Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json)
Hash identifier: mSaRUPMpq3Wxtc+t4kUE4N7nDqdNcXjsCxbmPvNPtAo=
Subject key identifier: 25:0D:BC:73:8F:50:77:D1:83:1D:9E:45:0B:13:07:D2:1C:BC:74:55
Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Certificate serial: 0197CEA94C3881860F8D524E05B3D4EBB12B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
Manifest number: 15C5
Signing time: Thu 03 Jul 2025 05:01:30 +0000
Manifest this update: Thu 03 Jul 2025 05:01:30 +0000
Manifest next update: Fri 04 Jul 2025 05:01:30 +0000
Files and hashes: 1: DyAD9klcag15NhnplKEMXi8dKqg.roa (hash: Zvr5j/JLyl2kQb4eL63NQCTsndBLbuYPjEiWULmfej8=)
2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: 8hUBCvkHW+WYZ+855I2MEpC8fE54PDTeWBJTL0IWPPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ce:a9:4c:38:81:86:0f:8d:52:4e:05:b3:d4:eb:b1:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Validity
Not Before: Jul 3 05:01:30 2025 GMT
Not After : Jul 4 05:01:30 2025 GMT
Subject: CN=250dbc738f5077d1831d9e450b1307d21cbc7455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:01:75:f8:07:4e:21:79:58:c5:7a:4b:ce:69:
5e:a1:84:ab:6a:7a:55:82:1a:fb:5e:8e:27:27:6f:
34:8a:c8:a8:08:1c:5a:5f:19:ff:1e:bd:45:80:fb:
a1:9b:5b:cc:dc:2e:50:5f:e7:9a:a0:6b:a7:da:90:
a1:7c:14:5f:01:c0:5f:02:69:b7:7c:eb:f7:3d:bf:
90:ad:4d:c4:b9:e3:03:d7:bf:dc:34:14:a9:5e:6c:
8b:5c:f6:aa:52:d2:4c:56:bb:a9:86:cc:aa:07:59:
d5:3f:8a:38:4e:57:13:ed:f6:a2:48:a4:bf:30:4c:
46:86:ab:25:a0:8a:e2:d9:3b:89:21:05:a0:12:e0:
4e:e9:9a:ec:1a:d8:44:9b:0b:f3:c8:dc:c4:71:08:
f5:2e:f2:dc:ac:d9:52:9b:72:c7:4b:30:2a:45:55:
76:95:61:6c:52:da:de:20:8d:c6:61:34:9f:1e:fd:
e7:15:51:e5:65:31:31:2f:fe:e0:ff:5f:82:13:6a:
7d:2f:20:72:96:35:db:2c:04:e6:c6:b6:9f:9a:ad:
14:7d:83:cc:8f:a4:47:bf:f2:3c:94:6f:40:e2:85:
b6:63:40:f9:b8:53:bc:67:17:4b:73:97:c7:0c:db:
3e:e1:07:01:2b:b1:73:73:bb:99:78:65:9f:87:eb:
c6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:0D:BC:73:8F:50:77:D1:83:1D:9E:45:0B:13:07:D2:1C:BC:74:55
X509v3 Authority Key Identifier:
keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:6c:74:fa:86:75:08:cb:e8:d0:e3:c2:8c:e5:16:4c:b1:0d:
7c:b2:ea:34:5e:35:12:e6:56:e4:58:1d:30:09:32:3e:8a:9b:
f9:d0:66:8e:79:3c:d4:b2:6a:2f:45:45:ea:ec:88:8e:4c:a8:
d9:ba:c0:fb:0f:c6:6c:8c:f2:d5:3f:5e:60:53:46:a9:b0:74:
bc:1c:aa:fb:fb:89:8e:e8:74:3b:1a:f2:bb:d7:be:f5:8d:7a:
88:50:82:0f:2e:46:fd:47:c4:37:a6:a5:27:75:15:37:1a:08:
ee:3d:8a:ec:3e:bb:e4:01:96:82:66:c9:6b:3b:98:4e:3f:04:
ba:03:82:a1:63:c8:89:78:e0:0e:24:3f:00:a4:b1:ed:a5:e0:
d5:0c:68:86:79:d8:b0:bb:28:03:fc:ab:db:19:f9:c6:7c:19:
3b:5c:17:8d:4a:4e:c5:e3:de:c4:96:6d:aa:2b:e1:66:74:0d:
2f:f1:b6:11:fa:f9:46:36:47:17:e4:8d:96:78:eb:6a:fc:65:
b9:83:c4:f3:87:31:9e:6c:80:e3:61:60:b3:6f:58:5f:d2:b7:
5d:4d:c2:f6:81:a9:18:2c:91:32:3e:c5:2d:8a:74:e2:83:85:
d2:6a:cf:5e:1e:f5:31:aa:47:bf:fd:19:5a:68:89:dd:e3:28:
aa:09:02:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 13:38:51 2025 by rpki-client