Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: eMniydtSjBkmBbQ0Lc0/Y7JLKNx5gmV8eRD7sQ5Rc+U=
Subject key identifier: BC:9C:D4:A3:72:2E:79:D3:EE:39:04:35:74:1E:75:1E:78:29:0F:6C
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 019846D1EA74AB57173A6A871BB3EA036128
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 15FD
Signing time: Sat 26 Jul 2025 13:00:18 +0000
Manifest this update: Sat 26 Jul 2025 13:00:18 +0000
Manifest next update: Sun 27 Jul 2025 13:00:18 +0000
Files and hashes: 1: RW4un6mRBfPzHloV5RnOReMxV4M.roa (hash: 6KtCB53EZaTt4rkvk3WW5xLU60zG4n/pYxl9BtxsfPs=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: KAuufROBXAw+yXU5Lbrpyh4nfoAV0ZaHf8t/muWGQ60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:46:d1:ea:74:ab:57:17:3a:6a:87:1b:b3:ea:03:61:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Jul 26 13:00:18 2025 GMT
Not After : Jul 27 13:00:18 2025 GMT
Subject: CN=bc9cd4a3722e79d3ee390435741e751e78290f6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:92:58:14:2b:fb:20:b2:95:00:75:d2:ee:d8:
2a:1a:05:99:0a:bc:77:ec:fd:b0:04:63:46:bf:42:
5e:a3:36:4e:cd:94:28:ff:3a:ac:33:bb:63:98:a4:
1f:48:7a:f5:e6:54:6f:c3:5b:b3:23:f8:32:15:74:
f1:ff:42:f5:57:9b:0f:e1:b4:7d:f7:e5:1c:ec:d7:
eb:1e:5f:66:1e:6f:0a:1f:a1:05:f6:f0:38:85:1e:
a2:3b:a8:e6:ce:5d:5e:df:81:a8:0e:8b:95:4a:67:
2c:2d:22:c5:fc:3b:e8:e4:e8:3c:ac:bb:9e:23:94:
c7:9d:7f:10:72:2b:c8:34:70:38:a0:63:9a:d5:19:
09:68:a0:ef:01:ea:21:d3:5b:f4:19:4e:94:ff:87:
b4:ff:9b:c8:ad:a4:da:b7:ec:03:96:37:45:26:d7:
50:41:4f:6a:2e:85:cc:4c:3c:5e:ca:1f:31:3d:b0:
d5:eb:74:d9:fd:19:ce:e8:df:c1:0b:24:a8:4d:d7:
c1:de:42:18:a1:86:f6:aa:b8:ff:f1:b4:c0:9a:e2:
15:27:20:93:74:94:af:d2:0d:75:01:77:f3:53:68:
12:9d:c9:81:99:b0:fa:bd:03:ee:c3:5a:f7:bc:08:
6c:b9:de:19:c6:92:6c:c8:e2:8f:72:51:0a:82:fd:
5c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:9C:D4:A3:72:2E:79:D3:EE:39:04:35:74:1E:75:1E:78:29:0F:6C
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:ae:b2:6c:2f:21:00:12:62:06:c3:4f:d7:f8:0d:fa:ce:bb:
2b:a2:7b:a2:a7:0c:d7:36:e1:28:90:48:1f:b4:f4:18:07:39:
d7:df:60:7b:4d:fa:f4:08:f4:cc:29:ff:d6:5f:91:06:38:9b:
32:c6:ba:11:6c:2a:05:fa:20:5a:90:2b:ad:a8:2f:22:aa:ea:
67:45:af:b0:f3:27:33:ce:d2:e1:2e:35:e9:2e:3f:68:e3:05:
0c:3a:cd:13:f9:30:57:ab:0f:0d:d9:fe:2b:d2:c3:89:5e:4e:
f1:be:d1:d1:19:7e:4e:ac:2b:90:9f:cd:97:70:8b:20:c3:c2:
a7:ef:09:44:10:f5:bd:34:41:19:ee:24:e6:02:bb:ff:fa:f6:
8d:b7:34:e5:83:92:ce:a4:03:36:4f:0e:5d:0f:93:6b:fc:28:
ce:91:42:75:9a:28:13:3c:1f:18:62:6b:bf:dc:de:f1:e5:2e:
4e:c3:f3:79:77:28:f8:5b:fb:cd:70:d5:2b:a6:97:2e:3e:f8:
16:de:35:60:e5:ce:fc:0b:b7:39:5c:4f:4c:b5:5e:bf:11:d1:
15:ee:67:4a:25:b1:32:3b:f2:91:84:18:61:ce:5b:0c:88:f6:
a5:97:95:86:fc:8d:1f:d8:61:e3:50:75:83:62:b8:5a:5a:47:
6a:61:46:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 21:15:38 2025 by rpki-client