Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
File: oYanahiZ2_kCnhrv2QUXe7CdNo0.mft (raw, json)
Hash identifier: tGNut8UhfrttofqfeaJpkhTHNyyfASjKUchimgtOdfQ=
Subject key identifier: 03:50:73:AB:B6:26:79:DF:65:58:70:ED:AA:B1:A7:66:08:0B:A4:8C
Authority key identifier: A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
Certificate issuer: /CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Certificate serial: 0197B88F83460BB50374F9FECE05074A4FEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
Manifest number: 0A47
Signing time: Sat 28 Jun 2025 22:01:42 +0000
Manifest this update: Sat 28 Jun 2025 22:01:42 +0000
Manifest next update: Sun 29 Jun 2025 22:01:42 +0000
Files and hashes: 1: bcgHeTecNhcHR9QWO6gmvpmmI5c.roa (hash: EV6/wlUYGCbS7xEazmx8eI5Bar/BgAFt51P9o3UlOuQ=)
2: oYanahiZ2_kCnhrv2QUXe7CdNo0.crl (hash: du2xMSoT0PH95kz7wBTPmM7ISDJqN5u3bF0JQRbBLv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:83:46:0b:b5:03:74:f9:fe:ce:05:07:4a:4f:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a186a76a1899dbf9029e1aefd905177bb09d368d
Validity
Not Before: Jun 28 22:01:42 2025 GMT
Not After : Jun 29 22:01:42 2025 GMT
Subject: CN=035073abb62679df655870edaab1a766080ba48c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3c:ba:53:c4:80:d8:18:7b:3e:8e:d3:12:09:
47:d5:cd:4e:13:a9:8c:0e:77:c8:8b:6f:0c:d6:3d:
0f:7f:87:ab:ce:2f:64:bb:c2:1c:68:37:e7:f0:13:
65:02:0c:3c:b9:90:4e:10:f0:ec:fd:11:2d:8d:2d:
51:8c:ee:7f:b6:0e:e2:39:bf:88:bb:de:bc:ff:5b:
21:27:78:78:1f:82:97:8a:8e:32:32:01:b3:74:c1:
b3:3c:1a:d3:7c:1e:16:1d:28:fd:aa:f7:72:42:c3:
8e:aa:af:0f:cf:e7:bf:e3:b2:b3:29:31:71:8f:c1:
6b:d7:8f:eb:6b:11:87:af:7a:49:23:04:c0:a9:17:
3a:a2:e8:54:94:f7:4f:35:02:0f:23:41:97:70:52:
12:cc:4a:4c:17:6d:0c:4f:c7:8e:19:de:56:fb:bd:
04:8e:4c:70:5c:bc:fc:c1:74:30:fd:7e:7a:90:0a:
27:a8:c0:f9:85:0c:91:8e:7c:1e:70:49:16:72:5d:
d9:39:7c:21:84:14:a8:18:db:7e:6f:c3:6a:ab:1b:
f5:0f:93:3c:d5:a8:7d:9e:f7:30:bc:14:59:d9:48:
30:b8:e4:10:db:39:50:83:39:56:8c:fe:5b:29:14:
67:8d:9c:13:83:c3:b0:44:83:93:e6:40:7a:c7:3a:
a1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:50:73:AB:B6:26:79:DF:65:58:70:ED:AA:B1:A7:66:08:0B:A4:8C
X509v3 Authority Key Identifier:
keyid:A1:86:A7:6A:18:99:DB:F9:02:9E:1A:EF:D9:05:17:7B:B0:9D:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYanahiZ2_kCnhrv2QUXe7CdNo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8595c8-4834-4d54-a391-312e5b491146/1/oYanahiZ2_kCnhrv2QUXe7CdNo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:19:9d:61:e4:69:93:04:3d:bd:76:d7:8d:6b:07:20:3e:40:
a9:41:d0:94:95:3c:1a:e2:77:ff:34:50:34:1b:65:50:83:40:
e3:98:83:bd:ae:45:ae:e9:56:78:10:b5:c7:18:9e:d4:58:be:
42:a5:38:12:04:94:2e:80:34:4e:9d:14:cd:ae:c0:dc:a7:e9:
86:4f:c9:35:e4:2c:4f:0b:51:e7:85:0b:d6:92:eb:e2:bc:1e:
09:24:5c:69:05:df:08:f2:46:b9:2f:a9:54:2c:84:3c:26:e5:
cf:50:b4:98:30:2b:98:9d:44:fb:44:5d:e0:c7:4c:6b:64:8e:
05:5a:3f:e4:78:31:35:b6:5b:1b:f3:3a:ef:9e:47:c9:c1:91:
e4:92:dd:c9:46:74:7f:c4:c6:6f:b7:96:7a:e7:74:48:d9:26:
a2:3b:c7:b8:30:4f:66:30:a5:05:17:57:d7:bb:ad:24:43:ee:
32:de:a1:b7:d9:29:0a:f5:9e:43:8b:c5:8a:97:8b:1e:45:70:
23:1b:f7:b4:7e:f8:14:f4:f4:98:73:cd:c1:08:61:ca:d1:77:
61:43:c7:eb:e5:fd:94:e2:de:70:10:5b:26:ab:81:f5:a3:d2:
0d:07:0c:91:72:dc:f2:24:45:54:70:80:49:e3:c8:38:fb:48:
84:d4:d0:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:17 2025 by rpki-client