Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
File: oE3odQHH0wgsdmWfTevZQohDtMs.mft (raw, json)
Hash identifier: kMxJXJOmzSTDnjDgGWqtuoYZDB4Nq0jdr1tXeCaq82c=
Subject key identifier: 95:BF:24:1D:4B:F1:3A:0A:6F:E5:C6:F0:9A:A0:87:9A:1A:F6:A4:5A
Authority key identifier: A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
Certificate issuer: /CN=a04de87501c7d3082c76659f4debd9428843b4cb
Certificate serial: 0197CACC09565ECEFB9E3F28EC02AEEED122
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
Manifest number: 11A2
Signing time: Wed 02 Jul 2025 11:00:58 +0000
Manifest this update: Wed 02 Jul 2025 11:00:58 +0000
Manifest next update: Thu 03 Jul 2025 11:00:58 +0000
Files and hashes: 1: 3oKx6h0eBr3yZ2nfockvN65K1_o.roa (hash: geWao+6sgTP3cLFpfRuFIKY1lyLCLqYJA9Pcg4p46Gs=)
2: oE3odQHH0wgsdmWfTevZQohDtMs.crl (hash: L0jZbN/aIhyA0U+J2xPMGvqrxW/wbQWskIB4v+OhqrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:cc:09:56:5e:ce:fb:9e:3f:28:ec:02:ae:ee:d1:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a04de87501c7d3082c76659f4debd9428843b4cb
Validity
Not Before: Jul 2 11:00:58 2025 GMT
Not After : Jul 3 11:00:58 2025 GMT
Subject: CN=95bf241d4bf13a0a6fe5c6f09aa0879a1af6a45a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:cb:ec:2f:ca:68:cd:77:54:b8:76:ea:59:fc:
0c:46:b0:cd:c5:43:dc:7c:3d:4c:4f:02:e1:fd:bf:
df:8f:de:bd:4b:51:1d:de:8a:33:f8:c8:78:58:c6:
41:5d:c5:c3:73:eb:ad:50:cd:a0:0b:1e:5e:5f:3a:
cc:7e:0f:68:7f:a0:45:53:84:2e:d6:cf:47:f4:49:
73:32:98:cc:e6:91:bc:d8:f8:9e:2e:e6:18:74:e2:
fb:b3:f9:6b:74:ca:c7:de:dd:4c:87:9a:94:d0:9d:
66:a9:08:61:75:ca:3a:bc:96:fe:5f:5d:91:d8:e3:
2c:88:fe:63:47:1a:ac:0d:59:d1:89:0f:32:b9:a7:
0e:8e:40:ff:bb:8a:44:fb:4f:3b:fa:5c:cb:8c:f9:
c7:ee:20:00:78:a9:d6:8f:c6:07:13:b4:04:57:e7:
2d:a0:36:4e:e1:e3:1b:96:d4:99:d3:8f:78:cf:1d:
85:8d:1a:af:bf:3a:83:9b:fb:91:5a:63:b0:9e:82:
84:b2:46:d4:f9:7b:b3:0b:01:9e:8f:21:ef:e9:e1:
b6:e4:c2:af:6e:59:71:1a:75:ee:df:d9:ba:7e:98:
17:2b:0f:40:f0:4b:7d:92:64:37:a2:8a:43:17:f5:
83:81:47:1f:8c:d9:98:bd:75:36:14:3f:a3:69:6e:
6b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BF:24:1D:4B:F1:3A:0A:6F:E5:C6:F0:9A:A0:87:9A:1A:F6:A4:5A
X509v3 Authority Key Identifier:
keyid:A0:4D:E8:75:01:C7:D3:08:2C:76:65:9F:4D:EB:D9:42:88:43:B4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oE3odQHH0wgsdmWfTevZQohDtMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/465c90-70fb-4015-b969-748f7878388a/1/oE3odQHH0wgsdmWfTevZQohDtMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:83:2a:43:70:7a:ba:ba:41:b0:7c:5b:97:46:d7:b7:21:bd:
1a:aa:4d:72:54:24:68:f0:83:5f:c2:71:69:1a:5d:67:ed:eb:
ab:a8:30:54:07:6b:b3:22:0a:e0:26:95:f5:b6:ba:4e:ed:33:
59:72:5e:3a:d6:7e:56:f5:a5:92:a5:48:8d:20:ba:eb:32:2e:
9c:fd:f1:ad:bc:82:72:81:19:04:f7:3b:93:80:eb:b3:b0:79:
92:22:9b:aa:f6:ab:c1:da:9e:ef:a7:b4:2f:74:19:e1:90:20:
8c:ea:2d:60:2b:c3:a1:47:fe:c4:1f:81:23:6b:67:56:c8:62:
fa:54:af:79:3d:fa:5a:33:3f:c5:84:e4:eb:2a:81:83:d7:4f:
a2:ae:5d:d5:d7:f0:6d:11:00:e2:32:97:f8:82:f8:f1:67:b3:
87:d7:f2:3d:4b:f1:6c:03:5a:e0:a2:19:34:5d:d4:4c:22:1b:
d2:08:67:f6:7d:6e:2d:67:ed:1a:de:17:31:e4:93:6b:76:a2:
bd:1b:b5:e0:8a:45:1b:10:76:f3:6f:39:5c:1b:34:bc:e5:97:
4a:2c:a4:9f:ac:e2:e8:1e:ed:a2:4d:4f:55:bb:c3:87:95:57:
83:38:83:d6:ea:52:a5:88:5b:ad:b3:7d:e1:84:35:52:10:4e:
d5:06:d9:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 19:54:07 2025 by rpki-client