Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
File: o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json)
Hash identifier: pAaMWuJxp5EzccxYrpZiHr9IKRe+HPQv1N+GQxkI8O8=
Subject key identifier: AF:CC:E2:4C:1F:4D:2E:FD:DD:D6:51:8D:A4:B9:5A:8D:42:E5:2F:B1
Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
Certificate issuer: /CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Certificate serial: 01986581E21F4AD511DF44A27D4563D07930
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
Manifest number: 1070
Signing time: Fri 01 Aug 2025 12:01:07 +0000
Manifest this update: Fri 01 Aug 2025 12:01:07 +0000
Manifest next update: Sat 02 Aug 2025 12:01:07 +0000
Files and hashes: 1: DfIfeCsjxuTLGxOswS1IRTtCtFo.roa (hash: BfLaITLvBopGuXyhXf+VexAjyd8LBGCkT8+9wJK+KLI=)
2: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: qtXXMAjJqGgdKMdltmVgr86lNqfkG86uvuu1jn0ZnQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 02 Aug 2025 12:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:65:81:e2:1f:4a:d5:11:df:44:a2:7d:45:63:d0:79:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Validity
Not Before: Aug 1 12:01:07 2025 GMT
Not After : Aug 2 12:01:07 2025 GMT
Subject: CN=afcce24c1f4d2efdddd6518da4b95a8d42e52fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:99:53:95:30:c7:04:9b:db:78:00:83:ec:65:
80:27:a0:63:03:71:0d:95:9d:89:d4:84:61:d0:49:
1f:3d:55:3c:3a:45:ca:a3:92:66:16:07:11:b4:42:
b9:2b:a1:88:ce:92:62:a3:a8:2c:dd:ff:45:d2:cc:
c1:7d:0c:35:bc:cd:14:f8:1b:2d:b2:a4:47:22:c2:
65:4a:20:b9:12:e2:ff:7a:61:54:77:2c:b5:4e:ac:
8c:c1:ea:18:67:6a:b9:6d:54:df:00:7c:07:60:d6:
59:48:b9:3b:b0:f2:5e:85:97:c9:f8:c7:46:d2:3d:
23:b4:34:c1:20:82:9a:73:4a:ca:9f:b1:c1:73:64:
11:75:d5:5f:b8:41:1d:7c:95:92:be:c0:4c:56:42:
cc:ea:df:71:51:05:d9:03:9c:9b:7e:ac:a3:d3:c3:
c3:c5:96:fe:66:16:4d:78:36:ed:4d:4c:1d:3a:d8:
a1:56:f2:a8:51:bb:00:74:c1:c6:95:a4:d0:07:ca:
60:db:7f:47:0c:86:7a:b9:01:c8:23:62:62:ae:ba:
f0:69:1e:80:0c:5d:28:24:15:e5:ce:33:ea:1a:20:
75:e9:4a:2a:f8:ba:bd:c2:e9:b2:19:6d:38:70:6e:
c3:0c:8b:74:73:eb:c2:19:c5:f8:45:4e:b6:15:75:
0a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:CC:E2:4C:1F:4D:2E:FD:DD:D6:51:8D:A4:B9:5A:8D:42:E5:2F:B1
X509v3 Authority Key Identifier:
keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:e9:b7:b9:47:92:64:f0:41:a2:4a:e7:47:95:d5:22:2d:5e:
4a:c2:64:8f:6f:b7:d2:21:07:7c:dd:5a:b1:e9:db:05:c9:c9:
04:4f:09:1e:af:6c:30:ff:c4:7e:dd:9f:b9:42:33:b0:91:e0:
10:b5:bb:d2:08:7a:04:34:a8:44:9f:0d:ef:1f:01:cd:0e:4f:
05:8d:35:31:f2:7b:38:ac:b6:1f:50:7f:ec:93:28:b7:58:e0:
ee:a3:3d:84:23:e9:03:4f:0c:6e:d4:7c:a5:8f:56:3f:56:fa:
32:52:3d:33:4f:9a:2e:dc:7b:92:75:62:86:24:ce:5e:da:c9:
63:1f:9a:ab:f0:78:92:6a:c4:51:1e:67:b9:34:61:7a:3e:3e:
14:37:0f:80:24:7a:d6:a4:c1:15:d6:39:7d:56:83:93:02:dc:
c8:4c:c2:55:42:22:24:61:b2:bf:05:90:23:3f:f9:1a:68:18:
03:03:98:a7:e6:ee:1e:3a:b6:6f:af:26:f6:f1:d4:a6:4e:7e:
d5:2d:2a:1f:1a:44:0d:1e:e3:1b:dd:5a:7d:20:43:fd:98:3c:
fd:7a:80:b3:2d:ab:22:56:22:1d:1d:c0:cb:80:1d:be:a4:b0:
d3:64:fe:b7:d6:c2:b8:52:13:4e:f7:38:c6:b6:e5:e3:9c:52:
d6:bc:52:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 1 18:15:56 2025 by rpki-client