Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
File: oynU0nVy71pqbb7NeS7vmM6QcW0.mft (raw, json)
Hash identifier: tHnt87hVWxG6TZKOFK9e9kx8cN9gD7R5BIr0NTspgwQ=
Subject key identifier: 71:B7:67:9E:32:39:B8:2A:B1:AB:0C:43:9E:FD:7C:C5:0F:7E:83:CB
Authority key identifier: A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
Certificate issuer: /CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Certificate serial: 0197B7B2EA3FE135995F0F4A16308E0E4EC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 18:00:45 +0000
Manifest this update: Sat 28 Jun 2025 18:00:45 +0000
Manifest next update: Sun 29 Jun 2025 18:00:45 +0000
Files and hashes: 1: blse6v5EH2fVrElwGZmlrK99XJk.roa (hash: otAVsYT9s6hCs6g9uAr3ovy061yRH8/KdKxwyyD5qvk=)
2: oynU0nVy71pqbb7NeS7vmM6QcW0.crl (hash: EhSy5mKBA3pRbw9UR6qsKetnOVsMawkNBbNLoPZBWSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b2:ea:3f:e1:35:99:5f:0f:4a:16:30:8e:0e:4e:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Validity
Not Before: Jun 28 18:00:45 2025 GMT
Not After : Jun 29 18:00:45 2025 GMT
Subject: CN=71b7679e3239b82ab1ab0c439efd7cc50f7e83cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ef:99:52:00:0d:9f:0a:61:e6:30:51:64:63:
08:99:44:73:a2:b8:d0:d6:c0:d6:c1:7a:ff:d8:06:
18:4b:d8:b2:3e:4b:ad:0e:58:f0:a0:71:23:4b:7e:
36:99:68:f5:5c:69:5a:c0:a5:f4:d2:df:81:bf:e7:
ef:4d:56:d3:d8:87:e6:ee:55:20:2e:bf:ab:d1:27:
1a:3d:ee:36:04:16:9d:84:76:c9:81:e6:36:b4:e7:
a3:7e:6c:d8:61:a1:2c:ad:21:0f:d7:3f:d6:2a:18:
fe:d0:da:da:f4:3d:a6:4e:ca:f2:de:1e:a4:c9:94:
d3:f7:f6:63:87:1f:cc:59:b7:37:0a:5e:42:10:6c:
20:4e:06:57:9f:ba:b7:44:fe:86:2f:f2:f4:74:87:
fa:d4:95:ee:24:d3:3d:24:78:6b:cb:70:d9:de:71:
11:19:ee:d4:e1:29:6a:b5:f5:69:24:d4:99:cb:88:
a7:8b:5a:99:a4:12:79:4a:f1:e1:d6:5c:8d:d3:3c:
6e:7a:10:c0:e9:17:1f:c1:80:e6:69:1e:99:92:32:
bf:d5:e3:5c:07:83:d9:80:6b:d2:a0:d7:ef:31:0b:
32:6f:b3:04:dd:d8:8f:3f:12:de:90:cb:cf:25:1c:
26:ee:ed:cc:61:5e:55:0d:7f:9e:12:68:b2:af:df:
41:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B7:67:9E:32:39:B8:2A:B1:AB:0C:43:9E:FD:7C:C5:0F:7E:83:CB
X509v3 Authority Key Identifier:
keyid:A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:be:5c:fb:5d:f9:73:c0:fa:83:de:c8:c7:37:e2:37:5b:9c:
ec:70:4a:1e:6d:ab:b9:3e:4b:0c:ce:7b:77:df:a6:2a:4b:c6:
0a:04:0a:c2:98:1c:18:0b:11:2d:ab:42:65:ce:b1:d3:00:1e:
00:fd:58:5a:9e:e6:01:6b:b3:8a:9a:e9:40:37:69:e4:29:bd:
f6:48:45:54:40:86:7b:5d:63:30:82:a3:0c:6b:45:f6:22:72:
c7:6e:bd:de:38:dd:71:ba:4d:e6:e4:ca:cd:33:38:78:9b:4f:
f2:49:3a:f0:7e:d5:bd:36:b7:6a:6e:13:1f:a5:ae:01:e5:0a:
db:58:3e:f5:39:e5:e8:34:50:91:1a:9a:f9:59:93:21:09:56:
bf:bf:6a:2f:ab:2a:3b:98:9f:f7:ac:80:83:62:9a:74:fe:10:
c3:5b:a0:ef:66:c7:94:c9:4c:f1:43:41:43:82:fd:3b:c0:e4:
69:9e:00:1a:a0:b3:19:02:6e:cf:b3:ca:4a:5c:b9:87:12:16:
cf:af:38:08:d1:0d:a0:e0:97:ae:28:7a:0e:ee:40:d5:a2:5c:
9e:f0:a3:74:0c:10:d0:c6:81:24:ea:cd:ed:b9:0a:0f:f3:e1:
de:cd:f2:dc:62:34:69:3b:9e:d9:e4:b7:9e:89:70:b6:7e:65:
2b:01:bf:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:33:19 2025 by rpki-client