 GMT
Not After : Aug 24 06:00:32 2025 GMT
Subject: CN=a77435a69e2a8c5aad60e3338a2b75b68ac8612c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:81:a5:dc:1b:97:48:31:aa:a9:fa:a3:5e:a4:
17:aa:a2:f9:bd:bd:f0:7e:85:f2:5b:89:53:80:c2:
d4:aa:d7:78:7a:b0:2b:1a:24:57:81:4f:d5:e6:33:
cd:cd:7c:9e:75:c3:15:e8:69:aa:d8:3f:31:08:0c:
d9:99:dc:61:69:cf:81:b5:d9:7e:04:9d:e0:be:5f:
66:59:a4:2b:2b:c4:9f:a5:12:0d:34:20:8b:0a:7d:
a4:e8:b5:f5:9f:fe:2f:9f:f4:bf:6d:97:9b:a0:bc:
ed:35:01:e8:8a:bf:01:d5:ca:25:2e:49:b9:ee:26:
95:51:66:c6:f7:d3:7b:b7:0e:3e:4e:e2:ef:fc:d0:
f3:87:44:56:b9:8f:33:e6:c7:05:e6:7b:5b:63:11:
66:78:f2:98:df:fe:30:95:72:65:46:55:af:b4:c5:
a7:08:6e:ac:e1:9c:b3:00:7e:0f:ff:f3:c0:35:45:
cc:77:0d:cc:e2:df:7c:0a:82:c6:2f:59:c2:19:87:
2d:84:37:ba:9d:f9:72:20:ca:87:44:0f:61:bf:7e:
42:5e:db:8b:e1:4d:a2:be:79:c6:f3:4e:36:82:de:
e1:34:36:45:2c:50:2d:7c:d8:75:66:06:20:d3:fe:
e7:33:a8:37:4e:e2:32:e1:56:f3:d3:81:90:f7:fa:
4a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:74:35:A6:9E:2A:8C:5A:AD:60:E3:33:8A:2B:75:B6:8A:C8:61:2C
X509v3 Authority Key Identifier:
keyid:A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:b6:21:e6:46:a0:25:b1:b1:d1:06:61:d8:aa:77:28:11:09:
75:c4:e7:5f:19:ec:1b:8b:9c:ce:49:07:48:ba:bd:90:02:44:
53:6a:51:00:46:43:76:50:0e:c0:17:4c:9e:af:f3:3c:f4:6a:
06:0a:3b:dd:2a:4a:c0:4d:45:f2:46:62:5b:6e:91:0b:93:e2:
91:49:cc:8a:79:21:e9:71:73:fb:a1:41:19:c1:f3:c3:79:70:
8b:fa:12:99:e0:54:72:46:60:fc:fa:d9:2f:f9:d4:d1:00:f6:
35:de:d9:be:f6:86:b1:20:de:12:fd:fb:f7:dc:1c:6c:3d:f5:
21:dd:d2:67:9a:a1:ec:eb:41:e5:d0:55:2e:5b:89:4f:7e:c7:
34:0c:06:92:ae:c7:b2:9b:79:7d:9f:60:6b:94:87:0d:d4:70:
c4:60:63:f3:19:e1:78:2b:a2:45:23:ff:53:23:d3:0a:38:97:
1e:b4:22:d3:ca:7e:39:33:4b:4d:cc:ef:e5:45:82:8b:a3:14:
31:f0:22:fc:c1:63:ff:44:37:f7:66:4e:dd:f2:92:fd:7f:2b:
a6:bb:0d:72:9e:27:a6:47:00:0b:cb:95:2e:b0:da:d6:cc:40:
25:38:f2:0e:fa:7f:33:db:f9:75:ef:01:a2:b6:af:63:f8:01:
77:20:26:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:23:20 2025 by rpki-client