Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
File: oNPtV5U0igTn7NFy12QvqWIJcoc.mft (raw, json)
Hash identifier: Ym0q31wCYWHD0tZA8BnoF93fUxNyzAXsonKCnxYQiLw=
Subject key identifier: B0:0C:C0:6D:2E:F5:82:7C:32:D5:D5:D2:96:EA:F2:CD:1A:22:11:EC
Authority key identifier: A0:D3:ED:57:95:34:8A:04:E7:EC:D1:72:D7:64:2F:A9:62:09:72:87
Certificate issuer: /CN=a0d3ed5795348a04e7ecd172d7642fa962097287
Certificate serial: 0196A1644711F2CBC95A1F05773336093837
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
Manifest number: 020C
Signing time: Mon 05 May 2025 17:00:25 +0000
Manifest this update: Mon 05 May 2025 17:00:25 +0000
Manifest next update: Tue 06 May 2025 17:00:25 +0000
Files and hashes: 1: _Z612WlN8ZfOi7lH-p4HrmdXgXQ.roa (hash: QscoaDsHFH3nysubWrv1ADSV365kESJ9Bam6CnFtw2M=)
2: oNPtV5U0igTn7NFy12QvqWIJcoc.crl (hash: BVZKPMCrGnG6o/ivOm8rnymnoad0ohqHYxDKcd3hpf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:64:47:11:f2:cb:c9:5a:1f:05:77:33:36:09:38:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d3ed5795348a04e7ecd172d7642fa962097287
Validity
Not Before: May 5 17:00:25 2025 GMT
Not After : May 6 17:00:25 2025 GMT
Subject: CN=b00cc06d2ef5827c32d5d5d296eaf2cd1a2211ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b1:0d:bd:4d:42:41:48:e2:d3:07:e8:14:b3:
0c:75:84:a6:db:a6:89:cb:31:02:40:68:35:51:be:
7c:78:17:c9:4b:b4:bf:78:f0:00:c8:38:10:e5:ac:
40:f4:53:a9:07:0c:2b:13:7d:b3:8f:1f:7e:19:cd:
b0:10:22:43:1f:fa:ce:f5:b8:6e:09:a1:5b:eb:2a:
61:a9:06:8c:d7:0a:c7:fa:3d:4d:ed:47:f3:3f:44:
b1:d4:3b:83:56:20:a5:1e:01:8a:e1:44:cb:66:2e:
e0:fa:dc:3f:c1:3a:1d:4b:d0:3c:ee:d6:19:2f:a8:
26:da:09:b2:ee:e5:0e:6d:13:74:5a:7d:63:a4:b8:
23:48:0a:03:c8:8c:a7:3a:6c:18:51:e8:18:63:5c:
b5:0e:4f:75:2c:21:0c:e1:c7:da:d2:31:d7:97:94:
b2:5b:32:ce:9f:e1:b0:d4:75:5e:e6:a7:9c:21:33:
66:24:5b:10:f7:b2:1a:ee:33:de:6c:b9:16:2e:aa:
a0:16:e8:48:67:86:ee:c8:17:73:3a:a8:2b:23:c3:
f7:a3:3b:99:5d:47:d0:fb:76:6a:af:2b:cc:73:c3:
db:f4:50:4b:6e:f1:b9:6e:4d:de:13:eb:af:59:bb:
f0:0c:8b:3f:8d:3e:15:a1:21:68:52:8c:ba:43:13:
5f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:0C:C0:6D:2E:F5:82:7C:32:D5:D5:D2:96:EA:F2:CD:1A:22:11:EC
X509v3 Authority Key Identifier:
keyid:A0:D3:ED:57:95:34:8A:04:E7:EC:D1:72:D7:64:2F:A9:62:09:72:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNPtV5U0igTn7NFy12QvqWIJcoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a3b11e-5909-49fe-bb75-790bc91a59e6/1/oNPtV5U0igTn7NFy12QvqWIJcoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:44:40:ba:7f:3b:81:52:33:1f:a7:a9:e5:b1:21:0c:64:6f:
24:4b:32:bc:20:c1:79:17:02:6f:ad:be:77:16:dc:f8:f5:a4:
26:7a:a4:dd:f3:4b:21:50:01:ee:e3:c6:e9:26:3f:a2:84:1b:
7a:5b:65:90:e6:9f:0e:60:89:22:46:d7:d6:23:68:25:bc:93:
b5:a5:ac:f6:cd:a4:73:a9:0f:7c:9f:c3:b5:43:a2:98:d6:5c:
4b:4e:8a:1e:fe:06:b8:14:49:e8:ef:d5:1d:1d:7c:a6:9c:50:
7f:66:c9:1d:39:7d:c9:b4:db:ff:c0:b6:37:03:8f:dd:9f:9d:
0f:9d:6a:5e:c6:de:ac:ed:59:e8:d1:f2:cf:e9:91:58:86:91:
56:c2:a4:59:4e:6e:30:08:42:81:b4:03:54:9a:5d:76:b5:7f:
ed:ca:57:2a:7f:b2:19:72:05:00:49:d9:8e:c9:05:1a:90:db:
14:26:36:62:7c:f8:f5:c7:65:36:d3:93:c1:66:b2:d5:7c:d9:
10:f1:51:9b:17:ed:97:be:c3:03:4d:0c:22:36:f9:79:b6:c8:
c0:da:12:12:0f:7b:a5:e3:4b:e8:46:64:1f:e9:30:2f:69:0e:
2f:c7:7a:44:5d:bc:37:9e:b1:e4:47:56:d3:ce:53:27:18:83:
cc:3e:57:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 22:12:11 2025 by rpki-client