Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
File: oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft (raw, json)
Hash identifier: kdScB9p1iES/W+FhwvD8RJt3KN+Ft248U9H3nkJfWKY=
Subject key identifier: 11:21:54:D3:8C:92:ED:5F:C7:A5:63:F5:CF:95:15:47:D9:11:29:CA
Authority key identifier: A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
Certificate issuer: /CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Certificate serial: 0197C349F5086D239E4A5330D0611DC0B40A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
Manifest number: 072E
Signing time: Tue 01 Jul 2025 00:01:33 +0000
Manifest this update: Tue 01 Jul 2025 00:01:33 +0000
Manifest next update: Wed 02 Jul 2025 00:01:33 +0000
Files and hashes: 1: RgkGs56a3wBSH0Yhny04eNJEX3I.roa (hash: 1WUdRWIGnTtyys0okmGp0iV2hIZohfzABaDiV/G7uDo=)
2: oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl (hash: VnXUUeCSUr69ifOyJWWJH6fBkzH+9d4R3hlSwfSHuUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c3:49:f5:08:6d:23:9e:4a:53:30:d0:61:1d:c0:b4:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e3128fd09dc18e66ee4212a7e64f3e4e74a814
Validity
Not Before: Jul 1 00:01:33 2025 GMT
Not After : Jul 2 00:01:33 2025 GMT
Subject: CN=112154d38c92ed5fc7a563f5cf951547d91129ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5b:47:d1:76:fd:11:89:1b:96:61:de:3b:92:
cf:c0:db:a1:4c:da:ba:d8:b9:68:05:94:b4:b6:c8:
50:eb:c9:08:27:56:9b:d3:df:41:ee:53:95:f7:53:
e0:e7:ad:20:3e:32:6a:70:97:93:99:7f:4c:d8:d0:
03:80:2c:60:0c:28:f1:9b:ef:22:43:fa:c1:1c:de:
f2:bb:2f:67:1d:ca:0e:73:6e:83:6f:ae:b1:36:9e:
b1:8d:c7:97:76:35:8b:e1:2c:d1:69:04:27:d1:f1:
bc:64:e0:3c:11:bf:fe:51:c7:55:8f:fd:ea:a1:bf:
6f:0d:ae:fe:55:f9:7f:9c:0e:c2:c2:94:9b:8d:31:
ce:1d:9b:06:26:cd:ff:91:1e:29:22:56:f0:bb:f3:
e5:1d:b8:61:3f:ba:dd:d5:90:b2:d5:91:c9:c1:fd:
51:8e:d6:00:7d:a0:15:61:85:a9:9f:d3:a5:88:07:
1c:6e:a8:fd:1d:17:13:bc:74:27:fc:6d:30:c5:cf:
c9:9d:92:c6:74:f2:2a:57:a0:4d:ae:96:c1:c5:71:
5d:73:59:b7:43:89:bf:57:90:3b:34:84:7e:92:12:
b8:91:55:bd:f6:ae:f0:fb:82:a3:b9:f8:8f:b7:db:
2b:cb:a6:fc:87:b3:99:3d:ce:68:1d:74:54:b2:e4:
45:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:21:54:D3:8C:92:ED:5F:C7:A5:63:F5:CF:95:15:47:D9:11:29:CA
X509v3 Authority Key Identifier:
keyid:A0:E3:12:8F:D0:9D:C1:8E:66:EE:42:12:A7:E6:4F:3E:4E:74:A8:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOMSj9CdwY5m7kISp-ZPPk50qBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0b4e73-a154-4059-b622-8fd5caba54e9/1/oOMSj9CdwY5m7kISp-ZPPk50qBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:72:74:75:06:6c:e2:32:63:eb:b3:4c:ca:87:3c:62:65:33:
da:9a:50:3d:ac:f1:2a:d1:a5:85:d7:30:3e:81:aa:27:04:a0:
28:94:4e:97:04:1d:fd:a1:b6:40:51:89:80:e8:30:ed:3a:be:
71:a7:ef:b5:22:b1:aa:6a:d0:d3:35:4a:20:da:4c:05:14:0c:
59:8c:0b:cd:34:15:bd:50:d0:21:88:d8:dc:54:8c:56:23:2c:
2e:c2:2a:a7:fb:e3:a8:27:57:aa:e2:67:2f:87:92:0f:1b:ac:
79:f5:0d:30:95:45:9f:4c:36:55:1e:57:0b:3e:6c:1a:58:00:
91:83:cd:34:90:cc:19:15:71:a8:16:9b:68:cf:2a:10:f6:eb:
25:97:84:4e:42:91:b1:8b:6f:c1:37:ca:a3:3b:62:ab:be:e6:
a9:9c:a4:4b:b5:14:41:24:d9:f2:4c:a3:3d:60:e6:f3:26:8d:
a4:ae:68:1c:01:ce:e6:51:19:24:91:80:c2:94:a5:27:dc:cd:
2b:97:43:1d:8f:3d:b3:e9:91:b6:bc:64:ef:5a:30:36:c0:27:
8a:e8:cc:cf:f0:ec:a4:85:d4:b1:f1:71:40:c8:be:ef:1d:bc:
15:a4:14:48:d7:88:22:07:97:2a:24:32:56:9b:12:d9:b5:40:
45:f4:cd:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 07:43:14 2025 by rpki-client