Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
File: oNki4v4kvSzaeToqrcEzYlAM2bE.mft (raw, json)
Hash identifier: 4Hig0QbfLTVaYb+HNz9jPOFLFHzV44r3UkM9kkh6WMs=
Subject key identifier: F1:13:DB:DB:8E:9D:65:83:64:76:F7:7A:23:03:90:34:81:7D:9A:EE
Authority key identifier: A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1
Certificate issuer: /CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1
Certificate serial: 0197C4C9C1B5D06F31E7A9CF8FB6AF93B37B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
Manifest number: 0BBF
Signing time: Tue 01 Jul 2025 07:00:46 +0000
Manifest this update: Tue 01 Jul 2025 07:00:46 +0000
Manifest next update: Wed 02 Jul 2025 07:00:46 +0000
Files and hashes: 1: QU8GopeOlHwkTprCT-S3aTgX93c.roa (hash: wdEn+nBxYgSylw1Zt9va3XXWns8S/pGLaLLxEZ/5irY=)
2: oNki4v4kvSzaeToqrcEzYlAM2bE.crl (hash: h1iLmky6Q2JIZxgV8zkB+6RGyLBaYlgtFq5oBtFPEZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 07:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c4:c9:c1:b5:d0:6f:31:e7:a9:cf:8f:b6:af:93:b3:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1
Validity
Not Before: Jul 1 07:00:46 2025 GMT
Not After : Jul 2 07:00:46 2025 GMT
Subject: CN=f113dbdb8e9d65836476f77a23039034817d9aee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8e:0e:b2:4f:dd:f3:41:29:a4:a6:89:11:55:
50:b2:0b:c3:8e:e2:06:06:57:c5:79:72:02:c4:72:
d3:ee:f8:50:24:04:bc:71:d7:1a:0a:38:23:e9:b1:
72:1a:21:c0:20:ae:bf:50:0c:ce:c3:bc:2b:8d:73:
74:49:45:26:79:e6:2b:ee:ed:e3:e5:75:b4:e9:e0:
76:17:f9:c8:5b:ea:4c:4b:35:a6:31:32:1d:de:66:
37:e5:c4:45:dd:b2:25:ce:87:8e:f4:98:af:8e:7e:
a9:90:db:01:91:6a:69:a7:3f:01:bd:7c:4f:55:1d:
58:38:cc:b5:fb:f0:c9:65:7b:28:6f:29:9c:c3:be:
89:6c:75:0c:d1:0b:f8:77:3f:a4:b2:e3:14:f6:01:
2e:c5:4d:c2:e1:d8:69:92:c0:46:33:4f:25:3b:43:
5e:9f:5b:05:e1:69:29:b3:8f:50:15:7e:04:fc:6c:
1a:8e:ab:a1:ff:d0:b1:9a:c1:ee:14:aa:18:a3:98:
94:c7:8d:25:2b:a1:39:ea:03:f6:95:5a:9d:e1:17:
b7:c0:bd:cf:c3:6c:b5:2d:38:51:d6:69:76:9b:38:
a8:f5:19:7b:6a:b0:f6:ef:2e:4c:71:80:41:a5:45:
db:02:af:4b:9c:63:6a:2e:ab:73:81:da:ad:92:97:
13:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:13:DB:DB:8E:9D:65:83:64:76:F7:7A:23:03:90:34:81:7D:9A:EE
X509v3 Authority Key Identifier:
keyid:A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:c8:35:9e:4e:d7:38:bd:2b:e1:96:96:22:82:92:b9:29:57:
24:fc:e6:9c:87:ab:1a:4a:61:e7:a1:ad:81:a3:b1:28:e6:a6:
76:3f:77:3e:24:4d:41:57:40:b4:17:4e:db:b6:26:a7:47:c0:
a9:5c:3a:7b:9f:15:0e:bf:69:ca:32:60:97:ee:f3:21:30:a8:
3c:02:e6:e6:8e:bf:45:ca:3d:a0:4f:dc:57:28:5f:95:03:71:
67:33:9e:83:05:71:82:1d:cc:72:bc:9f:4b:82:86:b0:a4:e3:
7b:09:c4:e8:84:7b:33:fb:68:25:1a:de:e6:a8:f8:71:80:41:
0b:53:1d:2d:b3:2c:35:34:de:15:ff:33:ad:64:f2:c7:90:bc:
43:fd:11:38:25:c6:f6:e2:aa:04:7b:ea:76:4c:32:f4:93:c0:
c9:8f:f7:09:bf:89:1c:30:b1:bc:81:0b:63:d6:80:27:c0:3d:
ad:2e:9f:95:ab:0a:cc:c5:1f:6f:af:b7:cf:12:a2:2d:ff:f3:
1b:ad:bc:17:7c:05:05:67:3e:db:b9:cb:80:10:33:12:e0:13:
f1:b4:90:36:45:8d:fa:09:80:03:0e:e7:63:95:7a:4f:5c:3e:
4b:40:53:9b:49:c2:ab:79:2a:e7:89:36:57:fc:51:55:e8:51:
72:91:8e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 12:29:49 2025 by rpki-client