Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
File: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft (raw, json)
Hash identifier: RJ3unL/5IFqZcLpCjYm84Pry0J4hp2sZBBKh7hTTt20=
Subject key identifier: BF:04:7F:36:2C:7D:85:E7:FA:F2:DE:8A:3F:EC:58:7E:84:FE:0D:20
Authority key identifier: A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4
Certificate issuer: /CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4
Certificate serial: 0197C64A4F414E0214546AA7795ED0EC0BD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
Manifest number: 12F7
Signing time: Tue 01 Jul 2025 14:00:48 +0000
Manifest this update: Tue 01 Jul 2025 14:00:48 +0000
Manifest next update: Wed 02 Jul 2025 14:00:48 +0000
Files and hashes: 1: EZbYUKlbHnDupSiI6vHg0ScrIQc.roa (hash: yrslRTQqqMutFqrXn7kHXajy2V9WRPNQRVUgaXrJw9E=)
2: oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl (hash: GRld3DSx+jG6yfSa117KXMjrGNWwBuHsv6ehfMDXg9g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 14:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:4a:4f:41:4e:02:14:54:6a:a7:79:5e:d0:ec:0b:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4
Validity
Not Before: Jul 1 14:00:48 2025 GMT
Not After : Jul 2 14:00:48 2025 GMT
Subject: CN=bf047f362c7d85e7faf2de8a3fec587e84fe0d20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:11:cd:02:b2:c7:58:3e:64:d0:8b:2b:c3:6e:
c5:9d:89:77:04:7f:71:a2:9a:12:16:e0:b0:e2:0e:
30:1a:28:af:35:8c:ca:45:99:8e:99:ec:22:fe:91:
1b:8c:af:99:69:cd:53:5c:d7:27:c0:b2:46:0d:20:
53:61:3e:ce:78:54:52:df:e4:86:b5:20:3b:c0:ca:
31:e0:5e:35:01:ae:f4:35:a9:1d:53:5a:f8:c5:c0:
e8:07:3f:0e:26:a2:b7:b0:e5:f0:63:a6:ff:ff:9d:
56:ae:94:42:28:eb:91:b6:ad:ef:77:13:b1:e5:aa:
2e:79:e2:3e:23:e4:0e:1f:68:f1:4c:a9:22:fb:69:
09:dd:f7:7e:15:63:01:e9:e6:12:d0:ae:6b:57:51:
0e:d4:8f:c9:63:84:8a:82:45:aa:78:79:4a:d4:ad:
90:7b:4d:3e:6c:ee:6b:7e:42:7a:9e:88:dc:f4:55:
f9:e3:1c:9c:b0:fa:52:89:f0:aa:a8:d7:3d:3b:b6:
9b:b2:67:b7:ce:46:17:57:3f:85:08:d5:1e:5b:78:
29:d4:f8:b9:8d:fe:dc:57:34:9b:b9:12:76:a5:21:
99:65:7c:53:1c:52:93:3c:5b:1a:8d:0e:d5:48:9e:
3b:51:28:d8:f4:2e:ed:3f:7c:52:bf:7a:29:75:cf:
e9:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:04:7F:36:2C:7D:85:E7:FA:F2:DE:8A:3F:EC:58:7E:84:FE:0D:20
X509v3 Authority Key Identifier:
keyid:A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:be:0e:2b:95:fb:5c:ed:86:74:65:22:d5:e9:a7:2c:a4:12:
39:18:cc:79:25:fc:b6:7b:68:97:90:85:0f:d5:f0:65:7b:f2:
f2:67:3e:8d:3b:61:03:04:e0:e1:5d:08:cd:8f:21:20:7b:1e:
5b:40:61:8c:2c:5a:10:40:c6:74:bc:b9:a3:b2:18:c7:d7:71:
5e:7c:13:7d:b4:d1:5d:56:aa:57:2c:e3:02:68:fd:be:14:2a:
22:80:8e:3c:68:02:a0:54:bb:30:63:22:db:f2:c4:6b:59:89:
27:58:12:a3:9e:2d:16:3c:57:20:f1:8e:db:d6:11:be:41:10:
55:9b:6d:05:a4:92:50:32:6e:30:a0:2c:34:4b:92:23:3d:a3:
53:ff:04:44:f9:f1:20:e1:16:41:1b:46:9b:b7:17:31:66:d1:
50:1f:ad:cc:3d:f6:54:09:3e:77:13:2b:d5:f5:c8:b5:f1:11:
60:cb:2a:9f:64:32:2c:ca:25:1b:85:52:02:eb:6d:ac:a1:89:
e5:a7:33:5e:1f:35:2a:af:f1:92:3c:73:7d:ec:ea:84:70:13:
1d:d2:9a:b3:f7:e1:84:04:02:00:9f:1a:2a:32:67:88:df:7f:
41:ee:7e:c0:73:8b:dc:30:37:55:1e:4f:16:23:fc:b0:8c:c6:
fa:03:7d:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 22:39:06 2025 by rpki-client