Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
File: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft (raw, json)
Hash identifier: 5vIi6FpRCnELjA3yJ5celb/sIFsmTozr/O2sJ/wMb/w=
Subject key identifier: 37:CD:DE:56:16:39:E4:57:D9:CA:EC:B0:E4:12:9D:4B:67:EC:69:8F
Authority key identifier: A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07
Certificate issuer: /CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07
Certificate serial: 0197B7B3158C0FE937052CA20BE54EB996EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
Manifest number: 0344
Signing time: Sat 28 Jun 2025 18:00:56 +0000
Manifest this update: Sat 28 Jun 2025 18:00:56 +0000
Manifest next update: Sun 29 Jun 2025 18:00:56 +0000
Files and hashes: 1: CmAE8B1t5vtl2bRQPtAcN7cxb3s.roa (hash: EUyII4SPPS8NnneMNy5H1gGoK71/rhaPmoIV02VhFv0=)
2: o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl (hash: idDk2UXp4lm6datNPFVZfCCWl3LIRhPe7lqPmOlzJDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:15:8c:0f:e9:37:05:2c:a2:0b:e5:4e:b9:96:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3e5999283aaf2e4395079ea3716ddfc2b130f07
Validity
Not Before: Jun 28 18:00:56 2025 GMT
Not After : Jun 29 18:00:56 2025 GMT
Subject: CN=37cdde561639e457d9caecb0e4129d4b67ec698f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:94:bc:6a:d9:5f:e5:8c:fd:a8:c0:6d:69:f9:
fa:da:b7:b6:a6:ec:23:e0:8a:7f:28:53:72:34:ee:
75:79:16:d0:b8:a7:eb:3d:07:e0:ba:33:51:ea:93:
22:f0:d2:39:8b:56:b5:d7:2d:4f:18:9b:88:e7:47:
5e:0b:fa:4a:81:f8:0d:be:dd:f3:8c:48:03:d9:e8:
a9:fc:c4:39:20:a3:4e:35:4d:b5:bc:d4:25:d2:8f:
ac:cb:4d:3a:e0:f9:1d:f7:58:9d:67:f2:41:84:c1:
1c:a2:23:f2:a0:1b:80:1f:e3:79:fd:14:16:62:38:
3f:ca:fc:86:44:06:cf:f8:fe:34:c9:10:15:c1:55:
b6:63:c4:25:10:8b:99:66:13:ad:fc:26:1f:28:1c:
c9:7a:d7:4d:02:63:9a:ab:b8:8d:4b:db:08:f8:05:
22:c0:78:23:0b:6e:62:14:9c:cd:1b:30:b0:ab:37:
5b:06:44:9c:59:1f:41:f3:a2:23:dd:f9:04:a6:49:
17:27:de:06:fb:b3:ab:e7:b8:33:4f:fb:82:82:49:
6c:36:90:dc:2e:f2:7d:b9:6a:a9:a1:b6:46:98:88:
e5:36:7f:13:de:77:7f:4c:60:eb:a6:96:28:5d:36:
13:79:34:06:e6:55:d3:fa:cb:39:9b:23:79:da:16:
11:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:CD:DE:56:16:39:E4:57:D9:CA:EC:B0:E4:12:9D:4B:67:EC:69:8F
X509v3 Authority Key Identifier:
keyid:A3:E5:99:92:83:AA:F2:E4:39:50:79:EA:37:16:DD:FC:2B:13:0F:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/cd9589-3825-43e6-9552-0307486269d7/1/o-WZkoOq8uQ5UHnqNxbd_CsTDwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:12:6c:ae:ed:3f:34:19:ca:75:01:3d:80:3c:69:a2:30:96:
f0:40:51:c1:bf:6d:83:44:85:7d:96:95:40:ea:43:49:cf:56:
b7:55:8b:a1:a7:2a:4f:50:72:89:90:c8:9b:0e:86:33:95:d9:
72:88:50:ba:74:23:f0:aa:9e:d0:c0:77:ee:07:3f:8c:de:a0:
ce:53:3e:b2:04:6d:ae:7c:b8:f8:40:35:33:72:30:33:92:09:
47:e5:24:cb:f2:65:55:b4:e5:22:29:e4:02:7b:fb:d0:dd:2e:
d8:3f:1c:a5:ad:99:59:9b:53:05:c3:12:52:ad:40:95:4f:bb:
8e:fe:a2:68:1f:10:8d:08:c1:af:8f:2d:dc:ad:d7:de:ff:90:
6e:89:07:0f:84:77:25:b5:83:7c:8d:38:dc:07:7e:3d:4f:21:
27:3f:7e:51:54:da:e9:94:68:c9:bf:5c:4f:09:a8:32:e1:d2:
50:95:c7:12:e0:2d:1d:8f:04:d7:62:b1:f1:b6:7d:a6:b8:de:
fa:eb:d9:bf:27:f4:56:0b:54:79:ad:f4:0d:6f:ce:8a:95:80:
1c:e5:2f:1c:36:69:b8:9a:34:b1:cd:db:c4:1f:91:d0:59:e2:
20:ad:65:f5:77:b6:79:78:51:eb:e8:08:24:74:40:f1:c6:64:
7e:d7:b4:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:15:10 2025 by rpki-client