Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
File: _o6FIymApj8NTfWwSRY-P9AvVLM.mft (raw, json)
Hash identifier: oYJQHfa7Lbhdez4bTJsJ5oFHb2WdRWtD3oH6jgLPy7Q=
Subject key identifier: 04:BD:F8:4E:9B:1A:5B:E8:6E:1F:1D:4E:7F:B4:7E:69:92:68:0B:81
Authority key identifier: FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
Certificate issuer: /CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Certificate serial: 0197B70EAFCED347F100E5E0967A7619766B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
Manifest number: 0A2D
Signing time: Sat 28 Jun 2025 15:01:22 +0000
Manifest this update: Sat 28 Jun 2025 15:01:22 +0000
Manifest next update: Sun 29 Jun 2025 15:01:22 +0000
Files and hashes: 1: 7IkFNxuEd7zYMJ5GFmWYCrb0D3k.roa (hash: EbQqPJKQBhTvoE7/qrp3Wi8FH8cq4X28q+E9y9x/db0=)
2: _o6FIymApj8NTfWwSRY-P9AvVLM.crl (hash: aQawPjONLW20XtnkhvcGUMOLIAlLGToNKa6EKdI0PZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:af:ce:d3:47:f1:00:e5:e0:96:7a:76:19:76:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe8e85232980a63f0d4df5b049163e3fd02f54b3
Validity
Not Before: Jun 28 15:01:22 2025 GMT
Not After : Jun 29 15:01:22 2025 GMT
Subject: CN=04bdf84e9b1a5be86e1f1d4e7fb47e6992680b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:31:9b:b9:91:17:e0:61:b1:d8:0e:79:27:89:
57:ac:36:81:cd:ec:21:c1:51:ea:8c:8b:2b:03:e6:
41:a2:ad:cc:40:70:6c:aa:7f:ed:a0:84:2c:fb:0a:
1f:b6:4e:ee:aa:f8:2d:5b:b2:ae:99:13:3e:00:ff:
46:c5:e6:bf:97:ea:b3:1c:b2:c6:d2:fb:7c:23:f7:
9e:70:25:e7:f5:cb:3d:d1:3c:be:d2:04:a1:10:20:
2d:ae:a9:14:1d:2d:cd:e0:33:6f:d9:69:b3:9e:c5:
59:da:bb:5b:05:b9:36:e2:5f:d7:8f:90:5e:01:f0:
c4:03:27:5a:5f:47:e0:af:f4:b1:4f:98:71:2e:1e:
9a:ca:44:cb:c8:86:55:76:bf:a0:38:6e:94:d4:13:
d5:6a:aa:b3:46:74:8a:ac:25:8a:77:59:00:d1:e2:
dc:7f:98:3f:68:f9:6a:34:43:dc:cf:69:20:1c:33:
51:46:aa:c5:d5:d4:59:bf:ab:16:e0:9c:a6:e3:80:
e7:d0:1b:7d:dc:a6:31:65:c4:05:e1:3d:46:8f:94:
20:c1:26:a9:68:e1:7e:d7:45:f2:a6:41:e6:9d:a7:
ee:43:8c:93:3d:32:f3:b9:5e:73:d5:ac:70:66:66:
e7:83:42:a9:72:56:22:ff:5d:a0:58:7a:62:44:72:
b4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:BD:F8:4E:9B:1A:5B:E8:6E:1F:1D:4E:7F:B4:7E:69:92:68:0B:81
X509v3 Authority Key Identifier:
keyid:FE:8E:85:23:29:80:A6:3F:0D:4D:F5:B0:49:16:3E:3F:D0:2F:54:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_o6FIymApj8NTfWwSRY-P9AvVLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d36b8b-8656-485b-93b2-3892aca277b0/1/_o6FIymApj8NTfWwSRY-P9AvVLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:9a:5b:9f:98:f0:22:1f:14:81:36:8c:85:15:2a:4d:97:89:
ab:b6:f0:cc:f2:2f:53:b0:a0:31:d9:ab:f2:0a:f5:a2:b0:54:
c9:01:8a:e1:75:57:60:37:e8:56:af:65:2a:73:4c:5d:ca:6e:
43:89:99:00:13:8c:c4:e0:fd:83:7f:c6:0d:69:5d:42:fa:9a:
08:f0:82:c5:9a:6b:dc:6a:fb:d4:a4:63:9a:70:df:a2:40:1b:
78:d6:ef:dc:7b:42:ac:f0:be:ef:f8:0c:7f:2b:9f:77:2e:e6:
28:a3:9d:39:d4:48:12:93:6c:20:9a:84:ab:67:a5:24:14:be:
c1:75:d7:91:e3:95:6a:e6:c6:33:11:6b:f9:e6:3d:e8:a2:61:
05:7b:d1:69:f9:b5:9e:e6:89:96:ad:17:ac:55:81:1e:ac:bc:
e4:63:a9:46:dd:d5:4d:2e:28:21:66:9f:d0:51:72:3a:cd:a5:
94:1e:05:85:fe:0e:fe:a9:56:31:ad:3a:26:26:27:b7:42:32:
a2:18:af:a0:0c:8b:f2:62:46:01:aa:7c:0c:25:3f:e7:45:3f:
78:89:c8:a1:aa:02:de:19:9e:e9:05:3f:b6:74:77:51:71:70:
a3:12:cf:c4:01:ec:a0:0c:91:2b:09:f5:6c:d6:78:fd:bc:76:
e6:fb:a5:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:33:14 2025 by rpki-client