Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
File: oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft (raw, json)
Hash identifier: o6TMMe55n6PDiTly/A/atpEsSNIlmDaZnQpPN4MHY7Q=
Subject key identifier: 51:7D:E6:6D:84:44:EE:BC:5A:B0:21:84:88:8F:22:81:F2:EF:A9:83
Authority key identifier: A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
Certificate issuer: /CN=a0a647dac729f47b06369c4c9741cf943953dc59
Certificate serial: 0197C3809044BE1820FDE2148692E1576A87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
Manifest number: 0B1B
Signing time: Tue 01 Jul 2025 01:01:11 +0000
Manifest this update: Tue 01 Jul 2025 01:01:11 +0000
Manifest next update: Wed 02 Jul 2025 01:01:11 +0000
Files and hashes: 1: dPS19nUQKZs1pC8qDJfACabYgUU.roa (hash: tV7anFpBs2RsEo4baCa1A4g7pK/gnoVzFue1nUrbvl4=)
2: oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl (hash: tFNRGkSCY8IN7rs72HWee/nG3fyvPrwTFg856HSt7TY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 01:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c3:80:90:44:be:18:20:fd:e2:14:86:92:e1:57:6a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a647dac729f47b06369c4c9741cf943953dc59
Validity
Not Before: Jul 1 01:01:11 2025 GMT
Not After : Jul 2 01:01:11 2025 GMT
Subject: CN=517de66d8444eebc5ab02184888f2281f2efa983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cd:db:71:83:b8:30:bd:d5:24:7c:04:6e:17:
3c:ff:0b:b8:91:ee:4a:94:a2:02:2c:38:78:6b:62:
cb:23:e5:34:68:34:b9:13:57:a2:06:ad:bd:6a:1a:
58:1c:cb:d5:8c:9e:bc:77:ea:18:77:b1:30:66:31:
fd:32:f2:55:b7:97:4a:3f:22:d7:8c:61:c7:23:f8:
e4:7e:75:c5:93:23:5a:62:b9:e4:7a:75:72:68:61:
b6:5e:c6:cf:f2:c2:04:9a:92:7d:a6:37:25:43:c6:
29:c5:5e:a7:f3:ef:96:d1:ca:61:f1:d8:64:e2:b4:
d9:01:73:65:40:4b:02:4d:28:42:da:c3:f1:ad:81:
99:99:51:30:e6:49:78:8a:e0:4b:c2:d5:ff:40:cb:
33:ae:1a:20:c8:d0:70:07:12:78:53:3c:2d:6e:cd:
67:ac:5d:c3:84:14:65:23:38:9b:37:6a:ba:51:05:
70:f0:1d:27:72:b3:cc:ac:cb:c7:26:6b:27:e9:65:
61:33:2f:7a:4c:fc:f2:d6:97:50:17:1d:11:62:05:
5a:b8:60:2f:d6:d3:6d:ff:ea:a6:aa:2b:f5:2b:6e:
ab:79:d5:3a:a1:cd:86:17:3c:56:1a:7a:b2:5b:cc:
94:68:c3:4a:1f:a3:9b:f7:57:55:59:ed:aa:ed:3d:
15:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:7D:E6:6D:84:44:EE:BC:5A:B0:21:84:88:8F:22:81:F2:EF:A9:83
X509v3 Authority Key Identifier:
keyid:A0:A6:47:DA:C7:29:F4:7B:06:36:9C:4C:97:41:CF:94:39:53:DC:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKZH2scp9HsGNpxMl0HPlDlT3Fk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ba1f88-707f-41bd-b9bd-fb6983ce9dff/1/oKZH2scp9HsGNpxMl0HPlDlT3Fk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:bf:13:cd:ab:07:ea:9c:b4:f2:46:17:ec:0c:db:89:21:5f:
ff:0a:3d:0f:65:67:ce:d4:bf:9b:8a:73:2f:81:00:9d:25:ee:
9b:90:80:40:16:d8:0f:15:63:a4:bf:9a:c5:f6:2a:ee:c7:62:
ba:cb:23:ad:67:13:55:b8:3b:6f:ea:3e:01:5f:32:fe:95:93:
0f:94:c2:c9:0b:0c:d2:36:d5:01:a9:3d:2b:71:8a:d8:df:c8:
69:e7:45:01:a0:64:5f:1f:3b:17:eb:2d:8c:b4:3f:ea:c3:77:
fb:92:f7:a3:0b:84:8c:5a:3e:ac:63:2e:d7:97:95:ee:2f:f5:
8a:95:d3:3a:fc:a0:b5:5b:5c:21:6b:0a:4f:f7:db:62:9e:c4:
e0:63:78:6b:96:9b:42:a0:5f:ae:3a:89:c8:5e:c3:2d:c4:7f:
66:bb:ec:5b:e3:f4:af:ff:c5:b7:5e:86:e5:10:6a:fc:76:28:
27:03:5c:7f:b7:6e:23:7b:28:0b:c4:31:95:c9:fd:8b:c2:8f:
62:18:c1:71:12:3e:05:e3:9e:40:d4:da:83:ea:87:8b:6d:53:
e1:32:47:b5:72:a7:81:bf:f9:8b:e6:4a:79:50:87:53:a6:b7:
c6:9f:ae:81:f6:f5:6c:b7:57:a8:97:9d:b6:34:65:20:c4:58:
e9:68:9b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 11:02:43 2025 by rpki-client