Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
File: oQIHcvYouPtR80dRNrd_60smmL4.mft (raw, json)
Hash identifier: RS9+EO8PtconChMIziPNR1TxMF9LGUe16LFegWb60Ak=
Subject key identifier: B9:81:05:CA:E8:B3:E0:F6:14:9B:1C:D8:E1:3A:01:D7:51:A8:21:6C
Authority key identifier: A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
Certificate issuer: /CN=a1020772f628b8fb51f3475136b77feb4b2698be
Certificate serial: 0197B820C9A3D6F330AA082F0CDCE89E0ED4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
Manifest number: 11FE
Signing time: Sat 28 Jun 2025 20:00:45 +0000
Manifest this update: Sat 28 Jun 2025 20:00:45 +0000
Manifest next update: Sun 29 Jun 2025 20:00:45 +0000
Files and hashes: 1: Xn7HlAmazqZObEY4Svfv4ZbMChM.roa (hash: 900LVbegyuqsxm1Su/VFGub5Wi1DlW68cWbr8g1USwo=)
2: oQIHcvYouPtR80dRNrd_60smmL4.crl (hash: 2Mo5CXwihyl88j0nw/cA5aitBoi2wBar2i7RQFwlOa0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:c9:a3:d6:f3:30:aa:08:2f:0c:dc:e8:9e:0e:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1020772f628b8fb51f3475136b77feb4b2698be
Validity
Not Before: Jun 28 20:00:45 2025 GMT
Not After : Jun 29 20:00:45 2025 GMT
Subject: CN=b98105cae8b3e0f6149b1cd8e13a01d751a8216c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:99:9f:4d:c0:64:a3:f2:16:65:39:07:c5:b6:
d2:9e:23:be:ed:9c:f9:e7:23:35:bc:58:1a:66:79:
38:2a:0d:77:de:ed:a1:b9:63:06:28:0c:43:32:50:
85:66:71:23:8a:e8:e7:8f:f1:9d:7c:ee:98:3b:29:
22:3d:f2:3c:e0:81:53:d0:ba:92:c3:79:f7:68:03:
4d:9d:33:ba:49:94:39:61:f9:24:7d:67:fc:d0:2a:
8b:a4:d1:50:1b:7f:45:ba:3b:89:54:80:7c:27:ed:
71:89:07:10:68:05:be:00:ff:fa:61:f5:d0:03:73:
2b:9a:c0:c3:b4:43:bf:10:23:6e:14:5f:aa:02:19:
3c:96:1f:56:5d:65:6e:d3:eb:b9:64:c2:f6:4b:fc:
e3:f9:0c:02:02:87:12:a6:0d:92:4c:85:e7:35:7b:
7a:af:83:2f:4c:be:4a:59:13:ef:64:84:cf:af:e5:
24:e7:1d:c1:b3:fa:74:75:4d:43:16:66:80:27:e3:
78:2d:07:71:32:f6:18:34:85:41:e7:b5:e7:81:1d:
10:9c:07:17:21:44:26:c8:7d:f4:2a:94:04:c3:04:
1a:f9:1e:76:e4:c2:64:4d:f7:b6:cc:1d:39:b4:1b:
9a:f8:7b:7e:5f:49:37:9f:ab:90:26:93:a7:df:4f:
a9:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:81:05:CA:E8:B3:E0:F6:14:9B:1C:D8:E1:3A:01:D7:51:A8:21:6C
X509v3 Authority Key Identifier:
keyid:A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:dd:d9:fb:70:a2:eb:89:ef:ca:65:fd:44:9c:f8:85:67:35:
7c:26:1c:f0:6e:79:75:48:b5:c9:b6:fb:e6:63:3a:ba:d2:1e:
a0:3a:6c:07:55:7a:29:de:12:ad:9b:d2:03:0b:93:22:4e:91:
6c:fa:7a:09:e6:41:16:91:78:66:7b:85:a6:8f:75:36:9f:e4:
02:f3:46:e7:19:02:82:a9:2e:5e:0e:7d:76:4d:c9:47:b8:34:
fc:9e:c0:eb:dd:d3:ea:4e:c7:ae:34:61:f1:cb:25:cd:12:12:
4a:15:48:b9:ae:a2:7f:96:46:54:fc:f1:ff:4d:b5:f9:87:d5:
53:d7:27:52:45:88:62:12:6b:0a:89:da:4d:58:53:e2:52:5a:
e2:9f:09:08:7b:99:e5:73:b6:35:a0:4d:46:7c:2a:02:b2:e2:
9c:da:3e:45:d0:69:ab:fa:03:c7:19:1a:89:f2:4d:02:1e:ce:
ac:04:0b:c2:ab:75:f2:82:01:a5:d5:0c:0b:21:ca:50:8b:35:
44:19:c8:d1:5a:8c:e4:93:b1:68:cb:8a:cf:cb:18:78:e4:cb:
ed:fe:de:e7:56:93:00:4b:2e:9c:3f:83:21:cd:8f:80:67:0c:
67:0e:80:68:a6:6d:fa:1c:74:77:39:39:d9:06:b1:ad:a9:23:
97:17:b9:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:05 2025 by rpki-client