Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
File: oiw84jcbnyHFfgw6V4fZWnNctQA.mft (raw, json)
Hash identifier: Y/yAYDBgyfZoDXg+xs/38+XJ6gcbNO8s9MeWhJgeh3U=
Subject key identifier: F1:F8:6D:87:04:77:28:0D:4E:4B:09:2E:06:05:4F:05:FA:92:B1:C4
Authority key identifier: A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
Certificate issuer: /CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Certificate serial: 01975F4ABE9A333923117B28D5680C893506
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
Manifest number: 0F82
Signing time: Wed 11 Jun 2025 14:00:23 +0000
Manifest this update: Wed 11 Jun 2025 14:00:23 +0000
Manifest next update: Thu 12 Jun 2025 14:00:23 +0000
Files and hashes: 1: U4H4DXiB1R3t2sbazcIxIzp8LJM.roa (hash: d9YRAg9H/qZYSSHmjXFBkp2EkGuj36QH5Z/4fdmKOEA=)
2: oiw84jcbnyHFfgw6V4fZWnNctQA.crl (hash: ptfKjFwsVEVHtTpw8yVngGk0m8mwCJ74xxOGPyeqsDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 14:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:4a:be:9a:33:39:23:11:7b:28:d5:68:0c:89:35:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Validity
Not Before: Jun 11 14:00:23 2025 GMT
Not After : Jun 12 14:00:23 2025 GMT
Subject: CN=f1f86d870477280d4e4b092e06054f05fa92b1c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:04:88:cf:5f:a1:1b:dd:f0:25:3b:96:f1:6b:
df:01:2e:c3:0d:31:40:66:09:d4:5c:48:10:ca:e8:
85:f3:ef:69:7b:2a:57:7a:36:2e:8d:c6:42:ba:3d:
8f:8b:94:77:e1:17:45:85:8d:2e:f9:30:a7:12:53:
00:2b:9a:d4:ca:35:e8:56:df:fa:d3:f9:c4:a9:7c:
13:60:cb:78:78:d8:3f:46:04:4f:94:c7:ff:37:ce:
73:62:f7:5a:1b:7c:8d:fb:b9:cd:62:e9:97:99:d4:
dd:91:1f:1b:c6:fe:4c:8c:44:1f:01:ed:58:93:fa:
4a:bf:e4:c7:52:e5:be:5e:4c:fb:6d:3c:2a:b5:e7:
df:f7:ee:49:73:02:b6:3b:cb:b7:41:e0:69:02:aa:
77:4c:d6:44:88:cf:e4:ab:e6:51:8a:52:5a:ca:79:
a4:cd:7e:e9:e7:2d:b6:95:66:cf:2b:a3:b2:8c:cd:
ae:2c:26:3d:d3:9a:66:7a:ee:eb:0e:0b:49:f7:16:
a7:aa:03:b7:7e:7d:a8:18:18:1c:37:64:11:11:4b:
f4:0a:67:20:40:c3:43:6d:3c:81:da:5f:ee:ec:6d:
d6:5b:ff:49:54:68:ff:4f:b7:9f:05:f3:b9:d2:24:
2e:2e:37:59:97:de:a8:36:e2:ab:fa:4b:93:9f:dc:
2b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F8:6D:87:04:77:28:0D:4E:4B:09:2E:06:05:4F:05:FA:92:B1:C4
X509v3 Authority Key Identifier:
keyid:A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:38:97:46:31:30:33:c7:b3:39:02:5c:75:c7:22:85:0d:eb:
5a:2c:55:73:57:99:27:34:b1:73:43:31:ac:07:f1:f1:16:2e:
9f:be:5e:ab:f4:59:cd:12:1e:8a:ed:c4:0d:cd:61:18:1d:19:
31:e0:34:8f:4c:78:1f:41:23:9b:a4:d8:71:ff:3a:3a:ea:53:
94:2a:d2:ff:43:2a:19:ef:c8:d7:a9:ce:dd:57:d5:f3:3d:85:
3c:c0:5d:d5:ea:eb:cb:15:29:75:2f:fa:a8:c0:fc:f6:54:dc:
f0:07:d3:51:0b:fa:eb:f9:8b:59:b7:aa:5a:36:29:1b:6a:3c:
5b:07:60:9a:f4:eb:27:0f:6e:c5:a1:cc:92:43:69:1d:b1:41:
ed:0b:68:01:b7:ef:bc:b1:b3:06:46:5a:3e:a4:4e:c1:21:4f:
d7:86:96:28:30:7a:94:57:ec:24:b3:2c:a4:0c:cf:00:41:93:
30:75:f4:e7:b7:ba:1d:68:42:a9:de:c5:65:da:49:cd:e1:b8:
bd:62:79:0a:38:2f:1e:ec:b9:e0:a1:fc:e5:ad:59:14:1f:af:
4e:39:0b:5c:47:d9:94:e6:e9:04:19:dd:bf:48:25:1d:c7:3f:
42:cc:b0:89:9a:88:3d:d4:13:c8:71:42:ca:de:fe:46:d2:b2:
8d:e5:ec:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:46:38 2025 by rpki-client