Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft (raw, json)
Hash identifier: 4Nd277ySooVYVrAawOY5dh185aepFOLcVuGmxqDJB5s=
Subject key identifier: FA:09:08:A6:A9:37:58:C1:37:B0:76:61:19:3F:60:D9:DF:CA:ED:64
Authority key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Certificate issuer: /CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Certificate serial: 0197CB3A18818BD91A4967E683A1FEB4DBFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
Manifest number: 15BD
Signing time: Wed 02 Jul 2025 13:01:11 +0000
Manifest this update: Wed 02 Jul 2025 13:01:11 +0000
Manifest next update: Thu 03 Jul 2025 13:01:11 +0000
Files and hashes: 1: RW4un6mRBfPzHloV5RnOReMxV4M.roa (hash: 6KtCB53EZaTt4rkvk3WW5xLU60zG4n/pYxl9BtxsfPs=)
2: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl (hash: NXELDxK1q1L1Cg3wK18l4bNObdvbNRLHHQw1jXTVA1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:3a:18:81:8b:d9:1a:49:67:e6:83:a1:fe:b4:db:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Validity
Not Before: Jul 2 13:01:11 2025 GMT
Not After : Jul 3 13:01:11 2025 GMT
Subject: CN=fa0908a6a93758c137b07661193f60d9dfcaed64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3a:67:e5:d6:b2:28:60:f2:a4:e8:10:9f:90:
15:65:52:54:5f:8c:84:59:29:50:f7:8f:ab:aa:63:
cb:19:ba:2b:c3:f0:db:92:61:84:94:df:c2:45:aa:
ac:5f:8b:1c:d9:04:ea:f5:c0:c7:23:af:35:ca:1f:
90:ff:9f:2a:0e:73:c2:a2:2a:27:47:8a:f5:bf:52:
a6:f2:f8:9e:29:34:95:b2:2c:82:b5:4c:b2:d5:c9:
e0:26:bd:3b:0b:20:36:37:97:83:40:95:e6:3a:ed:
26:a2:14:04:6a:8c:10:bf:68:4f:53:38:dd:c1:7d:
45:8d:ff:f8:07:60:ac:f9:c4:16:19:21:70:77:c1:
4f:0b:39:76:56:a0:16:96:37:d9:8b:c5:cf:04:b5:
99:94:c3:ad:e7:4e:25:4e:a4:1f:51:20:27:71:4a:
ca:63:e4:d9:0c:6c:6a:69:66:ce:6e:21:77:9d:2a:
ad:ad:07:06:91:d4:a4:b3:b9:b7:78:25:c0:0b:79:
e9:63:8d:37:50:03:a3:e1:6d:93:e2:3b:5d:2f:97:
f6:70:80:71:96:57:f1:f0:82:4b:da:5b:58:ce:76:
dd:9c:0a:29:5c:03:f9:29:d3:8d:65:99:bf:c0:0c:
54:97:4f:66:53:67:74:93:32:cd:2d:1b:b0:7c:98:
90:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:09:08:A6:A9:37:58:C1:37:B0:76:61:19:3F:60:D9:DF:CA:ED:64
X509v3 Authority Key Identifier:
keyid:A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:23:72:49:f0:e4:b5:df:f4:f2:b2:50:78:b5:33:9c:f3:52:
3b:e3:f7:19:43:8b:38:a4:10:ed:82:6b:0b:f4:56:2c:8b:8a:
2e:39:56:47:57:18:6b:61:d6:6b:4a:4d:79:e8:c8:f9:e1:b6:
98:d6:74:66:07:0d:1c:88:c0:df:e5:3f:e7:37:30:ec:57:aa:
bc:79:bc:d4:ba:39:2a:d1:f1:ea:b9:83:c5:cd:2f:5d:c4:6f:
65:66:d4:12:06:a6:04:70:7a:f2:f7:d7:e9:eb:e4:4a:74:21:
77:cb:d2:d1:74:2e:4d:e5:9f:db:2b:f8:82:d6:19:20:0c:2c:
29:ac:8f:80:11:14:8d:eb:3d:e2:27:9d:65:b5:13:0b:43:fb:
98:24:9b:01:86:e4:ea:db:57:81:88:d6:27:e8:77:74:cb:8d:
a6:68:09:d1:ba:ec:74:b3:1e:e0:71:a5:33:0f:7d:a2:37:03:
b7:1f:50:b1:19:1f:84:e8:4d:35:8b:c1:95:76:23:f3:00:4f:
bd:17:36:18:1b:19:76:a4:4c:df:9f:55:1c:9c:a0:4c:41:63:
55:1a:ca:95:5d:44:86:31:44:42:b1:3e:3f:ef:dd:5e:34:27:
a7:a8:3c:9e:b3:13:2b:87:07:12:52:f3:40:60:f6:63:cb:35:
b7:bd:9b:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 19:51:56 2025 by rpki-client