Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
File: oiw84jcbnyHFfgw6V4fZWnNctQA.mft (raw, json)
Hash identifier: F1HA810q3n6QJn0loYj60+VIGdlm5bi9/p9MkMMdw04=
Subject key identifier: 49:DD:B9:56:04:ED:CC:86:1F:35:F9:EE:7D:9C:D5:A4:A1:EA:58:7A
Authority key identifier: A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
Certificate issuer: /CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Certificate serial: 01992330D8577BFEB07E2C93828916F33484
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
Manifest number: 106C
Signing time: Sun 07 Sep 2025 08:00:27 +0000
Manifest this update: Sun 07 Sep 2025 08:00:27 +0000
Manifest next update: Mon 08 Sep 2025 08:00:27 +0000
Files and hashes: 1: U4H4DXiB1R3t2sbazcIxIzp8LJM.roa (hash: d9YRAg9H/qZYSSHmjXFBkp2EkGuj36QH5Z/4fdmKOEA=)
2: oiw84jcbnyHFfgw6V4fZWnNctQA.crl (hash: BwC18+QdoNn9/1OxOq6/5x2ru9HDNMMIFViwrow64dY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:d8:57:7b:fe:b0:7e:2c:93:82:89:16:f3:34:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Validity
Not Before: Sep 7 08:00:27 2025 GMT
Not After : Sep 8 08:00:27 2025 GMT
Subject: CN=49ddb95604edcc861f35f9ee7d9cd5a4a1ea587a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:73:ed:e9:62:1f:03:59:48:f1:1d:ed:87:4e:
cb:aa:83:e9:a5:ef:ab:6f:a2:f9:af:b1:d9:a3:cd:
9a:48:0a:f6:64:1c:08:08:da:9d:e2:b8:cf:d5:fa:
46:ba:ad:e5:69:e2:e1:f9:20:91:e9:83:53:36:df:
7a:d9:63:62:54:22:7d:95:3c:ab:00:97:33:7d:70:
77:e3:2f:d0:bc:82:28:51:47:62:29:45:73:cd:77:
dd:db:e4:d8:8a:3d:55:c2:e6:54:e5:b3:66:ce:d9:
a0:d7:62:02:48:97:7d:76:dc:c4:05:f5:5e:a1:21:
6b:d9:56:18:eb:61:f2:ef:c0:0b:0b:f1:22:93:bc:
ce:55:89:ac:75:8b:5e:47:cb:6f:e7:27:82:95:cf:
c8:11:0a:26:c3:c0:7f:9b:21:2f:e5:93:41:39:0c:
78:a5:ca:dd:02:ce:37:32:95:bc:0f:0f:6e:f9:14:
fc:d2:3b:ad:3d:9a:59:80:42:ab:24:83:e8:82:f7:
2a:70:05:33:81:61:87:d5:19:0a:2f:97:ef:3c:02:
54:64:00:67:5a:98:4f:bd:d7:02:91:ab:00:61:01:
2b:39:cc:cb:72:6f:fc:3c:c3:cf:1a:0d:15:3b:32:
de:f9:2d:28:fa:dc:eb:e6:ec:28:f2:bd:f2:bd:d4:
ee:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DD:B9:56:04:ED:CC:86:1F:35:F9:EE:7D:9C:D5:A4:A1:EA:58:7A
X509v3 Authority Key Identifier:
keyid:A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:53:ad:a9:67:18:7a:b0:1d:0f:eb:7f:9f:8d:d1:60:88:93:
b7:22:47:d9:27:2f:a3:bd:0b:70:24:b9:39:41:62:c5:fa:6f:
06:a7:97:97:01:6d:31:36:cf:c6:2a:92:eb:3c:6e:80:01:9e:
d5:97:f2:53:18:0b:c1:93:08:5d:b3:2a:59:8d:01:70:a2:21:
9f:18:0b:4c:ab:ba:1c:0f:4e:fa:5f:ad:ec:28:11:2d:1b:55:
37:6b:b4:24:60:f4:86:5e:15:fe:50:3a:72:e1:6a:5a:4b:de:
27:5f:3e:31:30:10:1e:06:ae:08:1b:5e:56:08:87:cb:c9:c2:
f1:af:a5:c0:24:66:1f:5e:cc:1e:3b:55:bb:63:13:6c:e0:36:
53:42:b9:14:d3:ce:54:7e:09:40:34:2e:9f:5a:9a:8f:1c:6e:
7b:70:9a:cc:ea:ae:b6:fd:cf:2f:27:9e:bb:3e:41:6d:29:d5:
71:63:b4:76:0d:b9:87:54:74:40:b5:ea:78:76:e7:bf:00:a1:
7a:63:f6:4b:9d:7c:c4:5b:1e:6f:e3:67:8d:01:a1:ba:62:26:
af:4e:d8:07:96:bd:0a:7e:1c:10:7d:b8:9b:56:27:42:81:cb:
45:d5:97:12:c9:63:56:6c:48:23:d0:e9:05:31:6f:1a:f1:24:
d8:4f:8a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:49 2025 by rpki-client