Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
File: o4v4pSbaAFbVPHKfvP7bivH0hJs.mft (raw, json)
Hash identifier: HODLYOIUBX7Gab6M96gav6m7ylBSkBubG9JZGylyqys=
Subject key identifier: 45:D5:64:09:71:76:32:89:0B:B9:BF:CF:E5:1D:E2:D5:02:FC:42:9C
Authority key identifier: A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B
Certificate issuer: /CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b
Certificate serial: 0197B8908812A22BBEA8D75D849F4CA4F8B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
Manifest number: 037E
Signing time: Sat 28 Jun 2025 22:02:49 +0000
Manifest this update: Sat 28 Jun 2025 22:02:49 +0000
Manifest next update: Sun 29 Jun 2025 22:02:49 +0000
Files and hashes: 1: o4v4pSbaAFbVPHKfvP7bivH0hJs.crl (hash: iLSAJw1qo/Dr5/31B4uOU6Q5gjkwPumWpYNqWMPd9TU=)
2: p2sBhjkKrSOlFMpQrw-wv6_TqKg.roa (hash: ldQS4P3nrNFNOkVsta5Vmi47wIthwLabohDFSWJ5xpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:88:12:a2:2b:be:a8:d7:5d:84:9f:4c:a4:f8:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38bf8a526da0056d53c729fbcfedb8af1f4849b
Validity
Not Before: Jun 28 22:02:49 2025 GMT
Not After : Jun 29 22:02:49 2025 GMT
Subject: CN=45d56409717632890bb9bfcfe51de2d502fc429c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:da:61:fd:67:8e:58:fe:5c:58:e1:0f:11:6f:
43:fc:d9:95:75:a0:d1:66:c9:83:86:2e:b4:66:44:
6f:4b:8d:d3:42:fb:01:da:78:53:9b:cc:0f:48:96:
ea:04:b1:b9:0e:97:62:ac:33:27:a7:5e:fa:b2:00:
dd:6a:22:9c:f7:a3:38:32:06:b0:87:88:b4:cd:44:
47:81:8f:cf:26:1b:91:ea:18:44:78:15:ff:a6:5f:
87:9b:51:8f:f9:05:49:8f:a8:3b:cb:9d:8e:22:fc:
ec:b4:a6:06:ad:e0:4a:da:42:e3:b0:a5:4c:59:53:
d1:d7:88:aa:a3:54:5f:54:96:c6:d7:f0:d6:9c:2f:
99:55:6d:9a:3e:56:9f:13:0f:de:50:47:f9:a9:37:
e5:d9:09:cb:ed:2b:4b:42:10:c8:d5:2b:3e:44:c5:
69:88:05:84:80:51:2b:d3:b8:d8:3e:e3:5b:85:c2:
2e:fd:de:0e:2c:e4:d4:18:96:20:9d:74:2a:ea:e7:
b0:14:2f:b2:70:8a:76:68:0f:4c:44:ee:95:a7:88:
84:be:d1:0d:f2:df:27:0f:e4:d7:8b:b0:73:0b:1b:
f4:b7:e3:6a:62:69:40:7f:76:b3:0b:52:36:a2:46:
7b:62:36:70:df:c8:c9:7d:67:a7:5f:bc:05:f0:b4:
a3:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D5:64:09:71:76:32:89:0B:B9:BF:CF:E5:1D:E2:D5:02:FC:42:9C
X509v3 Authority Key Identifier:
keyid:A3:8B:F8:A5:26:DA:00:56:D5:3C:72:9F:BC:FE:DB:8A:F1:F4:84:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4v4pSbaAFbVPHKfvP7bivH0hJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/def10a-bd53-4793-b1a8-604b47261476/1/o4v4pSbaAFbVPHKfvP7bivH0hJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:89:f0:3b:07:b2:b3:40:cb:f3:26:45:bd:23:cd:2c:8e:aa:
74:57:6d:c4:21:a9:33:2a:0c:3e:2b:ba:6b:56:7f:29:f7:57:
bd:48:f5:f2:04:f2:c0:7c:d3:66:ee:2f:8d:01:9f:3b:e7:1f:
2f:03:13:f0:3b:94:18:2e:c5:5f:83:4f:21:58:2f:11:99:50:
78:72:a7:2c:ce:32:5a:1c:74:51:01:a9:fa:f9:1c:aa:06:14:
7c:40:33:eb:ea:63:48:31:99:c9:43:75:54:81:64:8d:87:69:
cc:fd:22:8e:c7:a9:e7:2b:41:51:3d:85:45:0f:00:43:6a:d0:
f0:02:07:9c:37:00:19:0c:47:52:21:81:5c:33:8d:6f:1d:de:
6c:df:bc:b5:0a:53:4f:e1:4e:f6:f1:bc:fe:75:aa:8f:2a:7a:
b4:00:13:98:b4:8b:ab:f1:16:f9:2a:e9:8b:b3:60:30:b9:27:
8c:a8:24:9a:9e:cb:77:d3:5f:39:62:df:e1:84:eb:3e:7a:fc:
75:13:82:ee:4e:2b:5d:c9:61:2f:3a:96:8d:f3:96:e6:e1:b0:
98:82:9b:b2:cb:6b:b6:5d:af:85:09:2b:33:29:b8:24:29:a4:
4d:10:89:cf:13:dd:47:9c:00:a3:80:77:b1:7d:2a:8d:b0:37:
8c:53:aa:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:20:07 2025 by rpki-client