Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
File: oHEAJhaNhq-46ZnPsqjonFct0vk.mft (raw, json)
Hash identifier: AYbTON0VK6k8CcGrLwsPEPZEdwv3bM+VBnk4uZ9rWII=
Subject key identifier: 10:29:87:F2:E2:FC:1E:DC:91:D4:5C:E5:A4:01:BC:0A:48:F8:7A:E4
Authority key identifier: A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9
Certificate issuer: /CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9
Certificate serial: 0199221ECA9F5365A1E85361DB4BE4AEFF17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
Manifest number: 13BC
Signing time: Sun 07 Sep 2025 03:01:07 +0000
Manifest this update: Sun 07 Sep 2025 03:01:07 +0000
Manifest next update: Mon 08 Sep 2025 03:01:07 +0000
Files and hashes: 1: oHEAJhaNhq-46ZnPsqjonFct0vk.crl (hash: yig5kAdUY5AySVouHWnieDZPU5RsXIModz84sXvDe5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:ca:9f:53:65:a1:e8:53:61:db:4b:e4:ae:ff:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0710026168d86afb8e999cfb2a8e89c572dd2f9
Validity
Not Before: Sep 7 03:01:07 2025 GMT
Not After : Sep 8 03:01:07 2025 GMT
Subject: CN=102987f2e2fc1edc91d45ce5a401bc0a48f87ae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6f:c8:8a:30:de:cd:e0:87:bd:f8:0a:30:fc:
89:f0:3b:16:0d:af:5f:d9:c8:04:02:b9:0c:a2:e5:
10:bc:cd:35:c5:26:6f:59:d1:d1:6d:34:e9:b9:ab:
1a:c2:de:0b:97:a4:69:d5:d3:a4:e1:ba:ac:d4:7c:
f5:3d:45:a0:7f:38:b6:53:64:a8:52:4e:9b:52:14:
35:6d:08:c3:5c:a8:6d:6d:f0:6d:0b:af:4b:c6:49:
81:47:17:ff:fd:6c:f7:c4:cb:9c:7d:b3:02:b9:d8:
5c:8b:cd:a6:a7:6e:62:94:5d:9a:f6:36:30:ba:55:
b2:8c:f5:3f:6c:b0:6f:da:f8:1d:fc:29:7b:cb:c6:
f1:5f:61:e2:8b:c7:ea:d4:d6:60:a6:18:36:71:aa:
a2:30:7d:c6:42:0c:62:21:d9:99:bd:c7:bd:60:22:
9c:4a:ed:84:cc:a8:9f:30:14:4e:93:15:03:a6:58:
fd:80:c2:0a:41:f6:48:4c:4c:bc:e0:d3:fb:4d:64:
20:6d:ee:91:5d:be:34:48:2a:4b:62:fc:23:6e:26:
a8:09:f2:ba:4f:ef:df:a7:97:25:7b:49:4a:3d:2f:
83:de:9e:00:01:c6:cf:d3:f4:80:4d:40:b3:d5:b2:
e7:24:2b:bf:0c:cb:8a:3b:aa:77:ee:8c:5a:e4:34:
e8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:29:87:F2:E2:FC:1E:DC:91:D4:5C:E5:A4:01:BC:0A:48:F8:7A:E4
X509v3 Authority Key Identifier:
keyid:A0:71:00:26:16:8D:86:AF:B8:E9:99:CF:B2:A8:E8:9C:57:2D:D2:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oHEAJhaNhq-46ZnPsqjonFct0vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/577212-08b0-43ed-89c6-a9a6bf65e63a/1/oHEAJhaNhq-46ZnPsqjonFct0vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:4f:19:a8:09:dc:40:14:5b:8d:02:cb:aa:10:5f:fa:f2:68:
bf:cd:be:a8:3f:a7:cb:bf:c4:5f:25:57:fe:e6:c4:73:e3:47:
2b:a0:d6:3b:13:8d:cf:20:1c:d1:93:d7:57:89:71:bb:4e:f0:
21:f2:eb:bb:5d:e8:5a:fb:9d:ad:9e:74:48:7d:7c:e6:4e:e2:
da:7e:0e:03:84:89:54:3a:e2:8f:b5:f0:b7:bf:e9:da:cc:49:
8c:97:6c:d2:c2:ae:d4:f4:5b:94:ef:a9:fe:c0:f1:2c:a4:15:
a5:95:de:b0:2c:34:ca:ad:aa:7e:9d:e7:6e:35:f8:bf:75:13:
94:db:2f:3b:af:e1:d4:7e:15:a5:45:e8:c7:0d:ef:27:82:03:
08:7a:eb:11:14:fc:2c:fc:87:ad:3d:cd:ae:d9:8d:24:12:64:
5b:c9:27:d8:f6:db:24:75:81:c5:23:2e:73:c3:d1:ee:dd:0e:
e4:45:a9:f2:82:92:3b:58:a5:0d:e3:cb:b7:ad:55:ea:2a:6d:
45:85:69:1e:a8:aa:90:24:a7:18:8e:bc:5b:bd:f6:04:43:66:
dc:fd:3a:28:f3:01:a0:fa:8a:21:3d:74:64:97:66:ba:92:77:
4c:54:97:3b:f2:08:3e:9e:31:82:3d:58:00:83:d6:5c:c5:63:
24:ec:7b:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:31:01 2025 by rpki-client