Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
File: oJ1luSb910PaW0c9NBhf4QGwWig.mft (raw, json)
Hash identifier: n7yFcEWASq7YFxN0ti5+DTLp+kW810PHtnjJwAFrJqw=
Subject key identifier: D2:3B:84:FE:76:80:76:F2:F6:DC:14:96:54:7F:93:65:EA:24:43:28
Authority key identifier: A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
Certificate issuer: /CN=a09d65b926fdd743da5b473d34185fe101b05a28
Certificate serial: 0197B821649FAD9F0265BE28C6EF0EDD80E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 20:01:25 +0000
Manifest this update: Sat 28 Jun 2025 20:01:25 +0000
Manifest next update: Sun 29 Jun 2025 20:01:25 +0000
Files and hashes: 1: lhjGJIifChZhyO0SU9NNpxfAaP0.roa (hash: nX/uaYhIBdSKJHgpMLgtjy0tDRvricoltizd7F7VYTI=)
2: oJ1luSb910PaW0c9NBhf4QGwWig.crl (hash: GqyjKa3jUxeayB5ye45R9rejkmMbif7TiDpWfOAGJKI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:64:9f:ad:9f:02:65:be:28:c6:ef:0e:dd:80:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09d65b926fdd743da5b473d34185fe101b05a28
Validity
Not Before: Jun 28 20:01:25 2025 GMT
Not After : Jun 29 20:01:25 2025 GMT
Subject: CN=d23b84fe768076f2f6dc1496547f9365ea244328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:38:a0:a3:e4:6a:c3:3b:8a:bf:56:d1:b6:45:
dd:b3:41:76:d2:bf:49:ac:81:e2:bb:a8:70:87:d9:
a9:12:2b:1a:22:b4:0c:17:95:5c:e7:f2:b9:98:c8:
90:02:cb:30:96:e2:e5:6c:87:e8:ae:6e:47:68:39:
3a:4a:99:d3:c3:1c:77:03:57:47:0a:4a:0e:87:a0:
76:d6:22:02:17:8b:12:56:35:e3:d5:89:bb:fd:2f:
be:e3:3e:b0:a5:ea:2b:d2:4b:96:e7:6b:7c:43:c8:
5f:bd:32:a2:97:35:e6:27:4a:4e:b6:94:55:c9:5e:
4a:b2:d9:14:bb:f0:67:9f:3d:3d:a0:9e:91:19:e6:
e9:fd:c1:2d:12:ce:12:40:92:db:9e:3c:ad:e7:5e:
01:46:8c:f0:55:4c:18:6a:2d:de:90:d8:a8:6a:fb:
ec:2c:b6:25:e7:ce:5a:cb:be:38:b5:42:87:0d:84:
71:b9:97:91:31:39:3b:81:d5:da:81:e9:33:d6:75:
a6:a2:bc:25:31:fc:20:a0:d1:26:3d:5f:82:45:1f:
37:66:ef:c3:63:76:78:e0:1a:b4:03:8b:bd:2d:66:
2e:ce:2e:02:a0:60:50:9e:8f:54:eb:50:84:44:63:
a1:dc:7b:ae:6e:3c:83:77:43:37:bd:37:f6:4c:3f:
3f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:3B:84:FE:76:80:76:F2:F6:DC:14:96:54:7F:93:65:EA:24:43:28
X509v3 Authority Key Identifier:
keyid:A0:9D:65:B9:26:FD:D7:43:DA:5B:47:3D:34:18:5F:E1:01:B0:5A:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ1luSb910PaW0c9NBhf4QGwWig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/cbec33-0325-41e7-8266-79a7eaa7ae58/1/oJ1luSb910PaW0c9NBhf4QGwWig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:3a:47:26:69:87:d3:3e:aa:54:63:1e:e3:11:40:e2:25:a3:
48:93:8a:10:94:e1:ed:40:6e:cb:bf:47:0d:ae:b2:fb:50:0e:
c5:fc:c6:2f:3a:a6:07:2d:c6:94:06:06:74:d9:07:19:7f:34:
dd:bb:e4:18:bf:62:bb:c1:b0:31:ac:2d:8e:da:1d:55:d6:16:
80:ed:fa:e5:05:9e:87:ef:9c:fc:23:1d:ef:b2:74:df:34:71:
e1:4a:51:55:05:77:61:4d:89:2d:94:97:eb:3f:4a:7e:ee:c5:
2e:4e:4a:b9:4c:41:f6:56:62:68:50:c0:54:3b:e4:e9:cd:be:
cf:61:a8:33:3d:37:0b:e2:c9:3b:3f:67:06:6f:fd:93:be:81:
f9:ba:f0:97:68:dc:a9:cd:6b:9b:7b:c6:0a:66:5f:94:83:6b:
5b:8c:d6:1e:b4:23:84:9d:d1:f8:55:15:bf:db:b9:04:ae:73:
9a:4e:40:a9:1d:15:1b:ae:0a:32:bf:fe:c3:fb:1f:bf:06:12:
06:2a:3b:85:b6:4e:0d:77:77:0e:c4:46:60:3e:d5:da:e7:84:
62:5c:6b:61:cc:72:d6:93:84:0d:04:73:aa:8a:5f:86:69:cd:
30:9c:35:ba:d1:ca:26:f9:5e:78:b7:e5:38:1d:a2:2c:ff:30:
d5:6b:f0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:19:55 2025 by rpki-client