Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
File: oev1TQKO5HZPYveK2HHb8CYih4g.mft (raw, json)
Hash identifier: aXvhkIk4k8R0sIhiHRIMFiV8Jy39iLCWJg/EqanEseY=
Subject key identifier: BA:E1:3F:19:A8:65:10:2E:00:A4:48:E6:BD:DE:7F:31:67:9F:BA:82
Authority key identifier: A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
Certificate issuer: /CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Certificate serial: 0197B745A4CDE7A6C4A1B3CBCC0038B4A174
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
Manifest number: 02FF
Signing time: Sat 28 Jun 2025 16:01:24 +0000
Manifest this update: Sat 28 Jun 2025 16:01:24 +0000
Manifest next update: Sun 29 Jun 2025 16:01:24 +0000
Files and hashes: 1: 0BmC-81HN_hGVStiVWyBsG7yPOQ.roa (hash: 1DBUkLbwQ3sH8OPXtfdrx6wa0RdQ3lqLVqMY8QCHCK8=)
2: 58QzCphRddJsBqi71H5oisOTtGM.roa (hash: K7oZA9oPzuB3kuDmCdohN1gPlNbeKKgYedD/MB4pxbM=)
3: K5VqopWIERNLlg6XYIHxbSMQwf8.roa (hash: 6CqhTE0o4WqNXO4cXlNrVv+QBipio9ZfLg1pbcvRhvU=)
4: Qt9hOGMkdfDH8ID_bHwfLmJlE60.roa (hash: ARZiY2rT8rE43lKmT9EIHjzaS4HpYkA+YcbbFMZTS4E=)
5: oev1TQKO5HZPYveK2HHb8CYih4g.crl (hash: 30qTJDgyfOxvuJQUddd+h3CiYCWjco2Rw5cmtLUuVoQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:a4:cd:e7:a6:c4:a1:b3:cb:cc:00:38:b4:a1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ebf54d028ee4764f62f78ad871dbf026228788
Validity
Not Before: Jun 28 16:01:24 2025 GMT
Not After : Jun 29 16:01:24 2025 GMT
Subject: CN=bae13f19a865102e00a448e6bdde7f31679fba82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:48:32:ad:8b:42:51:79:6a:2a:36:a7:8a:21:
1f:8e:e7:e7:8f:c3:8f:dd:bb:82:42:db:64:45:2a:
65:1e:52:7f:75:f5:75:86:9c:5d:16:e1:3a:55:eb:
b1:68:bd:a3:05:91:75:30:dd:4c:82:b9:7d:90:15:
66:3d:28:b0:38:89:45:a6:8b:06:90:30:f2:7b:bf:
eb:e6:93:90:fb:db:07:4c:7c:97:63:46:95:b6:65:
28:23:15:1b:8e:b7:42:9b:9f:04:ce:31:48:8d:e3:
25:db:3b:3e:95:c7:b6:93:48:1a:19:e5:af:d4:05:
72:a6:f3:ae:51:03:27:77:fa:29:85:b1:30:51:40:
aa:cc:8c:bf:75:48:03:35:c6:c6:ce:af:6c:7d:19:
0b:30:52:38:dc:59:d8:d7:c2:e0:a0:ff:b4:4d:11:
0a:2d:9b:b4:c7:81:84:3a:2d:da:4c:24:b3:7f:22:
19:ca:c8:d2:73:e3:14:44:9a:ec:c9:3a:ea:70:31:
46:96:22:4f:7d:c7:10:fd:6d:22:43:b2:43:bb:ad:
9c:cb:77:02:8c:76:9f:14:36:94:6e:d8:bc:2b:4a:
fb:fd:c4:1f:38:88:a5:30:6a:36:b7:be:c4:3a:54:
f4:d9:89:f3:6e:3c:32:7f:18:e7:37:01:d8:cb:a5:
2d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E1:3F:19:A8:65:10:2E:00:A4:48:E6:BD:DE:7F:31:67:9F:BA:82
X509v3 Authority Key Identifier:
keyid:A1:EB:F5:4D:02:8E:E4:76:4F:62:F7:8A:D8:71:DB:F0:26:22:87:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oev1TQKO5HZPYveK2HHb8CYih4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b172a-61d1-420c-a3dd-47a5bf5b313d/1/oev1TQKO5HZPYveK2HHb8CYih4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:be:de:84:43:22:c6:ed:54:d4:1a:c3:87:e0:b0:1e:18:90:
47:10:83:58:28:d4:e5:c8:b7:f9:94:db:3b:c8:7a:7d:7a:65:
15:5c:c5:00:d5:6c:53:7c:f6:2e:0d:43:06:14:4b:a2:57:31:
64:5d:42:d8:10:a9:28:d4:f3:e6:86:e2:03:8a:40:8d:13:b2:
84:50:d2:7b:56:11:73:59:57:43:c4:f5:f8:bf:b1:99:c8:20:
eb:05:09:d2:35:14:2d:7c:7b:f9:e8:45:de:69:cb:a0:d5:f5:
a2:03:5a:98:46:c1:c7:9c:88:dd:7f:bb:10:4d:d3:4a:14:62:
44:9b:4a:11:4f:26:3a:a9:70:d9:86:4a:8c:eb:84:30:44:24:
35:29:05:21:d1:12:c7:e7:12:d0:34:b6:8a:c2:54:38:e0:99:
23:ff:e9:80:3c:77:ed:0c:70:7c:6d:b3:1c:b4:73:dc:3a:ec:
b3:d8:96:dc:1d:e8:d6:b5:20:97:a1:38:66:c7:46:52:51:ae:
a4:b4:5e:ef:5f:64:ab:c1:b8:61:54:dc:d9:56:82:c4:aa:59:
a7:62:3c:b8:96:81:8a:d3:3b:7a:cf:40:d0:82:a6:f7:d4:59:
5f:26:29:c0:c9:98:04:d3:83:17:7b:54:84:bc:04:12:a4:da:
89:1f:a8:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:28:07 2025 by rpki-client