Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/61db6b-1d73-4ec2-8be0-f37cbaf7ce5a/1/OnsDkT46KF7-Uc2sZfVQTIejRGA.mft
File: OnsDkT46KF7-Uc2sZfVQTIejRGA.mft (raw, json)
Hash identifier: Y3i0Y1Nab4UyawTrRaYsYL2w7wTJWBxMqzb8sQxzebI=
Subject key identifier: 2F:A8:AE:51:39:1C:71:17:F7:A4:F6:B8:FE:5B:80:99:52:41:94:86
Authority key identifier: 3A:7B:03:91:3E:3A:28:5E:FE:51:CD:AC:65:F5:50:4C:87:A3:44:60
Certificate issuer: /CN=3a7b03913e3a285efe51cdac65f5504c87a34460
Certificate serial: 0198530DAC9A09F8455EC3E6D5DD3F126AD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OnsDkT46KF7-Uc2sZfVQTIejRGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/61db6b-1d73-4ec2-8be0-f37cbaf7ce5a/1/OnsDkT46KF7-Uc2sZfVQTIejRGA.mft
Manifest number: 130C
Signing time: Mon 28 Jul 2025 22:01:01 +0000
Manifest this update: Mon 28 Jul 2025 22:01:01 +0000
Manifest next update: Tue 29 Jul 2025 22:01:01 +0000
Files and hashes: 1: OnsDkT46KF7-Uc2sZfVQTIejRGA.crl (hash: YV5RzLYLi5ZRbNeMrd4V4gpIPxz8BRl5/sbegvjZrIU=)
2: bXuLlzwCurMedfx4RUMXi7r1h0M.roa (hash: sXVX+GwCrEzWh3/PYurD7SBft7awlkJnghtSxD3UtHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/61db6b-1d73-4ec2-8be0-f37cbaf7ce5a/1/OnsDkT46KF7-Uc2sZfVQTIejRGA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/61db6b-1d73-4ec2-8be0-f37cbaf7ce5a/1/OnsDkT46KF7-Uc2sZfVQTIejRGA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OnsDkT46KF7-Uc2sZfVQTIejRGA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 22:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:0d:ac:9a:09:f8:45:5e:c3:e6:d5:dd:3f:12:6a:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a7b03913e3a285efe51cdac65f5504c87a34460
Validity
Not Before: Jul 28 22:01:01 2025 GMT
Not After : Jul 29 22:01:01 2025 GMT
Subject: CN=2fa8ae51391c7117f7a4f6b8fe5b809952419486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:05:06:16:a8:6f:32:c1:5e:fd:42:cf:05:c2:
db:47:1f:ef:11:0f:6b:f3:c6:a3:25:73:b6:5e:01:
b8:99:0c:f6:5d:52:f8:a5:7e:1e:f3:ee:1c:2a:40:
64:e2:dd:95:5f:4c:0e:6c:73:09:24:73:f8:d4:eb:
2e:b2:d0:7d:a6:a0:3d:2b:f9:4a:70:c9:2d:bc:c6:
ca:42:f9:a1:38:b4:27:9f:38:ed:0c:a2:39:b2:40:
d6:ae:34:6a:eb:92:7a:c9:9a:2d:21:4e:9c:ba:39:
0d:d8:c4:0d:64:4f:86:90:20:45:59:07:57:ed:a3:
8d:5f:cc:50:4f:53:1a:79:cb:01:75:0f:2d:c3:ce:
dd:44:d7:e3:6d:05:fd:01:73:a1:38:d6:c0:0d:6a:
a7:ec:23:64:ba:d1:33:a4:65:29:e4:7d:df:06:db:
4f:fc:a3:b7:64:1f:64:91:86:ed:ab:1b:46:dc:bd:
48:01:78:c0:a2:09:86:9c:e0:cf:c8:c8:99:aa:4b:
ab:c6:3f:e5:54:89:99:cc:61:e6:84:cd:25:06:25:
10:61:ea:26:93:00:d4:2b:74:38:d7:ae:0c:77:3e:
5b:e8:f2:f9:9f:96:a2:aa:ad:c1:2d:34:c9:a6:bf:
d5:38:48:5c:71:8f:40:96:a3:9b:92:3d:4a:3f:8c:
6e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:A8:AE:51:39:1C:71:17:F7:A4:F6:B8:FE:5B:80:99:52:41:94:86
X509v3 Authority Key Identifier:
keyid:3A:7B:03:91:3E:3A:28:5E:FE:51:CD:AC:65:F5:50:4C:87:A3:44:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OnsDkT46KF7-Uc2sZfVQTIejRGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/61db6b-1d73-4ec2-8be0-f37cbaf7ce5a/1/OnsDkT46KF7-Uc2sZfVQTIejRGA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/61db6b-1d73-4ec2-8be0-f37cbaf7ce5a/1/OnsDkT46KF7-Uc2sZfVQTIejRGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:1d:fe:77:6b:b0:de:40:a8:42:18:13:67:4b:8f:dc:0c:b1:
0e:c6:83:02:62:fa:9d:f5:f5:c3:2b:42:e5:df:8a:ea:8f:35:
f0:e2:be:4c:9c:fb:9b:46:ea:56:cc:d7:cb:a0:02:02:aa:de:
dd:1a:e6:2c:50:3c:70:5d:3d:ce:d8:d7:08:4c:af:f3:ad:79:
40:5d:53:ca:62:10:d7:ba:83:dd:3f:4c:c0:6c:9c:50:f2:3a:
f9:ad:79:c4:f3:39:cf:dc:9d:25:d9:c6:f3:df:0b:18:c2:7a:
92:66:90:18:ec:c0:41:a8:1b:02:4e:c1:77:74:7c:b7:9d:2c:
ad:6d:8e:ae:a2:6a:ef:2a:4d:7b:b1:98:71:3b:e0:af:33:d2:
b6:c4:9b:1c:4f:ae:6f:d5:bb:f8:84:00:c1:8b:80:86:61:87:
f9:0c:e6:62:4d:1f:f1:d9:47:6d:54:e9:a9:d5:80:b0:57:66:
9a:79:94:c7:41:6f:23:d2:d5:9a:b8:23:bd:47:82:18:83:81:
3d:9c:bb:15:17:b4:0f:74:6e:15:e5:de:30:28:bf:58:ae:0b:
40:ce:52:52:d2:03:21:d5:ac:d0:fa:0a:a4:2d:67:f1:1c:c6:
69:02:6a:71:4e:16:93:5e:1c:1b:46:4f:07:ab:90:32:d6:a5:
9e:50:c9:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 04:14:39 2025 by rpki-client