Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: G6HMVUm8qWoJDa6ipF77xhy/m9B7AEuRoqOQiS2Yhno=
Subject key identifier: 57:10:96:92:6D:69:B0:CD:E7:4E:96:E4:91:23:FA:28:AD:4A:1E:70
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 01995DC5594F0CB88D4F1120CAF4A8651D80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 05EB
Signing time: Thu 18 Sep 2025 17:00:38 +0000
Manifest this update: Thu 18 Sep 2025 17:00:38 +0000
Manifest next update: Fri 19 Sep 2025 17:00:38 +0000
Files and hashes: 1: FfIlEvStYRtAHT_4tgisj2sboIA.roa (hash: u8VtTRQomqZri4fvKgtiux4C4c/ZHFagnd78Z59URa8=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: 7OM2QXEihE9/saJQrJQLsRoyZzJIg6GkbHI4eRGGWN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Sep 2025 13:49:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5d:c5:59:4f:0c:b8:8d:4f:11:20:ca:f4:a8:65:1d:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Sep 18 17:00:38 2025 GMT
Not After : Sep 19 17:00:38 2025 GMT
Subject: CN=571096926d69b0cde74e96e49123fa28ad4a1e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cd:d0:72:74:2c:22:4c:19:68:8e:7e:45:14:
18:c4:93:58:3a:06:e8:3e:c2:43:19:3e:10:76:e1:
f9:f9:77:48:32:13:24:5f:6a:c4:da:0a:8c:fe:e8:
a6:9b:3c:40:cc:74:c9:39:d5:80:21:34:4d:a6:a2:
85:42:a9:b6:4a:66:49:6b:2f:ac:b1:60:06:52:ca:
e1:44:fd:23:f6:f2:31:9e:6c:23:07:7c:05:83:c6:
78:7b:86:09:bf:56:3f:4f:06:e4:bb:02:ad:2d:d1:
db:0c:42:fe:a9:81:9f:7b:32:7a:71:dd:f2:81:d0:
f8:b2:04:e8:be:dc:3f:3c:15:5e:86:fc:9b:84:4d:
07:f2:80:c9:90:3a:f7:c1:59:e7:0f:67:5d:1a:68:
51:ae:2e:af:70:87:6e:12:45:d2:14:cd:dc:45:0b:
3c:67:5b:39:40:8f:19:a2:62:49:85:05:51:28:47:
f2:16:94:83:09:47:00:dc:82:2f:bb:02:20:1f:09:
b0:3e:72:a9:16:3f:d1:08:d7:af:60:a1:58:c2:b8:
b1:7d:23:cf:4c:48:0d:47:5d:38:ac:cb:b6:60:6b:
e2:3c:64:0d:fd:25:a2:ad:36:6c:8a:04:a3:e4:ee:
1e:3a:1e:c0:99:bc:46:93:79:bc:3b:04:52:48:cd:
f2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:10:96:92:6D:69:B0:CD:E7:4E:96:E4:91:23:FA:28:AD:4A:1E:70
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:e0:f1:50:2a:00:c1:bd:91:f6:5f:4a:c3:13:c0:9f:a6:f5:
05:2f:9f:20:37:8e:d2:6e:5d:83:68:00:d9:93:1d:fa:d9:1e:
dc:fe:aa:ea:80:3f:0a:87:1c:91:e4:b4:8b:27:06:c5:3e:2f:
22:c5:8f:61:09:43:44:12:42:97:b7:18:db:10:1e:13:59:3d:
4b:13:76:e8:71:06:8c:df:1c:be:54:9e:49:0d:91:5e:5c:ab:
d3:60:9a:33:0f:a6:97:a0:e4:55:46:f3:5f:22:a3:bc:97:1d:
e1:ef:f6:78:39:dc:46:9a:29:aa:2e:57:7b:29:13:67:d8:28:
f5:e9:50:cd:bb:3d:e6:2d:e0:bc:ff:23:57:f5:77:6c:fb:87:
3b:ac:9e:33:7c:16:dc:81:49:65:73:89:04:0d:e3:32:2c:ec:
3f:bb:3b:6f:d7:5a:05:e6:76:9e:b7:50:23:b4:5e:84:09:32:
69:8f:35:a0:41:11:8e:1a:dd:29:b0:e6:d3:e5:48:3f:2d:a0:
e3:23:7f:64:dd:8f:0e:03:94:a2:bc:d1:53:69:44:fb:a6:1c:
00:c4:27:61:6b:9f:db:07:62:65:dd:b2:44:98:b0:cb:1e:6f:
c7:92:a3:22:26:88:26:26:ff:95:ac:97:17:06:a7:95:c5:81:
f4:7e:a3:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 22:22:07 2025 by rpki-client