Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
File: oheIwIqkN9EWXOy9aP2xlaFd-gg.mft (raw, json)
Hash identifier: y+GHV0iZ+MIef7Yg06EzylvZzM7IP1l4YCit87zlP+M=
Subject key identifier: 1D:B0:AC:58:21:7F:46:2B:74:6B:BE:92:BA:41:0C:FA:D1:61:EF:27
Authority key identifier: A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08
Certificate issuer: /CN=a21788c08aa437d1165cecbd68fdb195a15dfa08
Certificate serial: 019923A01C16F36240C76B528650E0A1EF1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
Manifest number: 1675
Signing time: Sun 07 Sep 2025 10:01:59 +0000
Manifest this update: Sun 07 Sep 2025 10:01:59 +0000
Manifest next update: Mon 08 Sep 2025 10:01:59 +0000
Files and hashes: 1: 3hcLMvc25IMPdhmKQEHCMZTqIjs.roa (hash: SEybTz+/cd8wiIccvdujur1jHcT09AAEthIXnDu/BtA=)
2: oheIwIqkN9EWXOy9aP2xlaFd-gg.crl (hash: SIyL4Ow1oqwG6vrPdSBUJpepus1ut6gkAlPY3ocwces=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:1c:16:f3:62:40:c7:6b:52:86:50:e0:a1:ef:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a21788c08aa437d1165cecbd68fdb195a15dfa08
Validity
Not Before: Sep 7 10:01:59 2025 GMT
Not After : Sep 8 10:01:59 2025 GMT
Subject: CN=1db0ac58217f462b746bbe92ba410cfad161ef27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:53:43:8f:42:e9:d7:b3:57:14:55:68:56:c1:
24:a3:eb:8a:67:3a:b3:6b:f2:d2:c7:62:16:0d:3a:
3a:a9:9c:a4:6d:ed:7f:cf:8b:24:ae:2d:07:dc:9c:
af:0a:f4:63:51:89:ca:be:6b:bb:07:0f:41:39:6b:
ae:a8:58:29:43:08:a0:2a:1f:ff:93:a7:5b:82:59:
7c:3f:a5:d6:15:c2:a3:2c:db:5d:d1:5f:9b:d4:54:
ed:7d:45:e3:83:4a:33:26:78:1b:8e:1b:3b:59:6d:
47:66:b1:d9:0e:2b:9d:15:1a:4c:57:9d:09:46:27:
1b:2b:03:b9:fe:28:bc:b5:17:81:32:9e:d5:7e:63:
d5:d7:55:7d:3c:e1:ad:0e:69:fd:bc:b8:76:d1:5c:
58:05:c4:cb:62:42:19:fe:4d:b2:16:76:de:00:77:
1f:6d:b2:a1:5e:c1:64:15:cc:1b:f5:7b:c0:f7:55:
cf:73:e0:83:43:f4:bc:b6:77:bb:91:94:07:13:aa:
76:a4:ee:03:d3:c5:e0:72:f9:47:c0:04:f2:84:d2:
5d:13:1d:c8:9e:a5:c5:09:d5:3e:ed:d2:d6:1f:c3:
e4:bc:17:11:79:71:bd:00:4f:7e:55:01:8d:d4:d5:
c2:22:5f:74:a8:a4:fc:8c:49:4f:bb:1d:80:59:47:
34:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B0:AC:58:21:7F:46:2B:74:6B:BE:92:BA:41:0C:FA:D1:61:EF:27
X509v3 Authority Key Identifier:
keyid:A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:4d:f8:08:a5:fe:b2:9b:de:dc:a4:fe:7c:9a:58:e7:54:f5:
3c:f4:3a:f4:ce:be:bb:d7:e9:c0:16:82:25:59:3e:f9:c0:13:
91:eb:09:45:92:a5:30:20:a0:08:cb:3c:e6:60:08:f5:b3:12:
98:51:a3:e7:03:8e:59:d6:c1:15:79:42:25:c2:7d:3c:87:f2:
56:61:27:c6:97:cc:ab:e8:96:ed:2e:14:97:05:01:7a:df:cb:
33:f2:92:0b:30:f4:38:38:e5:26:10:6b:91:0b:7c:c1:a5:af:
71:c2:6e:3d:55:db:1d:32:9a:1a:3d:44:17:85:f2:64:75:48:
3f:e2:b2:0d:f9:f6:04:eb:52:96:98:50:8a:c6:4e:2b:a1:d1:
99:f2:39:eb:6e:4d:70:8e:6d:99:6b:c7:6a:b1:ac:5c:59:a5:
37:ed:2c:c8:69:73:4f:21:19:14:23:28:2c:e3:55:98:53:12:
d0:30:e4:cd:da:91:de:42:fe:3e:31:2c:8e:10:1a:c4:cb:d8:
ff:71:60:64:d6:fa:b3:90:47:f3:4b:f5:5c:f0:e1:2e:18:71:
7d:2e:e2:7f:87:da:d1:6d:41:f2:cc:7d:af:db:44:d0:55:68:
9e:02:9b:eb:0a:0e:8d:aa:a4:33:76:66:d4:ae:0f:24:48:52:
c9:04:6d:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:18 2025 by rpki-client