Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
File: oKrlhQo22yiCKmwa_F_6z_AH7vI.mft (raw, json)
Hash identifier: 9cdRX831rNuLe3VvmulwsGiesjuyyGYz0TqUZAHOenI=
Subject key identifier: 0A:EE:F4:0A:46:B7:64:88:A4:22:AE:3C:4A:A5:C4:D9:4C:92:CA:A3
Authority key identifier: A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
Certificate issuer: /CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Certificate serial: 0197C3B764C198CA4E2CF39FA15F69E1BF0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
Manifest number: 08B2
Signing time: Tue 01 Jul 2025 02:01:05 +0000
Manifest this update: Tue 01 Jul 2025 02:01:05 +0000
Manifest next update: Wed 02 Jul 2025 02:01:05 +0000
Files and hashes: 1: oKrlhQo22yiCKmwa_F_6z_AH7vI.crl (hash: 7IaRzmq2OrB5PmUxucruE/2xL1uwNK90f0Mtyzcdoyg=)
2: vPivcilO-E_vThnuw1Jbeo7vl7Q.roa (hash: ue62obgrVIotq1vJM56av/nq50vzkGkDbEL5zd0kvpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 02:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c3:b7:64:c1:98:ca:4e:2c:f3:9f:a1:5f:69:e1:bf:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Validity
Not Before: Jul 1 02:01:05 2025 GMT
Not After : Jul 2 02:01:05 2025 GMT
Subject: CN=0aeef40a46b76488a422ae3c4aa5c4d94c92caa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cd:61:fd:73:d8:4f:fa:0c:ba:36:dc:96:c7:
57:f9:7e:1a:7c:40:ee:39:0f:13:98:b1:2d:40:2e:
9d:6b:96:b0:df:2d:8c:96:7c:29:74:45:ab:23:59:
75:0c:cb:63:6e:99:15:c9:b0:74:d6:2f:08:18:13:
78:32:98:7b:e0:44:7f:d1:4f:d1:dc:70:50:90:58:
a5:a7:cb:86:37:17:cc:cc:ce:7c:a1:c7:c6:de:69:
35:8f:70:62:fb:e7:29:ae:ba:f1:19:9c:de:8e:81:
cd:10:98:52:a3:71:f5:c9:74:eb:f0:07:df:6f:ea:
f1:53:a1:8b:10:77:92:2e:cd:39:bb:9b:5c:e5:59:
17:63:03:41:99:b2:d1:bd:b1:1b:1c:be:52:d7:2c:
e6:68:f0:10:28:1b:0e:4c:ed:e3:5b:22:ba:06:21:
56:b4:7b:a4:ab:be:f8:ab:a7:41:39:a9:63:49:4a:
86:62:69:2d:d9:e6:1b:6f:81:72:1b:65:8f:3e:30:
8c:49:dd:1f:9c:e8:18:87:d7:b7:f2:15:b9:96:78:
51:2e:91:f6:28:f4:52:ad:eb:05:58:cc:89:4d:4e:
02:b0:26:1e:1d:1a:07:eb:a6:16:b8:66:ef:ca:de:
5b:04:5d:94:77:74:2a:fb:e1:40:7a:f7:72:1d:a7:
32:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:EE:F4:0A:46:B7:64:88:A4:22:AE:3C:4A:A5:C4:D9:4C:92:CA:A3
X509v3 Authority Key Identifier:
keyid:A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:44:52:ee:bf:15:1c:18:cf:76:62:c7:85:48:8a:a9:01:34:
8c:21:c6:fc:0a:82:cc:3b:d9:fa:b1:c1:d6:4d:fa:44:76:1a:
e8:77:ec:4c:4c:99:45:c1:cd:6f:d5:db:1d:15:bf:4c:63:92:
ba:a9:ce:c3:ba:a9:28:35:8a:4f:09:8f:93:51:69:79:2b:61:
1f:89:55:2c:3b:39:54:4d:d3:97:eb:1c:a4:39:5a:70:ca:65:
a3:1d:a5:0a:81:31:fc:27:7c:e9:19:0c:72:5d:e3:79:9b:1c:
cf:2d:8d:a1:a9:75:d1:51:50:e1:ce:0e:57:83:80:0e:40:b4:
ae:14:f8:2d:86:f4:dd:bb:c8:05:6a:f3:a7:7d:9f:d9:2a:46:
2f:0f:8f:13:21:d2:f7:a1:ec:59:6d:0e:23:65:2c:4f:b2:66:
65:a0:22:4f:c3:06:7d:c9:05:51:e3:9d:38:ba:d5:0e:32:aa:
31:bf:83:3b:b1:34:5c:13:3d:79:83:d7:41:25:1b:8d:89:d8:
3d:0f:ab:30:35:0c:7f:90:75:10:a4:f8:ed:00:41:34:a9:5e:
f6:2a:c3:0e:72:f6:f0:dc:92:7d:cc:88:8e:b5:16:13:07:ec:
6c:5c:55:b5:45:0e:5b:57:f2:ee:25:54:74:4b:4d:5f:03:1f:
96:7c:54:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 09:53:13 2025 by rpki-client