Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: E+4rIkAIP2TV/zoo0rNUFtRThI8E+i95DXFex3CXKNQ=
Subject key identifier: BD:02:04:13:5C:D4:98:14:6C:50:3B:2B:A5:65:78:66:9B:ED:CA:61
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 0197B820EA770D4793E994C2D3AB23878CF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 154A
Signing time: Sat 28 Jun 2025 20:00:54 +0000
Manifest this update: Sat 28 Jun 2025 20:00:54 +0000
Manifest next update: Sun 29 Jun 2025 20:00:54 +0000
Files and hashes: 1: APsUsrAn96ow-lwQ45SmC1gQegc.roa (hash: t3tVyfgAERiYm7/hAZrrvXacDVWFUchPqKdL2GXQLe4=)
2: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: WRVa1zJTep60mUugGOh53HUF4hDVxysnKFOkj96g3ZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:ea:77:0d:47:93:e9:94:c2:d3:ab:23:87:8c:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Jun 28 20:00:54 2025 GMT
Not After : Jun 29 20:00:54 2025 GMT
Subject: CN=bd0204135cd498146c503b2ba56578669bedca61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:85:fa:76:ee:a4:57:f0:43:93:6d:52:52:11:
72:39:8d:a3:30:42:b1:bc:93:85:0c:09:ab:16:87:
18:50:84:af:49:41:9e:6c:22:ec:04:48:47:e9:57:
a9:7d:aa:01:8b:82:ee:3e:36:ee:e1:0b:6a:c5:77:
74:ee:46:80:e4:e3:d7:72:82:aa:5b:0a:2c:35:91:
23:a5:01:67:84:b4:ad:c8:e6:06:e1:09:d3:37:0b:
17:0a:60:f9:3e:d4:41:5d:48:1f:97:bc:d7:cb:f9:
47:0a:9b:6f:d1:55:9d:65:a1:59:fb:d2:18:8e:51:
cb:1e:56:5d:83:ee:0e:b7:82:44:05:ce:12:7d:e9:
03:33:19:44:e9:74:ab:06:92:49:2a:82:3e:be:3e:
a5:0d:ae:85:3b:d6:5a:72:76:59:d2:2f:f2:f4:5d:
d5:68:ff:2d:1b:12:3f:68:1c:b9:bd:ba:00:fa:56:
18:87:aa:3d:2b:73:d6:65:99:16:31:46:0d:16:74:
d6:e7:3a:24:a2:fd:35:35:89:f9:8d:38:81:40:8d:
87:64:72:d2:73:a1:ed:ed:56:21:6e:47:85:03:a3:
1a:4b:59:4c:04:bd:41:c4:b2:45:37:dd:ea:bb:09:
75:ac:25:06:9f:51:82:68:f2:0a:24:d0:28:b8:6e:
8c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:02:04:13:5C:D4:98:14:6C:50:3B:2B:A5:65:78:66:9B:ED:CA:61
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:3a:0f:bf:92:6e:f0:4c:01:5c:3f:b2:63:50:99:ed:8c:eb:
20:9b:18:d2:00:21:58:de:a6:c2:c9:01:2f:d6:83:59:b2:87:
d8:b0:12:cd:0a:f0:c1:0a:66:6f:44:60:46:b7:ac:3b:54:cc:
3e:8c:fc:1f:03:09:37:b0:46:35:60:bf:53:96:d1:3f:95:44:
39:f1:8f:4e:19:d4:67:be:08:a1:cd:fd:b9:ff:06:e3:f0:c9:
24:90:9d:59:46:56:fe:17:dc:79:be:1c:75:df:8f:67:8d:6b:
45:de:2f:ff:65:9d:9a:7e:85:01:5f:ba:34:3e:e4:c2:c8:1b:
88:06:74:c1:20:7b:82:4e:19:0d:2e:4f:54:17:16:a7:ad:67:
03:4e:d7:6e:8f:9f:e6:e1:7a:95:55:45:10:af:0e:72:00:51:
01:ab:73:55:b9:e5:f9:37:15:6f:bd:e1:8f:0b:3f:fa:bb:e8:
e9:3a:1d:8a:f5:88:a8:58:8d:5d:4d:f8:e6:63:ca:70:70:4c:
f5:9d:e0:64:d9:ce:63:f0:8f:c0:5f:23:b1:98:12:40:4f:40:
9c:56:0d:ee:01:27:03:49:0c:02:da:3c:c8:8e:fe:1e:d4:c6:
13:17:48:3d:e6:93:f2:67:fb:9e:3e:dc:af:ad:19:cc:64:9d:
f2:33:25:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:26:48 2025 by rpki-client