Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
File: o-zqyBJVNKV5R5YtsokD-tesOvk.mft (raw, json)
Hash identifier: 3JHekR5F1SVyZIKRIkd4KfyV7n3GdcsbROHgPvjf/4Y=
Subject key identifier: C5:F2:73:D0:87:61:E3:A2:AC:73:CE:5D:D5:8A:FF:60:54:9D:59:04
Authority key identifier: A3:EC:EA:C8:12:55:34:A5:79:47:96:2D:B2:89:03:FA:D7:AC:3A:F9
Certificate issuer: /CN=a3eceac8125534a57947962db28903fad7ac3af9
Certificate serial: 0197CC4CA5FBCFC53D3284EAFEFA5378B738
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
Manifest number: 153F
Signing time: Wed 02 Jul 2025 18:01:04 +0000
Manifest this update: Wed 02 Jul 2025 18:01:04 +0000
Manifest next update: Thu 03 Jul 2025 18:01:04 +0000
Files and hashes: 1: NZCcmWMu3SL4lvLRXGmLfuZeQm4.roa (hash: EKuPrmDOqjvIb0P5ALzTBFMc5GRcKpakwtWPyDrs5oc=)
2: o-zqyBJVNKV5R5YtsokD-tesOvk.crl (hash: aOp0mMdGe5cVQnvmcSiFKVeaYmKKIzUcoUCRTHUyAxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:4c:a5:fb:cf:c5:3d:32:84:ea:fe:fa:53:78:b7:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3eceac8125534a57947962db28903fad7ac3af9
Validity
Not Before: Jul 2 18:01:04 2025 GMT
Not After : Jul 3 18:01:04 2025 GMT
Subject: CN=c5f273d08761e3a2ac73ce5dd58aff60549d5904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9c:6c:c5:88:65:a7:fb:23:a7:c5:e2:05:27:
ba:ed:00:cd:4e:2f:13:62:7a:0c:bc:36:79:cc:71:
97:b9:a5:b9:21:4f:72:43:e9:40:cd:c1:88:0f:ed:
e8:e3:a2:4b:6e:05:8b:53:3c:30:c5:01:7f:ea:70:
d1:59:90:6a:0f:f2:3a:ba:72:fd:3e:e3:36:e4:49:
0e:59:60:6c:5e:a4:61:06:a6:60:58:59:22:bf:59:
b4:ab:91:2d:4c:f1:27:f0:9e:e3:da:ea:89:ce:1d:
19:27:12:7f:cf:32:df:24:ab:f7:24:0a:ff:dc:31:
75:03:fb:44:c7:be:0c:58:33:06:d6:8c:21:d1:d5:
4f:6a:1a:a5:6c:31:ab:1b:f7:62:d5:8b:f9:10:b2:
6f:20:0e:95:1d:2c:4c:ac:f3:e4:ef:c2:c3:0c:cf:
1f:b9:23:3e:da:32:ba:44:1f:55:01:a6:fa:ec:4a:
ae:cd:d7:4a:52:03:44:d3:0d:55:89:c3:17:16:b6:
1c:1a:c5:e4:aa:9d:77:4b:dd:04:f9:ff:24:78:26:
61:4e:d8:96:a6:b7:80:35:0a:dd:0c:df:34:40:8a:
d3:c3:62:11:dc:9a:a3:46:0f:59:c6:2b:d5:93:d5:
68:47:74:5c:d7:aa:bd:6e:7a:ae:85:09:4b:81:1a:
a1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F2:73:D0:87:61:E3:A2:AC:73:CE:5D:D5:8A:FF:60:54:9D:59:04
X509v3 Authority Key Identifier:
keyid:A3:EC:EA:C8:12:55:34:A5:79:47:96:2D:B2:89:03:FA:D7:AC:3A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-zqyBJVNKV5R5YtsokD-tesOvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d91187-7545-41e7-9894-a9bd5e410aed/1/o-zqyBJVNKV5R5YtsokD-tesOvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:c9:91:d7:36:02:a4:c9:f7:c2:91:b7:73:d8:71:04:ca:f4:
fd:ea:69:6e:88:6b:06:7d:54:67:cc:e6:77:39:cf:68:2d:7f:
40:31:1b:bc:4b:85:24:58:69:9f:2c:4d:fe:e2:65:8f:b3:42:
df:7b:2f:98:38:4d:a9:0a:84:88:a8:6a:1c:ca:91:5a:0f:16:
05:02:e0:7a:98:6b:7d:0f:05:de:3f:58:9b:2f:f7:0c:59:3a:
99:d8:20:c3:f2:cf:30:31:65:f3:ed:f9:0a:01:05:b2:bf:ed:
ae:82:19:94:5f:67:be:26:8d:84:5e:bc:7c:58:51:a4:fe:ce:
7c:b2:88:73:c5:75:83:eb:53:aa:63:6a:67:98:5b:4c:6c:15:
b1:05:62:0b:31:19:9f:34:f2:24:aa:26:6f:39:30:b8:f7:0c:
a3:65:53:7e:fa:a6:2f:45:0d:b3:5f:f9:17:cd:80:06:c3:39:
a5:fd:1f:13:dc:07:ca:7c:4a:4d:46:71:e9:d3:bc:1a:ab:64:
23:9f:92:6f:41:32:ee:7c:61:9b:77:21:ee:52:b3:76:fa:22:
75:86:f5:62:9e:19:45:8a:11:f2:0b:a6:49:76:19:2b:29:33:
2f:1a:3d:13:87:c8:78:47:bf:ec:14:53:06:18:31:69:43:e2:
5b:a6:06:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 20:46:36 2025 by rpki-client