Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
File: 8oxp2pTIXt1I2cH9jjMq477mYAQ.mft (raw, json)
Hash identifier: ziC8fVJrnHBxoJB/rvgOToAn9yvMeEUeRBxJTj/Lnwc=
Subject key identifier: 1A:C9:02:6E:82:DA:1C:3B:C9:6D:59:01:EB:D7:F5:62:42:C4:08:0F
Authority key identifier: F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
Certificate issuer: /CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Certificate serial: 01974D0DA2D0B27FACB82ED89646B76692C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
Manifest number: 0E49
Signing time: Sun 08 Jun 2025 01:00:28 +0000
Manifest this update: Sun 08 Jun 2025 01:00:28 +0000
Manifest next update: Mon 09 Jun 2025 01:00:28 +0000
Files and hashes: 1: 8oxp2pTIXt1I2cH9jjMq477mYAQ.crl (hash: 2kOEB20+gGKf29rQxFLwk9hVESy7P1bp+tF+HhU/ndY=)
2: m7fQ-cMMDdeyLl0RJP3A0VDHgVE.roa (hash: rB/+iXy3MWnMmudzmSTexHxDroAo7zhjaO5iq26LcWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0d:a2:d0:b2:7f:ac:b8:2e:d8:96:46:b7:66:92:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28c69da94c85edd48d9c1fd8e332ae3bee66004
Validity
Not Before: Jun 8 01:00:28 2025 GMT
Not After : Jun 9 01:00:28 2025 GMT
Subject: CN=1ac9026e82da1c3bc96d5901ebd7f56242c4080f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d4:2b:80:5e:0e:22:a4:b1:e6:19:5e:ce:22:
46:99:fb:b2:0e:21:5e:0d:97:d3:f8:7f:e8:32:97:
98:62:f8:80:3e:f6:16:9e:62:56:a8:22:e4:71:87:
5f:30:b8:ed:d6:6f:5b:c7:c3:70:51:d8:01:09:43:
52:fb:e9:6d:5f:27:0c:99:d9:32:08:1f:be:4c:35:
09:a6:2f:0e:13:12:b2:a9:70:81:6f:55:7e:ca:02:
a5:63:96:ca:44:5f:e6:12:86:9d:5e:c3:37:ac:87:
35:79:0c:4f:ca:1e:5a:dc:7e:ba:07:98:af:c1:0d:
ff:58:c7:72:cb:18:87:eb:c2:a7:b8:7b:7f:9a:fd:
3a:c2:46:92:df:26:b3:cb:b1:d3:db:0a:18:f4:dc:
06:67:3e:ff:49:2a:bc:9e:f7:1e:13:c9:b2:ea:24:
cc:ab:23:4f:d6:f8:b1:81:5c:fa:de:f5:d4:62:4d:
db:b2:1e:ca:37:b4:47:9d:80:8b:34:51:f9:c9:ea:
84:08:bf:30:9a:19:82:45:6e:07:6f:e7:ce:4d:27:
a2:d7:12:3c:bd:b7:a1:12:6b:38:6d:87:c6:ef:5c:
fd:eb:df:bd:8e:cb:37:b7:0b:91:60:37:41:90:14:
d6:d5:51:77:d2:18:26:76:22:85:66:68:91:71:3e:
c5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:C9:02:6E:82:DA:1C:3B:C9:6D:59:01:EB:D7:F5:62:42:C4:08:0F
X509v3 Authority Key Identifier:
keyid:F2:8C:69:DA:94:C8:5E:DD:48:D9:C1:FD:8E:33:2A:E3:BE:E6:60:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8oxp2pTIXt1I2cH9jjMq477mYAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0dcd96-0ae3-4f5c-8d21-a902b0096b99/1/8oxp2pTIXt1I2cH9jjMq477mYAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:c5:0d:02:27:9a:b5:3f:94:8f:85:60:fe:6d:be:b5:68:74:
1c:4f:46:d0:c5:f2:de:ac:15:24:b8:cc:a4:7f:70:e2:ae:f0:
d5:00:2a:4d:fb:69:8c:0f:4c:1c:54:a5:bf:ae:40:0d:9a:9b:
52:68:43:34:b7:25:aa:a1:08:38:ed:88:53:dd:69:6c:87:e2:
a1:e3:2a:fe:dc:21:7e:28:40:d3:9c:66:a3:82:07:22:ce:20:
90:06:15:60:9e:15:4b:da:34:1a:ec:f5:04:fb:55:90:35:18:
6d:81:06:5e:04:72:9b:78:2b:34:13:c3:74:b8:fc:cc:c5:76:
91:22:cc:50:e2:d5:77:83:e2:1c:41:a8:0c:d5:e1:59:9c:2e:
7a:5a:b2:88:52:8c:27:f6:01:55:0a:37:06:3c:78:fe:82:4b:
60:a5:72:b7:1f:e4:47:99:9a:88:6b:65:86:24:cd:21:2f:c8:
c0:c9:7c:63:78:49:b1:db:e9:13:7e:bd:fd:14:be:b2:aa:de:
cd:36:f3:a1:88:18:d8:78:5d:43:0d:db:8e:5f:08:bc:b9:02:
05:fe:eb:f7:d7:a8:c8:bc:ee:08:a2:be:a8:3b:f3:86:83:34:
fa:ec:ec:f1:b3:fa:61:ed:12:fe:c8:bb:bd:4d:f7:27:11:7f:
0c:10:19:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:46:22 2025 by rpki-client