Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
File: oNPtV5U0igTn7NFy12QvqWIJcoc.mft (raw, json)
Hash identifier: g9eZCnS7fIjcaRbaAYbeKVI06zw8N0+OxJco5boRt3A=
Subject key identifier: 49:88:1E:A7:95:02:A9:07:F2:B3:EC:DF:29:2D:94:EC:A5:9F:D9:2E
Authority key identifier: A0:D3:ED:57:95:34:8A:04:E7:EC:D1:72:D7:64:2F:A9:62:09:72:87
Certificate issuer: /CN=a0d3ed5795348a04e7ecd172d7642fa962097287
Certificate serial: 0197B77C1BDF4DD0B52A64E5B7B9EB69FA7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
Manifest number: 029C
Signing time: Sat 28 Jun 2025 17:00:53 +0000
Manifest this update: Sat 28 Jun 2025 17:00:53 +0000
Manifest next update: Sun 29 Jun 2025 17:00:53 +0000
Files and hashes: 1: _Z612WlN8ZfOi7lH-p4HrmdXgXQ.roa (hash: QscoaDsHFH3nysubWrv1ADSV365kESJ9Bam6CnFtw2M=)
2: oNPtV5U0igTn7NFy12QvqWIJcoc.crl (hash: cDD50BpksD47aOxMTuISKQie8bxJgfZIHxdfyDCx5YI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:1b:df:4d:d0:b5:2a:64:e5:b7:b9:eb:69:fa:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3ed5795348a04e7ecd172d7642fa962097287
Validity
Not Before: Jun 28 17:00:53 2025 GMT
Not After : Jun 29 17:00:53 2025 GMT
Subject: CN=49881ea79502a907f2b3ecdf292d94eca59fd92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5b:30:3a:af:f1:10:26:f7:c1:7b:b1:7c:2a:
54:ef:12:f5:4d:af:82:76:15:63:29:31:25:75:8f:
c7:29:5b:ce:6c:9d:82:1f:d2:45:da:52:f0:34:e6:
2b:68:ac:5f:d2:c2:7a:aa:1c:71:f8:32:a8:17:78:
02:a7:c9:14:f0:5e:f9:36:09:bf:e6:2a:f3:06:2d:
bf:ab:d4:cb:4a:e7:c0:8e:63:a0:3b:50:ec:89:4c:
02:63:d2:72:ef:36:3a:7d:ce:79:8f:d6:19:3d:14:
23:8b:c0:a6:3a:b9:94:cc:23:05:aa:09:b0:c3:39:
55:5c:b4:26:eb:00:f8:d3:c9:80:d0:1d:97:a5:7d:
a6:55:5f:0b:46:e5:6b:03:71:40:79:f9:13:f7:5f:
a7:dc:c1:b3:c7:79:a5:1a:d9:df:ed:61:83:20:66:
2c:32:dc:51:eb:3c:81:52:57:20:00:0c:17:e5:40:
1b:5c:34:54:7a:fa:c7:13:0c:dc:1f:a1:c8:b6:f9:
86:9f:a7:6c:c6:1a:73:21:68:71:87:1b:ac:b7:54:
04:c7:50:8e:a6:01:f4:80:3a:93:63:58:b2:ce:b9:
cb:c3:46:48:76:7a:9d:21:f4:f2:29:3f:a3:9d:23:
6b:fd:c4:5c:ea:87:c6:7e:6f:fd:74:3e:c5:79:d6:
08:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:88:1E:A7:95:02:A9:07:F2:B3:EC:DF:29:2D:94:EC:A5:9F:D9:2E
X509v3 Authority Key Identifier:
keyid:A0:D3:ED:57:95:34:8A:04:E7:EC:D1:72:D7:64:2F:A9:62:09:72:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:17:9c:c4:d8:b3:9d:05:3b:c8:38:26:9e:fd:83:d5:49:67:
17:b9:cb:86:ab:2a:df:bd:57:b4:72:10:5a:69:93:17:71:22:
06:6a:14:93:f1:5c:c8:11:45:e2:1d:1c:23:c8:cf:2c:85:90:
8e:29:49:2b:54:54:a5:2e:d5:46:34:5f:f8:14:77:5d:88:b2:
a2:3a:17:61:fb:ee:9d:1b:99:df:b3:89:3b:8f:0b:5b:e9:60:
cf:ae:13:61:96:3f:d0:80:75:25:51:f4:19:fb:d0:a7:75:51:
ef:49:c4:23:a7:32:25:a3:0a:58:ae:62:15:42:c9:75:f7:b3:
60:f2:9a:ea:c7:ed:86:cf:b3:73:2b:9a:db:29:a9:24:7d:8b:
75:cd:03:df:1b:59:a6:64:9d:18:3a:0f:36:b1:ad:c9:5f:61:
00:86:50:bf:83:d0:8b:ad:18:16:d8:a5:13:ee:ab:1c:ae:39:
27:3d:dc:46:91:ae:cd:d7:79:f5:2b:d3:9b:64:a3:41:68:29:
bb:e5:1d:f7:06:6f:2f:5a:d6:cb:27:7c:76:72:1d:d3:7b:8f:
02:4b:cc:ec:45:12:3d:28:bd:42:4a:55:69:31:15:b4:59:23:
1e:7d:74:59:b7:1c:7b:c0:f2:0e:27:66:f5:2d:36:bd:a7:0a:
1a:79:dc:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:51:58 2025 by rpki-client