Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
File: oQIHcvYouPtR80dRNrd_60smmL4.mft (raw, json)
Hash identifier: zA/qD3AATICTQL9MGolRZVeHGbLRULSPgy2xpoN0XB8=
Subject key identifier: F7:C4:BC:13:1F:B1:87:68:D8:C7:4F:DD:0C:EC:97:58:BD:8E:5B:EF
Authority key identifier: A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
Certificate issuer: /CN=a1020772f628b8fb51f3475136b77feb4b2698be
Certificate serial: 01992331249F4B7CFC6FF54B7693D06303B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
Manifest number: 12BA
Signing time: Sun 07 Sep 2025 08:00:47 +0000
Manifest this update: Sun 07 Sep 2025 08:00:47 +0000
Manifest next update: Mon 08 Sep 2025 08:00:47 +0000
Files and hashes: 1: Xn7HlAmazqZObEY4Svfv4ZbMChM.roa (hash: 900LVbegyuqsxm1Su/VFGub5Wi1DlW68cWbr8g1USwo=)
2: oQIHcvYouPtR80dRNrd_60smmL4.crl (hash: iRZJrdzkS59GSCOKHcgyIYTdGr4AmvMuUiBUijNx1FU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:24:9f:4b:7c:fc:6f:f5:4b:76:93:d0:63:03:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1020772f628b8fb51f3475136b77feb4b2698be
Validity
Not Before: Sep 7 08:00:47 2025 GMT
Not After : Sep 8 08:00:47 2025 GMT
Subject: CN=f7c4bc131fb18768d8c74fdd0cec9758bd8e5bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7a:eb:e5:d5:24:49:36:d8:ba:93:15:88:f7:
a8:2a:09:ba:88:99:1d:f6:bf:9e:b1:02:5c:9f:1b:
9e:25:9c:2f:c7:4f:4e:ae:d8:5e:6d:da:a2:f0:c0:
e5:30:33:50:96:58:ef:0a:4b:a2:e2:01:40:0a:08:
f5:a6:97:ff:28:5a:bd:61:0a:8e:1f:bb:68:42:b1:
67:5c:ec:61:45:c2:38:a3:50:59:38:b9:33:d3:dd:
01:36:77:ac:9f:9a:81:02:ea:7c:83:40:0a:46:e2:
9c:44:97:d9:ed:84:09:a3:d8:78:35:bd:71:06:80:
93:ee:75:d0:18:41:24:f6:e1:c2:0a:bd:50:90:6e:
de:25:77:e3:b0:6a:50:e0:4d:eb:08:69:21:6a:08:
1f:79:3d:e5:c0:a2:0c:c9:67:d3:0c:54:22:ce:be:
65:06:cd:ae:80:f2:87:ec:f7:2a:14:52:3b:4c:27:
e6:dc:c8:1a:3d:73:a7:e8:5a:e2:a1:a7:30:8c:ee:
05:42:55:85:73:f5:3a:d6:11:db:3f:22:9b:76:d5:
6a:0d:97:d7:03:48:04:3a:1d:80:bf:e5:80:48:7f:
2f:11:6f:67:26:e4:9c:ac:50:52:06:14:90:54:8b:
3f:8c:22:ed:72:53:88:b9:74:cf:34:8d:b8:b3:04:
cb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:C4:BC:13:1F:B1:87:68:D8:C7:4F:DD:0C:EC:97:58:BD:8E:5B:EF
X509v3 Authority Key Identifier:
keyid:A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:32:9c:e7:c9:2a:b8:4e:0d:39:8b:a2:d1:1c:53:70:10:f3:
25:b3:3a:9f:1b:b8:0c:57:58:ea:33:f3:23:66:69:0c:35:39:
80:b2:2d:6e:7a:47:80:0d:4d:77:5b:13:91:df:f9:53:3d:f9:
2e:fb:e7:e7:52:dd:75:34:b6:56:17:06:68:fc:e4:cb:0f:2b:
69:ef:9b:c4:83:fa:cc:fe:de:c0:ec:06:c8:39:44:9e:55:ca:
e2:c3:21:aa:66:b9:3a:b8:60:24:1b:c1:4d:ed:3b:fb:a3:77:
7d:33:0c:f3:93:83:5e:46:07:9a:22:79:0a:ee:57:da:0c:d3:
c8:51:60:49:1d:56:69:90:0a:d0:a8:9e:a6:21:dd:03:76:15:
54:9d:39:52:5f:5b:ba:8b:2c:69:2b:77:2a:a2:8e:f8:e3:7f:
71:07:19:b1:4f:58:fe:3c:21:74:c3:bb:db:a4:46:34:d5:82:
ee:2c:42:b5:79:c7:82:50:42:e1:97:39:89:43:4d:91:92:7a:
03:72:15:35:09:ae:9e:fd:06:36:4d:6a:64:dc:22:2e:fe:ec:
53:9b:75:22:f2:96:78:fb:38:07:00:bf:cd:a5:1b:d1:42:6f:
b2:75:ac:39:c4:92:a3:86:f2:a0:4c:df:f9:56:dc:18:76:3c:
f5:ca:84:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:43:33 2025 by rpki-client