Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
File: oixSeMS7sCbhL_12C-rFn8FV_CU.mft (raw, json)
Hash identifier: KY9I+jSeBlvJt3MxPi0TiJhCYlTkV33VwJLDtPYS+3s=
Subject key identifier: 0F:F4:D9:D1:2E:94:E1:80:12:F5:87:1E:F3:41:AD:D0:F9:1C:31:31
Authority key identifier: A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25
Certificate issuer: /CN=a22c5278c4bbb026e12ffd760beac59fc155fc25
Certificate serial: 0197B6A1E6C930761D5FA95017162CF0B033
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
Manifest number: 0A21
Signing time: Sat 28 Jun 2025 13:02:32 +0000
Manifest this update: Sat 28 Jun 2025 13:02:32 +0000
Manifest next update: Sun 29 Jun 2025 13:02:32 +0000
Files and hashes: 1: P8h8nlnz4dD4fkTghoS9unFyKig.roa (hash: MYpmJNo5HIfucuzKcNdlv0aQadbbtMqL8vbh/XHclWY=)
2: oixSeMS7sCbhL_12C-rFn8FV_CU.crl (hash: 9k9V2oYiYNFNvrHd+lU4jVtp6BUD1CaE+gFn4IVPnlU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:e6:c9:30:76:1d:5f:a9:50:17:16:2c:f0:b0:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a22c5278c4bbb026e12ffd760beac59fc155fc25
Validity
Not Before: Jun 28 13:02:32 2025 GMT
Not After : Jun 29 13:02:32 2025 GMT
Subject: CN=0ff4d9d12e94e18012f5871ef341add0f91c3131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:64:55:11:0a:5a:97:b5:86:f4:09:99:37:7b:
ea:66:ad:aa:08:19:2a:81:62:8f:db:25:3e:a8:2c:
5b:63:ca:2a:95:bf:a3:a6:16:2c:b5:cc:52:92:35:
e4:de:3f:84:c4:d8:79:2c:bf:87:bd:70:c3:5b:c7:
31:60:33:03:11:5a:6d:9d:13:40:7c:07:a2:66:e8:
04:3b:aa:86:22:57:ac:73:7e:94:63:31:7c:4a:97:
72:25:0b:21:84:96:70:57:89:90:a6:25:c2:73:1f:
bd:49:a8:43:84:9c:63:5e:25:78:57:79:8a:65:14:
6e:c5:22:f8:d9:c3:d4:4e:4f:7d:d7:cd:df:84:41:
93:dc:18:e2:e7:94:68:f7:a8:72:fa:b1:68:74:11:
19:53:8e:aa:19:30:93:37:5e:3a:09:99:4b:2e:99:
e8:33:9e:66:cd:ba:6f:73:ec:d6:fb:d4:d9:97:49:
93:ae:c3:d0:5a:85:5c:9b:08:bd:bf:59:43:23:56:
af:97:4b:cd:78:31:c9:d7:de:a1:ef:85:5e:bc:dd:
12:3f:3d:bb:f4:33:ae:35:49:f4:c5:7d:65:0e:97:
ce:e2:53:5c:8b:92:21:78:5d:f7:05:c1:08:33:be:
51:7a:5f:94:79:48:8e:6d:f4:bf:2c:35:17:fc:7b:
41:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F4:D9:D1:2E:94:E1:80:12:F5:87:1E:F3:41:AD:D0:F9:1C:31:31
X509v3 Authority Key Identifier:
keyid:A2:2C:52:78:C4:BB:B0:26:E1:2F:FD:76:0B:EA:C5:9F:C1:55:FC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oixSeMS7sCbhL_12C-rFn8FV_CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/afcbad-c126-4f8e-bd22-492b60343a70/1/oixSeMS7sCbhL_12C-rFn8FV_CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:0d:5d:dd:7f:a1:04:d0:c3:0b:e3:bb:64:79:dc:00:94:9d:
46:29:f6:a5:0d:4d:56:45:2e:43:2b:9a:2b:75:70:f8:91:2f:
1b:66:f8:f6:c9:0b:6b:71:45:ad:2b:ec:a2:be:6f:44:51:a7:
a1:88:9a:96:ca:d5:bc:da:21:6a:b6:bc:29:e6:ba:6f:2e:87:
6b:f7:db:4d:2a:8e:93:c0:1b:90:47:5a:3e:0e:c3:00:ed:82:
5e:d9:8d:1e:af:0b:b2:14:c8:49:03:a4:23:90:70:18:94:6d:
db:57:6d:a5:10:b9:ff:47:68:8d:bc:ed:45:de:34:e5:06:19:
d2:d0:29:87:85:05:68:d0:ca:ef:14:78:a2:94:7d:f3:18:77:
29:ce:89:02:76:f8:dd:4b:bf:6a:49:62:80:be:25:98:d0:dd:
88:80:12:83:12:62:ee:45:f8:0f:12:36:f6:d8:a1:32:2f:5f:
fd:4a:3d:36:5b:25:9b:af:15:86:11:38:21:e2:3a:47:30:58:
32:e8:14:03:d1:24:3a:6c:48:62:2d:55:e5:20:42:f0:6d:83:
f4:85:ba:50:5b:7d:0a:e5:b2:8d:53:d3:51:32:58:6b:12:d2:
04:3f:3e:aa:b1:2c:ab:7f:b7:f8:71:2a:1a:5c:a0:46:c1:30:
3d:15:63:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:09:48 2025 by rpki-client