Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
File: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft (raw, json)
Hash identifier: L8EYCSCVsllaPagjBkN/GbRY/JhDRcUtLjjryoj52rA=
Subject key identifier: 76:83:0C:EE:7E:A2:8F:FE:5A:31:4E:0C:45:5A:92:B2:74:50:53:63
Authority key identifier: A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
Certificate issuer: /CN=a09fda047b3a0b1c820435e699388660da32c63f
Certificate serial: 01975459B0101FCC18792E783AD39B738414
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
Manifest number: 04DD
Signing time: Mon 09 Jun 2025 11:00:53 +0000
Manifest this update: Mon 09 Jun 2025 11:00:53 +0000
Manifest next update: Tue 10 Jun 2025 11:00:53 +0000
Files and hashes: 1: FfIlEvStYRtAHT_4tgisj2sboIA.roa (hash: u8VtTRQomqZri4fvKgtiux4C4c/ZHFagnd78Z59URa8=)
2: oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl (hash: karDUrFRQNoDx9hjfNkdxnlq6soUaB5UmUftYIL5emY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:59:b0:10:1f:cc:18:79:2e:78:3a:d3:9b:73:84:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09fda047b3a0b1c820435e699388660da32c63f
Validity
Not Before: Jun 9 11:00:53 2025 GMT
Not After : Jun 10 11:00:53 2025 GMT
Subject: CN=76830cee7ea28ffe5a314e0c455a92b274505363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e2:46:4f:36:db:60:3e:80:62:ad:53:88:a2:
56:de:2c:02:20:5d:20:42:b3:c1:43:a5:01:13:e7:
73:d2:61:bc:47:53:89:bb:85:3a:d9:ec:cd:5c:04:
57:ff:b3:66:7d:c2:84:6e:f8:7a:7b:6b:6b:fb:8e:
ad:d7:1a:b6:e1:39:8b:82:b0:99:1e:4a:38:5c:c7:
cc:36:05:ca:8b:6b:aa:19:24:8c:3b:d7:04:1b:c4:
01:fd:76:cb:5a:6f:63:c6:20:46:01:80:f0:3e:7e:
f4:f9:ca:cd:fa:9a:3f:a6:05:99:81:04:cb:10:6f:
45:f1:4d:55:8c:62:b9:40:9b:6a:0c:7d:60:06:cc:
fe:31:14:30:e4:2f:66:e4:e4:02:f2:3f:ce:c0:41:
1a:7f:5e:e2:f3:cb:03:0e:3a:36:a9:fe:7a:e8:be:
69:15:42:42:a3:2f:0c:b5:67:8b:21:02:a3:7d:b6:
ab:67:7e:4f:df:b7:bb:a0:cb:31:da:6e:86:7e:23:
85:c1:5a:0c:58:08:53:30:4e:17:28:15:df:d2:97:
1c:61:38:c3:fa:9e:d7:63:a9:ed:5c:e2:c3:11:d3:
5b:37:f6:03:6a:49:d4:68:98:46:33:c3:80:d3:b3:
e9:e3:e8:0f:15:ec:9b:61:cf:1a:e8:b2:3a:e8:b6:
95:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:83:0C:EE:7E:A2:8F:FE:5A:31:4E:0C:45:5A:92:B2:74:50:53:63
X509v3 Authority Key Identifier:
keyid:A0:9F:DA:04:7B:3A:0B:1C:82:04:35:E6:99:38:86:60:DA:32:C6:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/8b4d32-0365-4daa-9d5b-29920e5167d9/1/oJ_aBHs6CxyCBDXmmTiGYNoyxj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:39:a3:b9:d2:e0:6b:3a:30:46:02:40:0f:18:42:10:08:d0:
82:30:a6:d5:44:09:2e:0f:5a:f2:36:e6:7e:04:71:44:3c:79:
ff:9a:0e:5a:f5:62:28:fe:4e:ff:e1:5a:c4:38:e2:72:06:a0:
e4:f2:87:2b:9a:9b:b8:43:99:ea:96:91:14:20:a7:5f:ec:e5:
8b:98:38:db:2b:71:8c:2e:c5:70:25:fc:b4:15:71:24:a0:da:
09:c1:fe:da:a3:61:12:bd:2e:f2:4a:bd:34:4f:03:04:96:c1:
1e:7a:2f:54:ca:d1:5b:f5:42:09:eb:fb:62:ad:f3:4f:1a:e6:
08:e2:ba:59:b0:40:d9:80:9c:af:ed:30:62:6d:6c:25:b8:25:
3d:3f:18:c5:40:7f:59:b3:df:13:b0:51:d6:0b:ff:02:f0:b2:
4f:d7:7c:e6:11:2e:0a:e9:3a:f9:06:bd:51:ac:8f:fe:7c:f9:
0a:2e:73:53:d9:a5:49:0b:32:5c:96:8d:79:74:8a:94:69:99:
2b:b6:e8:3c:f7:45:7c:31:a7:4b:95:0a:23:ab:75:6d:91:69:
29:e2:5f:20:d2:1a:5a:cc:6e:35:af:a2:a5:b4:79:56:64:72:
79:6e:83:75:2c:8e:d7:66:e0:80:4b:6a:1b:cc:71:99:15:9b:
9b:78:d0:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 16:17:51 2025 by rpki-client