Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
File: oAy0uNVpR3USzleIW6aiiY-8LZU.mft (raw, json)
Hash identifier: ObrDj59ral2dJYfHxFKfbS8UZ79RIHtwoJhfjh+ejvA=
Subject key identifier: BD:1F:15:36:9A:F7:F3:9A:53:FF:08:AF:B3:A9:16:B2:F4:2C:A3:67
Authority key identifier: A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95
Certificate issuer: /CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95
Certificate serial: 0197CB39F9677AD3A144EA23C66F5EDFF332
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
Manifest number: 10C7
Signing time: Wed 02 Jul 2025 13:01:03 +0000
Manifest this update: Wed 02 Jul 2025 13:01:03 +0000
Manifest next update: Thu 03 Jul 2025 13:01:03 +0000
Files and hashes: 1: RDMJmsptAt79z1bZNxCRYGoDbOA.roa (hash: psHiDB3pvgN7EOgCxCvfgOl6kkNmShVGm0R8glPdahE=)
2: oAy0uNVpR3USzleIW6aiiY-8LZU.crl (hash: o4+/cFf5lxZP2RiS7WkzHqXFNDeLU15oqHKyeqryfOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:39:f9:67:7a:d3:a1:44:ea:23:c6:6f:5e:df:f3:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95
Validity
Not Before: Jul 2 13:01:03 2025 GMT
Not After : Jul 3 13:01:03 2025 GMT
Subject: CN=bd1f15369af7f39a53ff08afb3a916b2f42ca367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fb:e9:63:9f:7c:56:0f:5f:25:4c:ff:26:af:
6f:4d:57:45:3f:51:f7:06:43:cf:dd:2b:7d:6e:10:
3b:68:76:a8:ef:c5:38:ef:73:e6:9d:9f:f7:e8:0b:
65:b6:52:ce:3c:15:cf:5b:de:da:d9:77:c2:86:cf:
bd:b4:8e:0f:be:5c:dd:7a:9f:e8:07:f8:d0:f0:30:
7a:db:bf:49:3c:c5:e0:fa:e1:34:d1:a3:47:79:4d:
7c:04:a9:28:62:4d:e9:24:7c:5b:6d:49:2c:30:98:
d4:e7:18:c4:fc:63:08:5c:69:38:97:1c:c4:af:43:
21:fd:80:cb:7a:b7:38:bd:7d:e5:8b:b2:f1:f7:9e:
a7:f0:80:30:a5:9c:12:39:a5:8b:71:31:ff:70:9c:
66:ca:cc:93:41:d3:79:cc:23:64:72:b6:04:97:7d:
6e:c2:ee:00:d4:50:08:08:c7:9f:6e:0c:7d:c5:e3:
8a:d0:85:f0:f7:f3:17:47:48:17:75:5e:6e:e8:a7:
45:a4:32:74:30:5f:ab:8c:dd:03:e5:56:db:b5:fb:
66:a1:b0:7b:41:fc:e3:a0:aa:1e:f0:b3:a9:b4:b0:
bb:dc:84:0b:00:1c:e3:3e:91:16:29:0b:79:38:19:
70:ed:d8:5a:e0:4f:5e:52:51:2b:1a:93:b0:61:76:
ae:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:1F:15:36:9A:F7:F3:9A:53:FF:08:AF:B3:A9:16:B2:F4:2C:A3:67
X509v3 Authority Key Identifier:
keyid:A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:b4:d9:17:d6:06:88:99:ae:33:e5:8d:39:bc:c1:15:ad:3b:
a3:b2:f2:71:6d:0c:e8:80:eb:d9:86:59:97:f1:20:50:2d:3c:
69:be:e1:b9:89:2f:ef:d6:9d:43:75:78:24:e1:b6:c6:89:29:
70:fb:a5:fa:83:3b:ca:34:d7:0a:c5:be:5c:a1:85:c8:8d:1a:
e8:bc:9c:70:8b:8d:50:1f:e2:12:80:48:c0:31:5c:02:92:b2:
ce:2e:c5:b6:37:a9:1a:34:92:95:ec:4e:bf:a5:10:92:a8:74:
20:02:85:29:9d:ca:79:01:48:16:4b:13:60:13:9c:50:5f:b3:
be:b9:2f:12:92:7a:48:32:b5:2a:f7:bc:12:91:75:e4:a7:85:
a3:68:ee:06:aa:49:b6:64:7a:15:c4:94:31:2d:02:a5:88:95:
72:22:d2:69:5b:81:d9:22:1d:95:2f:d2:4d:18:95:dc:b5:a5:
b1:07:91:85:28:33:0e:c6:70:89:f6:d2:b9:d3:0c:b4:8f:bb:
95:16:d3:c8:d5:a8:e4:d2:28:3a:7a:6a:72:b0:92:94:95:04:
e6:ad:64:1a:a8:3b:45:2a:58:4f:5d:02:47:44:20:ff:ec:d8:
00:98:af:d2:5b:fd:8d:43:ec:bf:6f:df:70:fa:19:16:49:f8:
20:52:04:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 19:30:28 2025 by rpki-client