Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
File: oJfWos9CiA2-v0KjJRkHohyRpKU.mft (raw, json)
Hash identifier: FtmLNRSDoXhTwW+t9Bd4BcHWlM+s/4j/upXpLjgIdqo=
Subject key identifier: B9:FD:D4:32:5C:5B:FE:90:87:81:60:53:11:D4:67:D0:B2:78:7C:6B
Authority key identifier: A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
Certificate issuer: /CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Certificate serial: 0197B745AA52A435E51250C0C0C9588FF816
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 16:01:25 +0000
Manifest this update: Sat 28 Jun 2025 16:01:25 +0000
Manifest next update: Sun 29 Jun 2025 16:01:25 +0000
Files and hashes: 1: 9xc32CvuOjNWHQB-PWYWWQOY_yA.roa (hash: PjbNQ/Rs2a2yPfO42XDBv2ntO3mtq/Wj2Yqgz9eO9jA=)
2: oJfWos9CiA2-v0KjJRkHohyRpKU.crl (hash: twX4dDfcGnfi7+yvEmV4v/fvdkbDvdwh/WImoDza2BQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:aa:52:a4:35:e5:12:50:c0:c0:c9:58:8f:f8:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Validity
Not Before: Jun 28 16:01:25 2025 GMT
Not After : Jun 29 16:01:25 2025 GMT
Subject: CN=b9fdd4325c5bfe908781605311d467d0b2787c6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:db:58:27:54:67:a0:10:0a:90:df:b8:e1:44:
71:a5:3e:85:bb:e2:b8:a4:c5:92:7b:0c:67:57:e5:
19:84:4f:88:12:20:96:d6:e9:12:6c:a9:22:72:83:
39:bf:02:fd:b9:4b:5c:26:b5:0b:3a:06:99:d8:1a:
ef:58:5a:1b:d1:19:24:94:3a:d9:56:46:a2:7f:58:
9c:d3:8a:27:f2:33:70:24:ba:47:e3:e0:8e:9a:7b:
63:40:05:f2:e3:72:4b:0e:e0:ed:ec:18:cc:63:99:
40:5f:f4:4f:c9:b8:85:ef:49:b0:c6:36:ea:77:44:
0d:64:bc:fd:f4:10:41:a8:71:4d:0b:ca:8f:c5:4f:
04:f0:12:57:3e:ac:81:54:dc:46:cc:84:6e:03:7e:
ce:6c:32:2b:4d:2f:3f:76:c1:2f:cf:cf:ea:34:63:
e8:b9:d0:46:14:6b:5a:bf:02:e0:00:67:e3:52:8e:
a3:57:4f:9c:34:0b:56:30:02:61:cd:7c:35:ee:d8:
32:64:48:63:c2:be:91:63:bb:cf:30:05:1e:ac:8c:
8e:2c:bb:4f:dc:fe:8d:8a:98:3e:0c:6d:ab:d2:b9:
59:ea:04:e4:d6:ec:23:7c:a7:28:9b:48:53:3e:72:
11:a8:ef:dc:51:29:eb:12:a8:2a:ac:99:16:e1:0b:
5b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:FD:D4:32:5C:5B:FE:90:87:81:60:53:11:D4:67:D0:B2:78:7C:6B
X509v3 Authority Key Identifier:
keyid:A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:3a:e3:a0:4a:4d:a2:40:cd:35:db:c4:a0:ac:05:d2:bd:fd:
22:71:95:be:65:db:d8:c1:b4:0c:6f:94:6c:35:d4:f7:51:95:
eb:c5:20:d2:b2:15:d2:62:75:94:5d:36:d1:cb:11:04:31:62:
09:e8:30:e6:ba:0b:68:c4:a4:aa:2e:7d:a1:1b:7e:b7:81:b5:
77:db:e5:5f:2f:64:e5:46:11:9b:6a:6b:62:fc:b3:26:32:2a:
95:78:d1:f5:71:d3:9a:56:ad:8c:a7:55:a0:a5:d3:58:86:a4:
2a:60:f5:1d:37:aa:4f:78:51:5e:26:02:59:f2:49:f1:7a:28:
0e:1b:e7:c4:96:e1:14:1a:d7:93:c0:4d:67:3c:f4:96:9c:a3:
8e:ac:3e:ff:9a:54:47:22:da:af:15:5e:4f:42:9b:af:62:66:
a1:41:20:8d:21:2f:57:e0:dc:f6:d6:84:05:0f:69:a7:4f:64:
cb:3d:63:69:1b:ff:30:27:64:d5:48:37:63:f4:0c:9b:66:49:
db:a9:7c:6f:a1:ac:99:13:01:42:27:7f:d6:48:56:4a:53:3f:
76:3b:ef:c8:f3:f2:cd:b0:aa:74:4b:e5:8d:4b:63:60:78:03:
3e:0e:cd:ea:f2:9d:9f:65:e7:ec:e1:e5:e4:2c:95:ed:91:1a:
d5:22:a7:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:50:18 2025 by rpki-client