Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
File: OneLgrqpeIoayvLsNothmB71HfI.mft (raw, json)
Hash identifier: BoQFawp9YW46uO//RX9RQWqcEz6Ewhc1nblQkSpodJE=
Subject key identifier: C3:FB:BE:64:40:29:9F:E0:91:DE:74:AA:AD:47:BF:8F:AC:EA:E4:7C
Authority key identifier: 3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
Certificate issuer: /CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Certificate serial: 0197B820C13B553AD179FD8A223004E16F00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
Manifest number: 15BB
Signing time: Sat 28 Jun 2025 20:00:43 +0000
Manifest this update: Sat 28 Jun 2025 20:00:43 +0000
Manifest next update: Sun 29 Jun 2025 20:00:43 +0000
Files and hashes: 1: OneLgrqpeIoayvLsNothmB71HfI.crl (hash: QJjxDz8RXs/xLFqJUi6Jir7t3iZiTxOsBLRJPWau9Us=)
2: tSdPmCF2mRPxF2tL9jrht8v9nd0.roa (hash: 25zx6oeH7z2ZyGM4y2LzPQiLw04ocTvL7Bq+gPKpw0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:c1:3b:55:3a:d1:79:fd:8a:22:30:04:e1:6f:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Validity
Not Before: Jun 28 20:00:43 2025 GMT
Not After : Jun 29 20:00:43 2025 GMT
Subject: CN=c3fbbe6440299fe091de74aaad47bf8faceae47c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7f:69:b0:db:8f:6f:10:c9:1b:88:f4:b1:77:
ef:8f:e6:6e:f4:8a:d0:f4:9f:c8:d4:8f:4e:d7:4a:
c6:9b:c9:26:12:45:84:6e:14:2b:95:01:84:d4:75:
88:28:c3:56:7d:92:df:5e:c5:78:4e:3f:45:1c:82:
4c:6f:af:11:c3:2f:c0:9a:9e:12:e9:1f:e7:8c:b0:
2c:a6:28:cc:98:ab:a1:d4:d1:9d:2b:ba:54:3b:21:
3c:b4:53:8d:7a:7a:b6:6d:c9:f2:de:16:0c:91:41:
1c:be:22:71:ee:ed:85:b7:da:29:46:7d:75:e0:c4:
83:4c:09:79:46:dc:d3:34:25:1d:31:b2:8e:a0:62:
9f:6a:79:d2:2f:de:ba:3e:10:13:29:7e:dc:e2:ee:
9f:d3:10:da:1b:2e:03:62:4a:e5:3d:fb:ce:57:df:
67:53:16:d3:36:a0:b3:5c:57:62:06:b5:1c:c4:f6:
22:9a:d8:bc:6c:26:8e:88:ad:23:12:03:01:3a:9a:
22:85:ae:9c:d4:71:5f:17:ea:d0:cd:e0:8a:d5:9d:
69:f7:57:86:b8:08:9a:45:d7:f3:ef:eb:4a:e0:7f:
05:5a:8b:46:71:87:b2:ac:cd:32:c3:19:fe:ca:eb:
df:6f:4d:9d:fc:05:e5:69:ce:6a:bb:25:9e:67:93:
cc:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:FB:BE:64:40:29:9F:E0:91:DE:74:AA:AD:47:BF:8F:AC:EA:E4:7C
X509v3 Authority Key Identifier:
keyid:3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:f8:3e:59:83:89:68:a9:d9:66:79:f3:18:73:ad:91:96:21:
07:4f:f3:93:66:43:49:31:8a:0f:36:8b:9b:e0:ac:5d:d2:1b:
2a:13:fb:16:8c:8f:5e:d3:7a:98:1b:9d:04:ef:43:24:dd:b6:
b6:c9:86:6d:5d:13:52:3f:19:bc:a4:52:8e:8b:56:85:de:bc:
32:d0:0a:c6:8e:71:60:d0:28:a9:96:c6:44:c3:5e:fe:37:bc:
68:33:3c:3f:0c:99:b1:fe:5b:ad:05:dc:0b:d7:4c:42:93:bf:
1a:aa:62:29:bf:dc:0b:3f:a1:fd:0c:6f:29:3a:6c:f3:7b:89:
88:8e:0a:d0:f7:4e:37:b7:e2:da:ea:54:ba:f3:82:96:04:94:
e9:21:63:3b:12:bd:11:5d:0c:c6:66:51:68:6b:ec:28:a7:aa:
ec:72:d3:74:96:4b:59:12:7c:04:da:f8:c1:0d:54:1b:fd:d0:
99:20:3a:53:23:93:f8:b5:7a:6f:2d:4a:8a:9d:82:2f:b9:41:
7f:e1:f6:29:f0:12:5b:d3:30:94:53:b0:81:7d:cf:f7:d0:be:
9d:99:2e:4b:b5:e4:b1:e6:87:7e:5f:43:31:c8:a3:62:a7:24:
75:d2:b6:2b:39:d0:76:f7:57:9e:58:ed:47:54:8e:b2:db:20:
00:f9:b3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:20:11 2025 by rpki-client