
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: w3MhiS270tcAeu2i80xMmAuIAZ3FpXESGolCx57kqgM=
Subject key identifier: 57:8A:C2:72:3A:E0:A3:9E:F4:94:3A:F6:8F:02:22:1D:FE:05:F6:0A
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 0197CC15CA23314D6DC3B34A402FE858C3E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 051B
Signing time: Wed 02 Jul 2025 17:01:09 +0000
Manifest this update: Wed 02 Jul 2025 17:01:09 +0000
Manifest next update: Thu 03 Jul 2025 17:01:09 +0000
Files and hashes: 1: FfIlEvStYRtAHT_4tgisj2sboIA.roa (hash: u8VtTRQomqZri4fvKgtiux4C4c/ZHFagnd78Z59URa8=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: mGwgqR/uy9XLHL5WwMeCyHMleu8ZSd2+5i6i7LxQxsw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 17:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:15:ca:23:31:4d:6d:c3:b3:4a:40:2f:e8:58:c3:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Jul 2 17:01:09 2025 GMT
Not After : Jul 3 17:01:09 2025 GMT
Subject: CN=578ac2723ae0a39ef4943af68f02221dfe05f60a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:81:62:fa:2f:d4:7b:28:94:75:64:e6:84:6b:
23:5a:56:94:85:a9:a1:6a:99:fc:f5:3c:5f:d7:46:
df:dd:34:b1:88:68:31:54:94:3b:77:ce:78:63:7b:
ff:ad:4a:5b:c5:0c:04:69:a1:07:04:55:93:4a:1f:
b8:fb:c9:5a:7e:7f:be:c0:15:18:44:cb:16:1f:ad:
5d:26:12:07:2d:a6:b8:89:bc:a9:45:3b:b9:bd:6b:
39:c1:14:10:f2:69:ab:08:7f:ec:82:55:ce:15:ac:
58:10:74:7e:05:6b:6b:66:de:6a:23:a5:c8:03:a4:
f4:45:78:80:89:d4:66:09:28:24:71:c0:b2:2d:14:
62:65:44:45:53:c9:61:19:c2:49:75:96:d4:af:3d:
40:1e:2c:76:ac:9c:e9:d0:c4:0b:03:c9:73:35:79:
17:f2:53:5c:7a:62:86:9d:7e:4a:1f:12:bd:d5:61:
55:1b:0c:a7:ef:45:ee:ac:a5:6e:d6:a1:80:75:96:
c5:73:d8:6e:7a:76:c2:3d:1d:e3:f1:4b:c1:21:67:
37:1f:c8:b1:aa:97:a1:65:c6:ad:98:31:53:c2:68:
40:02:b0:3e:2a:93:1c:d8:83:24:a3:3f:e3:fd:92:
c1:72:e1:a8:0c:93:99:2a:5e:9e:90:51:44:84:a3:
f7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:8A:C2:72:3A:E0:A3:9E:F4:94:3A:F6:8F:02:22:1D:FE:05:F6:0A
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:ef:12:b1:e4:35:a7:3b:24:96:6e:c5:6b:c3:b8:fc:69:7a:
70:00:e3:81:59:56:1d:91:ff:df:ab:af:a8:e4:2a:fe:fb:16:
49:01:3d:51:7d:cc:0e:93:1c:d4:26:ed:e4:6e:0f:29:68:32:
6d:55:3e:95:77:f1:3c:eb:c5:ac:58:fe:14:d6:dc:74:f3:ae:
13:dd:e8:02:4d:df:bd:7e:26:2b:49:94:0c:82:97:82:24:fb:
f3:93:b6:f7:1d:1f:46:35:da:bb:45:cb:d2:72:3f:78:2d:8b:
6d:7d:31:07:74:ce:25:d6:51:bd:c7:10:84:1e:1c:13:30:f9:
a9:4c:40:4f:35:89:f5:fb:12:0e:46:da:1b:ea:53:db:66:d7:
c6:91:a1:66:c9:4e:9c:96:e8:2a:c6:6e:54:fa:4e:0d:3f:03:
39:cf:69:47:f6:c7:f0:da:ac:a7:97:a2:44:45:4a:af:78:e7:
ef:c0:2d:05:e9:c6:c0:f1:1f:3d:a5:bf:4d:e0:96:9d:ad:0d:
e1:5e:4a:d5:a2:bd:60:b0:52:d2:1e:39:fd:76:74:57:7d:65:
ec:90:7a:6b:18:da:84:09:1d:f7:c2:97:c2:35:7b:d0:ee:7f:
fe:23:b3:4d:65:ff:20:88:ff:4f:47:aa:9e:a4:24:e1:9c:98:
f2:da:a9:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 02:44:12 2025 by rpki-client