Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
File: o3U2my1LsuLe3maGRTE-NE5vHMA.mft (raw, json)
Hash identifier: 4Wh4/OJecmSS+T32QrM+e3urwT7Xd0sSsmQ+iv83wVw=
Subject key identifier: 2E:6C:2D:15:8F:A6:D8:AA:FA:CB:73:89:13:BE:82:3C:53:C3:D3:65
Authority key identifier: A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
Certificate issuer: /CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Certificate serial: 01976A3CD86CC319AD6ACAD1A7CAABA6B968
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
Manifest number: 1591
Signing time: Fri 13 Jun 2025 17:01:01 +0000
Manifest this update: Fri 13 Jun 2025 17:01:01 +0000
Manifest next update: Sat 14 Jun 2025 17:01:01 +0000
Files and hashes: 1: DyAD9klcag15NhnplKEMXi8dKqg.roa (hash: Zvr5j/JLyl2kQb4eL63NQCTsndBLbuYPjEiWULmfej8=)
2: o3U2my1LsuLe3maGRTE-NE5vHMA.crl (hash: KPOEIACQB3DPmNrWDI52/nGE99sl80dxsE+eGxdDxrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:3c:d8:6c:c3:19:ad:6a:ca:d1:a7:ca:ab:a6:b9:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a375369b2d4bb2e2dede668645313e344e6f1cc0
Validity
Not Before: Jun 13 17:01:01 2025 GMT
Not After : Jun 14 17:01:01 2025 GMT
Subject: CN=2e6c2d158fa6d8aafacb738913be823c53c3d365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:25:70:69:33:c1:97:49:99:5d:59:e3:d8:02:
1e:0f:37:cd:0d:b1:af:a1:4c:af:60:b0:31:68:bb:
94:43:55:91:b0:be:c4:ce:ef:ed:11:65:6c:78:82:
22:d4:f0:e0:a2:3b:b2:fd:51:70:1b:fc:b7:23:da:
95:7b:59:15:60:5c:23:65:eb:be:67:86:01:6c:d6:
bc:0b:f5:8f:45:28:55:28:58:cc:f8:5a:0c:39:bb:
94:00:0a:4e:bf:65:45:53:97:71:7d:3e:80:f7:32:
26:c5:ae:c9:31:4e:f6:0a:4d:c5:de:ad:67:d4:86:
4d:31:99:22:4c:d8:63:34:b9:6e:c5:fa:0d:d9:10:
89:0a:3b:45:99:e4:58:89:66:2e:ae:b4:be:b9:fd:
66:4c:28:a8:e8:31:de:f5:b2:33:b6:5f:2a:80:77:
26:90:6c:c3:71:93:0e:91:06:10:33:75:f3:fb:22:
f3:78:89:7f:bc:43:dd:52:3a:6b:50:13:d1:3d:3f:
fb:d4:1c:62:e3:88:35:ce:49:bf:ca:69:1e:2a:b9:
3d:03:d4:aa:29:23:0a:af:85:2b:c6:fb:5d:9c:a9:
9d:b4:9f:41:ac:7b:cb:00:61:b3:ab:27:83:a4:58:
76:5f:34:89:64:a8:7b:65:b9:76:c8:a3:06:b1:65:
d4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:6C:2D:15:8F:A6:D8:AA:FA:CB:73:89:13:BE:82:3C:53:C3:D3:65
X509v3 Authority Key Identifier:
keyid:A3:75:36:9B:2D:4B:B2:E2:DE:DE:66:86:45:31:3E:34:4E:6F:1C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3U2my1LsuLe3maGRTE-NE5vHMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ec6905-b0f7-424f-8a84-28bec7b99929/1/o3U2my1LsuLe3maGRTE-NE5vHMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:b7:ea:cf:c0:11:92:b1:f2:3f:31:67:56:8c:f0:e7:da:44:
70:e4:be:9e:5a:f5:c9:72:42:ac:b4:ea:5b:cf:61:b8:54:c6:
d1:ff:13:13:59:85:99:c8:0e:a8:93:12:ab:05:2d:2c:e7:ba:
71:a9:ea:d8:75:94:ca:e9:d5:3e:62:1d:8b:f5:58:a9:10:dd:
20:d6:2d:65:9d:f7:a3:28:00:4d:e5:66:e1:57:5c:05:0f:c6:
1f:d3:c3:a1:77:25:52:7f:99:6e:fd:4f:32:e3:52:bb:ac:0f:
19:52:b6:9e:10:d0:1a:1d:3c:2b:40:df:d2:e6:cc:03:db:bc:
09:10:0d:a8:a3:b8:28:60:e3:d0:8c:50:7e:f4:51:11:04:33:
d5:96:cf:9c:07:83:42:ce:2e:2f:16:7f:1f:21:96:d4:c6:38:
df:63:6a:dd:1c:63:9d:4c:f9:b1:74:7d:5e:41:ab:bc:31:ce:
b2:71:49:91:a3:e7:e8:ee:f6:e7:b9:55:47:40:57:82:72:e5:
f4:10:f3:59:bf:e0:d9:1d:27:dd:4d:8c:60:77:e1:64:f0:50:
86:75:8f:89:e9:00:0c:08:25:d6:6b:6a:58:2d:d7:4b:7b:d7:
80:28:0b:e6:dd:6d:7e:40:c0:75:2b:38:e2:b9:87:16:1f:f8:
88:49:e0:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 22:56:30 2025 by rpki-client