Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
File: oILdW4b5WNW-c_2-PwzPbf8C9yE.mft (raw, json)
Hash identifier: TS3WHZnhI0tiFKJ9se5mHr+GenIm9W2sGhlzgd/45OQ=
Subject key identifier: 25:D0:05:E1:FF:D1:69:BC:E2:0E:2A:5A:C7:95:F3:E7:99:07:31:12
Authority key identifier: A0:82:DD:5B:86:F9:58:D5:BE:73:FD:BE:3F:0C:CF:6D:FF:02:F7:21
Certificate issuer: /CN=a082dd5b86f958d5be73fdbe3f0ccf6dff02f721
Certificate serial: 0197BBC6FB3905A802D5311628FC43FE29C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
Manifest number: 15B8
Signing time: Sun 29 Jun 2025 13:01:09 +0000
Manifest this update: Sun 29 Jun 2025 13:01:09 +0000
Manifest next update: Mon 30 Jun 2025 13:01:09 +0000
Files and hashes: 1: PKIB0NDZswSqU-d6MbwA9JZfGMk.roa (hash: OewUcdT2Rw4jRK7U2p1ljpQHoVklDy1bcntiR+wXIOw=)
2: oILdW4b5WNW-c_2-PwzPbf8C9yE.crl (hash: kigRiMN+WfeHspR+J6hsz+bMQfx1O3I3F7fU9O9LH78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 07:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bb:c6:fb:39:05:a8:02:d5:31:16:28:fc:43:fe:29:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a082dd5b86f958d5be73fdbe3f0ccf6dff02f721
Validity
Not Before: Jun 29 13:01:09 2025 GMT
Not After : Jun 30 13:01:09 2025 GMT
Subject: CN=25d005e1ffd169bce20e2a5ac795f3e799073112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:64:3d:99:dc:b3:98:66:3d:08:c7:37:be:59:
bf:71:43:dc:06:3e:26:b0:c9:98:74:f3:37:c8:47:
4b:91:e8:67:70:be:ed:4d:ec:6c:41:c8:39:81:97:
34:a4:60:48:14:a3:6a:52:ae:a0:cb:f0:73:5d:25:
bd:dc:67:b6:3d:10:f4:82:bd:e4:cf:1f:a6:6b:5f:
38:d9:14:60:56:32:2b:bb:b9:db:bf:46:6b:78:ce:
43:db:6e:c6:5c:fb:5f:1d:18:e8:1e:97:54:1a:1c:
db:d9:f5:6b:30:46:e1:53:77:66:36:18:25:83:cf:
79:d3:ff:fc:54:4b:85:73:34:b3:26:87:5d:f0:14:
a8:a6:d3:75:22:dd:d6:55:36:a2:0d:68:ed:58:87:
28:e0:22:e6:b1:89:de:fe:a2:84:6a:52:3c:d0:f8:
b5:e1:d6:17:4f:5b:2f:f2:01:f6:8f:ef:33:60:ae:
7c:1c:45:c0:5a:52:c0:89:9d:d9:17:2b:f2:a9:aa:
8f:44:e9:9b:e0:44:ac:ae:de:a4:21:02:70:5f:65:
2a:de:20:86:87:db:86:5b:66:c1:8e:75:43:d3:d0:
7c:dd:e9:08:cc:47:5b:64:59:91:cf:95:fd:0e:cd:
93:c5:a7:7c:41:49:c1:66:a6:7b:d6:86:56:58:be:
78:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D0:05:E1:FF:D1:69:BC:E2:0E:2A:5A:C7:95:F3:E7:99:07:31:12
X509v3 Authority Key Identifier:
keyid:A0:82:DD:5B:86:F9:58:D5:BE:73:FD:BE:3F:0C:CF:6D:FF:02:F7:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oILdW4b5WNW-c_2-PwzPbf8C9yE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7279d6-f952-4e35-9796-f303de4a2d5e/1/oILdW4b5WNW-c_2-PwzPbf8C9yE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:fe:bc:ef:91:d8:df:9a:a2:95:12:fb:f5:3a:94:c0:48:0b:
fc:94:69:9e:c8:ee:69:af:29:59:c8:be:e1:8f:ca:88:76:33:
72:8a:93:52:18:97:90:62:6c:c4:aa:c6:5f:4d:97:5f:ec:58:
ad:4e:37:25:23:53:f4:82:e2:84:86:07:8d:1b:f8:df:57:4c:
a8:00:b4:d2:c2:e3:a4:d0:3c:65:25:76:93:be:ac:8e:24:20:
3e:b0:d9:9f:a5:a2:7d:47:2e:4a:35:f1:af:74:27:54:6b:29:
9d:7d:9f:ac:33:4e:56:ca:c2:a8:ee:52:dc:3b:64:cf:b7:5e:
d0:ad:2d:29:b6:04:21:88:0a:d0:2b:30:18:75:70:91:2f:1f:
56:35:42:52:af:54:10:be:87:0e:8d:75:69:12:92:70:c3:d9:
b0:61:94:d3:43:9f:62:f7:76:65:87:72:17:13:e3:40:1a:6a:
a3:61:3f:6e:06:2e:e8:2f:cc:9e:71:f4:4a:3c:13:b1:dc:fd:
87:7f:97:e5:d5:62:f1:70:47:fe:f4:5e:32:76:16:eb:0d:8d:
93:68:12:d7:37:53:42:3e:98:10:e3:a9:08:5d:3c:39:fc:a1:
81:ab:81:a6:50:9e:9a:b1:37:8a:e9:fd:7b:95:cb:7f:ba:b2:
3c:2e:ac:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 16:54:45 2025 by rpki-client