Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
File: obceuN8XHmQvGyuQQZAB8fxEXk0.mft (raw, json)
Hash identifier: Rf6+SVh6MJBoS8ZhhEwiPLbZbMLpREYDpAW5ppdo8rA=
Subject key identifier: C8:2E:0D:A4:65:6B:FF:67:01:49:24:D3:AA:1D:2D:A5:D7:1E:B9:08
Authority key identifier: A1:B7:1E:B8:DF:17:1E:64:2F:1B:2B:90:41:90:01:F1:FC:44:5E:4D
Certificate issuer: /CN=a1b71eb8df171e642f1b2b90419001f1fc445e4d
Certificate serial: 0199221E9683714B385A402E328D598CAE40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
Manifest number: 0F37
Signing time: Sun 07 Sep 2025 03:00:53 +0000
Manifest this update: Sun 07 Sep 2025 03:00:53 +0000
Manifest next update: Mon 08 Sep 2025 03:00:53 +0000
Files and hashes: 1: cGMojoHA_ji4dpM9uQ1afR_tOH0.roa (hash: i1gFi8NRL0iquVx1S2o3krHyHH6AFrbXa2Ge0Nqnor8=)
2: obceuN8XHmQvGyuQQZAB8fxEXk0.crl (hash: qQ6aTlINdRUB5sJYxuEGDFuQc3ehW7NzaaymjF/Yl1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:96:83:71:4b:38:5a:40:2e:32:8d:59:8c:ae:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b71eb8df171e642f1b2b90419001f1fc445e4d
Validity
Not Before: Sep 7 03:00:53 2025 GMT
Not After : Sep 8 03:00:53 2025 GMT
Subject: CN=c82e0da4656bff67014924d3aa1d2da5d71eb908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3e:7b:58:7e:3a:08:6e:94:fb:30:11:7b:39:
fd:67:0b:a5:43:c8:82:8c:75:4c:fd:66:02:bc:f6:
81:e2:dd:2b:dc:5f:1b:30:b6:a0:14:ed:f0:ac:b4:
ee:fc:92:20:f5:77:78:6c:fb:b4:06:43:1c:66:65:
52:57:66:06:3c:7b:8d:2b:c1:05:a4:7e:ab:08:88:
46:87:2d:15:ea:23:e0:0c:2b:59:6e:f8:bc:8b:70:
0a:84:45:5a:13:e3:9f:64:8d:2c:f6:47:39:c8:25:
11:45:4c:2d:7d:27:49:04:69:f1:2a:84:15:6d:a9:
ca:70:d1:71:bf:18:dd:d4:a1:7e:8c:90:c7:d5:b4:
e1:db:d7:7e:04:2d:e3:05:7c:cb:06:49:9d:63:a5:
6b:af:f5:f8:79:4c:75:dd:a0:76:a3:d0:7e:23:ad:
00:8b:07:4a:7a:78:c8:38:8f:b2:cd:0c:bb:57:0c:
d2:20:1c:4c:3e:33:37:43:1f:10:44:28:8b:90:22:
c4:b5:52:d6:7c:fb:62:04:95:22:b8:d9:0f:51:30:
1b:a3:52:4a:1b:0f:36:d5:cb:93:78:5f:ed:6b:bb:
d8:0b:43:81:22:bf:39:37:e7:2f:d8:41:c0:98:59:
d0:d1:5b:0a:42:ce:f4:d3:b8:7e:3d:90:b7:6a:34:
0d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:2E:0D:A4:65:6B:FF:67:01:49:24:D3:AA:1D:2D:A5:D7:1E:B9:08
X509v3 Authority Key Identifier:
keyid:A1:B7:1E:B8:DF:17:1E:64:2F:1B:2B:90:41:90:01:F1:FC:44:5E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obceuN8XHmQvGyuQQZAB8fxEXk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f088bd-5029-4903-9616-0672ea0440bb/1/obceuN8XHmQvGyuQQZAB8fxEXk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:8d:9d:2c:98:0a:46:30:4e:08:23:be:52:84:ed:f1:82:36:
8b:90:5f:93:29:df:f2:e8:2e:3e:d1:d7:6f:09:c9:89:7f:a4:
27:91:da:03:dd:de:b7:38:5e:03:4c:59:31:2a:63:57:f7:99:
b9:1d:68:93:02:6e:60:aa:90:76:c4:5e:35:f4:2a:4a:3e:f7:
c6:f2:a9:46:da:bb:05:be:e1:6f:e3:00:0f:74:d6:43:49:df:
62:ce:37:ff:8f:25:bf:69:c9:83:27:e8:6e:f9:6b:11:f6:a1:
0b:e3:d2:d8:9e:61:71:07:39:69:09:8c:f7:41:b4:b4:4b:ea:
be:70:d5:da:67:9d:28:33:f2:f6:e1:88:be:8b:61:14:2e:c7:
ed:7f:89:e9:8e:fe:bf:57:d0:b5:2a:2c:e1:59:44:80:7c:d0:
5a:bc:f2:4c:f7:a0:03:11:ef:4a:46:b2:2c:60:4d:a5:e7:32:
49:31:cb:a4:59:50:af:00:3a:b7:1b:84:c6:d6:65:5f:31:bf:
14:68:44:9a:c2:1e:5c:72:bc:dc:32:ea:2d:8f:81:6a:1d:ce:
e3:5d:e4:69:d5:5b:e9:36:f9:cd:e2:a1:d4:7c:6a:fe:80:60:
07:13:d0:13:aa:64:6a:f1:08:e2:48:cf:d4:be:93:83:9f:55:
a6:6d:ac:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:34 2025 by rpki-client