Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
File: oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft (raw, json)
Hash identifier: hfcJyVBGP+o1cb9aHidJ9uv3UKXBpQc6pDzWVRHUIm0=
Subject key identifier: 43:90:40:CE:FE:35:FF:EF:CE:BD:63:BE:E2:1A:E9:F6:28:65:D3:16
Authority key identifier: A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
Certificate issuer: /CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Certificate serial: 0199228C63A94C48807BA9C2FDB7FA90DE6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
Manifest number: 04B6
Signing time: Sun 07 Sep 2025 05:00:49 +0000
Manifest this update: Sun 07 Sep 2025 05:00:49 +0000
Manifest next update: Mon 08 Sep 2025 05:00:49 +0000
Files and hashes: 1: WacUruZTE83WEEePnyB3KKF0YFU.roa (hash: IGW0uLOK6yIPDXD8+jDEju++6EJZMklynz//i9x70Jo=)
2: oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl (hash: 9qNJs687f9P7mksh3dv0HfOjDo/ArcI96YyCe1t28j0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:63:a9:4c:48:80:7b:a9:c2:fd:b7:fa:90:de:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Validity
Not Before: Sep 7 05:00:49 2025 GMT
Not After : Sep 8 05:00:49 2025 GMT
Subject: CN=439040cefe35ffefcebd63bee21ae9f62865d316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b9:6f:b3:55:5f:74:c8:38:c3:5f:30:64:5b:
dd:9a:c0:9f:5d:2b:29:84:a5:f3:ec:10:5b:2f:cd:
17:46:cb:d0:52:30:88:78:44:23:8e:72:2e:58:dc:
07:8b:f3:19:24:a9:8f:0b:56:08:4b:cd:67:c6:53:
74:08:21:a0:85:15:4a:08:3f:45:5c:aa:60:6e:61:
cc:92:6d:a4:59:66:d3:97:95:4e:05:df:0c:27:c5:
3e:23:bb:c9:96:60:1d:40:7a:2e:f0:ea:a3:1d:7e:
07:3d:77:44:e1:ef:cd:9b:a3:a1:5d:9b:01:c8:18:
89:29:c0:d9:6d:94:c7:64:45:62:2f:1c:be:82:89:
a6:82:8b:b5:98:35:ae:64:b0:0e:d8:0a:6f:81:3e:
75:77:7c:8c:af:92:29:d6:3d:c1:c3:70:00:15:8c:
c0:34:ee:93:61:f1:96:a5:bb:29:0e:52:4e:87:85:
c1:d5:d0:63:d3:8f:6d:93:af:16:58:e0:e5:7d:a3:
cf:b4:c9:ba:9a:3c:20:23:b0:6a:cb:65:6c:5e:08:
ae:3e:d7:49:b2:f8:14:f2:51:74:14:76:06:5f:cc:
96:e9:22:f8:69:99:b4:9e:3c:e2:83:d1:bc:ef:2b:
98:51:16:82:76:1d:38:40:b2:52:d9:ea:c7:73:87:
b1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:90:40:CE:FE:35:FF:EF:CE:BD:63:BE:E2:1A:E9:F6:28:65:D3:16
X509v3 Authority Key Identifier:
keyid:A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:1a:a5:3a:a1:09:5b:53:3d:3e:8f:0d:45:df:ee:77:bb:4b:
c7:6c:ee:de:6c:f5:33:04:b2:45:13:97:cf:51:e6:29:8f:86:
b0:fe:24:98:44:56:05:40:0f:82:8b:81:f3:f4:6e:e5:e1:b7:
e2:71:9c:7d:75:94:ef:ff:9a:0a:b5:dc:0e:7f:d7:35:76:17:
8b:b5:08:7c:2c:03:2c:78:6a:c9:26:5b:16:2a:56:46:9b:ed:
4b:c2:88:bd:61:c0:21:5b:fa:1e:d7:64:17:00:52:96:00:e9:
de:79:80:b6:b2:43:0a:21:41:a5:d3:67:70:0c:97:5a:ae:d6:
2d:4b:e8:6f:13:48:a8:a4:53:a2:60:1a:54:4f:1e:5a:48:93:
6f:07:99:fd:f7:e1:c5:d1:02:10:64:d1:2c:fb:af:be:2f:5d:
bf:56:28:af:c6:02:d4:50:88:ed:a7:08:6f:55:a1:2d:f3:54:
30:2d:81:4e:e4:7e:85:fa:e1:9c:3a:13:70:21:d6:ef:ff:6c:
01:64:23:8f:d6:67:64:3f:6c:f8:02:e8:8e:c4:4d:76:9c:3a:
68:e5:58:1e:e8:60:e0:6f:d0:e6:92:f9:91:fe:3c:99:8d:2e:
15:bf:a9:a7:0f:46:81:a3:5d:56:ee:c7:c5:d4:a6:b9:7d:99:
c2:48:cb:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:28:32 2025 by rpki-client