Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
File: o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft (raw, json)
Hash identifier: +caebVC3kcGU9Fk9HFoqM1OwL25f6+gBoFTYYYq40fU=
Subject key identifier: B7:4C:34:87:9D:F7:69:CF:52:7A:E6:0A:D8:98:4A:75:EC:72:59:CE
Authority key identifier: A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
Certificate issuer: /CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Certificate serial: 01992C34DA31F3A92CD1F28FD142C8BDFABA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
Manifest number: 0BAB
Signing time: Tue 09 Sep 2025 02:01:25 +0000
Manifest this update: Tue 09 Sep 2025 02:01:25 +0000
Manifest next update: Wed 10 Sep 2025 02:01:25 +0000
Files and hashes: 1: c6Nj79I3Har3nGytaNZUrH4rLp8.roa (hash: pFirwTzGIzOGXK1Oft6HDqGlSVO899FoeQfzjWxGxFc=)
2: o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl (hash: 4/MnnmAGFAGp8/KS4Y+jdARDIbnBRQmAPWX9OEG4Ba0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 02:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:34:da:31:f3:a9:2c:d1:f2:8f:d1:42:c8:bd:fa:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3a82ee9aa1106ed720d63c3844e666440e34438
Validity
Not Before: Sep 9 02:01:25 2025 GMT
Not After : Sep 10 02:01:25 2025 GMT
Subject: CN=b74c34879df769cf527ae60ad8984a75ec7259ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e4:99:52:f1:fb:75:fd:1a:77:64:18:16:3d:
fc:3b:eb:a6:ea:ba:71:46:9b:e7:d2:c1:82:4e:8e:
7c:c1:1a:d2:19:6e:f5:d9:bd:dc:77:d7:8e:3e:cc:
2e:98:54:fe:62:5f:82:3d:7c:f0:64:fd:74:41:8c:
4c:40:c3:71:48:37:46:7a:ad:8f:5a:bd:44:4b:e3:
84:98:ab:5d:fd:0a:9a:cd:80:a6:0c:9d:4d:3d:59:
ee:26:d3:33:b0:a4:43:1f:e6:f7:6f:58:5b:32:14:
0b:c0:b8:1d:73:5f:a0:13:56:57:c8:9b:32:80:f9:
9c:48:80:48:02:4a:41:07:5a:20:b1:df:f5:c8:fe:
9b:19:17:d2:b8:5a:15:1a:30:a2:05:7a:bf:91:ee:
70:db:e8:67:1b:c0:0b:69:78:19:67:0b:4e:e5:ca:
df:85:7a:02:86:61:ff:71:99:33:a6:53:00:e8:6d:
7e:47:0d:fb:0a:e9:25:92:7f:04:d1:a0:28:9c:1b:
eb:66:13:1f:ae:57:66:e2:01:40:23:d9:26:79:88:
77:59:4a:26:e5:18:e4:38:eb:9c:3c:e8:a0:b3:8a:
ad:29:5e:02:d1:e6:36:a4:20:f5:0e:33:85:92:82:
2d:4b:5f:e0:df:be:58:e0:ff:fe:0f:87:75:76:20:
91:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:4C:34:87:9D:F7:69:CF:52:7A:E6:0A:D8:98:4A:75:EC:72:59:CE
X509v3 Authority Key Identifier:
keyid:A3:A8:2E:E9:AA:11:06:ED:72:0D:63:C3:84:4E:66:64:40:E3:44:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o6gu6aoRBu1yDWPDhE5mZEDjRDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/c720b4-1acb-4703-bc24-467e009daed0/1/o6gu6aoRBu1yDWPDhE5mZEDjRDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:b8:6f:c7:26:01:cb:d9:6a:26:e1:45:fe:cf:8f:00:7a:ed:
f8:77:c7:47:e2:1f:b6:15:7c:a9:66:76:5a:81:02:40:05:2f:
26:c0:f7:33:24:c2:11:ff:11:20:9f:7c:15:b4:ee:32:32:37:
34:ff:ad:f9:6d:21:7b:c9:a8:11:34:2b:95:52:45:63:8c:74:
7e:02:c8:00:f0:20:02:f1:28:d8:fc:ef:e6:92:ba:35:32:94:
ca:95:5b:f9:29:26:ab:82:7a:2c:61:01:65:b1:bf:b6:73:f9:
09:04:95:81:23:99:a7:d1:b0:6a:68:57:7c:4c:00:72:bd:5b:
fd:14:86:cf:d1:f8:ae:5e:23:af:02:a2:6b:7e:bb:70:52:f2:
90:83:63:6f:9c:dc:f0:24:ea:da:e2:82:41:80:a6:c3:03:b1:
48:0b:67:66:0b:dd:39:46:a6:cc:71:ff:df:c4:4c:2e:63:bb:
73:48:f7:9c:c5:9c:3e:6a:be:57:fe:ee:07:6e:be:81:59:95:
f7:69:2c:f0:18:73:f7:0c:bd:7a:f4:0a:78:52:b9:39:71:5c:
32:41:e4:a1:a9:bf:6b:3e:1a:c2:98:db:8a:41:de:33:ca:01:
74:31:0a:c6:7b:88:3e:92:28:e8:b6:0b:c0:5d:15:7d:f2:50:
e6:31:f1:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 09:27:05 2025 by rpki-client