Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
File: ao33d2sW0oLgTGluJYqk-fnOnJg.mft (raw, json)
Hash identifier: M1yEKGEs0kAP5jg9ULtdBaQRQse7uU54OWnukwoOidw=
Subject key identifier: BB:81:2D:0B:0B:F2:BA:9D:D5:09:40:58:8C:F1:8F:02:DF:D0:82:5B
Authority key identifier: 6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
Certificate issuer: /CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Certificate serial: 0199172CEBE3163B20D35315FE3E55A792C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
Manifest number: 0A5C
Signing time: Fri 05 Sep 2025 00:00:43 +0000
Manifest this update: Fri 05 Sep 2025 00:00:43 +0000
Manifest next update: Sat 06 Sep 2025 00:00:43 +0000
Files and hashes: 1: ao33d2sW0oLgTGluJYqk-fnOnJg.crl (hash: O4B+upqVCn7h2kVKgaQ8z5Md/UjWuC9sPXQ6sUmibbY=)
2: zkFI0q7jFUcpvcC1_CEihR1YV24.roa (hash: 783T5wgYEpPQMcRoCX4E0P3B8Y6FUugL0p43iJWmXrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 00:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:2c:eb:e3:16:3b:20:d3:53:15:fe:3e:55:a7:92:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a8df7776b16d282e04c696e258aa4f9f9ce9c98
Validity
Not Before: Sep 5 00:00:43 2025 GMT
Not After : Sep 6 00:00:43 2025 GMT
Subject: CN=bb812d0b0bf2ba9dd50940588cf18f02dfd0825b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:80:7b:12:3f:fd:d3:7e:eb:b2:66:07:45:5d:
9e:8a:28:f5:aa:dd:9a:7a:ec:29:b4:9f:e1:ab:8b:
4b:90:c6:7a:ce:c5:fb:3b:81:a3:cc:49:6d:72:b6:
7f:37:cc:e9:10:b8:ac:de:7d:4b:d6:9e:dc:b7:fd:
44:af:ee:80:26:70:3d:84:6d:55:10:3a:f7:ba:a0:
90:fd:0c:36:47:8e:a1:a8:7e:59:2c:b4:d9:af:1e:
19:c0:fc:e5:dc:ce:a5:4b:a2:dd:f5:43:88:c7:b1:
6d:de:4d:04:2a:05:92:c2:a1:4e:8f:cc:93:12:62:
05:0d:a1:1f:59:df:1f:a0:a3:7f:6a:4e:77:0c:65:
a2:4b:9e:74:0a:4c:52:99:48:08:01:76:a4:28:bf:
78:a0:09:07:49:37:cf:3d:2d:80:fb:12:b4:54:b8:
68:42:dc:f4:20:6c:10:73:e4:1e:dd:ed:74:4a:09:
50:00:42:d3:2b:3e:3a:ab:18:08:09:eb:80:d3:ec:
c6:0c:18:f3:42:1d:11:d3:30:79:d8:e5:f2:cf:36:
12:f8:01:ba:58:22:c9:31:47:3e:73:72:94:85:57:
e4:e4:ee:17:44:07:c0:f2:8a:a4:bc:da:d2:a5:30:
59:4f:f2:5c:fb:8a:e7:61:25:59:a7:b1:7f:67:66:
72:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:81:2D:0B:0B:F2:BA:9D:D5:09:40:58:8C:F1:8F:02:DF:D0:82:5B
X509v3 Authority Key Identifier:
keyid:6A:8D:F7:77:6B:16:D2:82:E0:4C:69:6E:25:8A:A4:F9:F9:CE:9C:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ao33d2sW0oLgTGluJYqk-fnOnJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d301cd-f513-4995-9d55-1b38b02245c1/1/ao33d2sW0oLgTGluJYqk-fnOnJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:cd:ec:9b:bf:6b:b1:48:40:85:90:f6:e5:a3:93:d1:5c:61:
f4:e7:14:92:aa:98:e0:62:16:cd:df:86:97:06:8a:58:0b:47:
24:a2:ae:86:de:3a:96:42:be:82:b9:c9:5a:2c:04:d6:c0:50:
30:bb:4e:82:5d:2b:dc:c9:1d:66:f6:22:f5:d1:9a:83:59:13:
c5:bf:dc:33:f3:f7:f2:1f:29:30:14:1e:a7:16:8e:d0:73:4e:
22:f9:0c:f0:ff:5c:14:09:11:1b:76:87:f3:1e:37:7b:c1:e2:
6e:ae:b1:9b:f0:f1:3f:3d:bb:5b:6e:00:dc:4e:03:cb:8d:b7:
b0:aa:0d:16:c7:4f:bd:07:a1:a5:98:e9:23:3c:12:51:60:f2:
e7:c9:ee:ea:87:a5:7e:30:80:fb:8b:fc:6a:d5:1a:87:79:bf:
4d:e6:06:35:17:83:32:8d:a5:06:f3:3a:78:be:d9:e5:ed:7d:
06:73:37:5b:d7:93:24:db:fb:61:bc:d8:a4:94:9c:35:58:42:
99:f3:c1:1d:a1:e0:34:2f:31:f9:59:4b:44:6c:a1:59:67:76:
0d:e8:d2:22:3e:4e:a2:4b:33:d3:28:fa:32:69:b5:3d:90:52:
b9:15:58:84:a7:67:6a:8a:74:fb:61:f6:32:a1:24:a9:ff:65:
2e:06:b5:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:04:31 2025 by rpki-client