Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
File: oiw84jcbnyHFfgw6V4fZWnNctQA.mft (raw, json)
Hash identifier: pp7PYVDjfbUeFmlF/e1pp8rs/PIe1m+ca0MvERqObwk=
Subject key identifier: 43:5C:65:B7:BF:80:40:75:4B:B2:67:1E:35:31:66:CF:2A:84:E4:29
Authority key identifier: A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
Certificate issuer: /CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Certificate serial: 019753B47E2A531365EE266A4E830B89FD80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
Manifest number: 0F7C
Signing time: Mon 09 Jun 2025 08:00:27 +0000
Manifest this update: Mon 09 Jun 2025 08:00:27 +0000
Manifest next update: Tue 10 Jun 2025 08:00:27 +0000
Files and hashes: 1: U4H4DXiB1R3t2sbazcIxIzp8LJM.roa (hash: d9YRAg9H/qZYSSHmjXFBkp2EkGuj36QH5Z/4fdmKOEA=)
2: oiw84jcbnyHFfgw6V4fZWnNctQA.crl (hash: gFs1LqhwOQjJCO3kCCrn0R+HmsJTRj1R6FwGpWl0nNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 08:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:b4:7e:2a:53:13:65:ee:26:6a:4e:83:0b:89:fd:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a22c3ce2371b9f21c57e0c3a5787d95a735cb500
Validity
Not Before: Jun 9 08:00:27 2025 GMT
Not After : Jun 10 08:00:27 2025 GMT
Subject: CN=435c65b7bf8040754bb2671e353166cf2a84e429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:92:58:f5:d3:f9:d2:81:1a:71:9f:ae:58:24:
79:02:7a:2b:c2:e1:bc:32:73:ba:98:6b:bc:f9:6d:
b1:e9:05:9f:a1:cc:2f:85:8d:36:5c:6e:14:0c:ef:
10:70:f4:13:45:6a:aa:65:9a:83:57:9f:c1:3e:da:
ab:12:10:8e:82:eb:68:dd:7c:4d:eb:9a:0c:92:c6:
db:d9:ce:8c:b2:ae:9a:29:e8:e7:96:90:44:0d:7c:
2f:8c:01:0d:3e:93:70:ec:bb:fc:85:1b:1c:63:cb:
9b:de:99:e0:11:6e:a9:95:64:05:eb:c4:c6:94:a5:
5f:2a:8b:0d:b3:9a:12:a7:03:62:34:e5:ce:56:d2:
85:b0:ba:43:dd:65:78:01:33:a8:e6:a5:b6:da:e8:
70:49:59:5f:80:a1:98:0b:31:c6:b5:b8:02:53:de:
10:98:49:cb:f3:8e:13:a3:22:05:43:26:04:6a:0e:
6c:86:87:de:97:6d:3d:77:78:a3:6c:68:82:f6:68:
98:a2:7b:df:d9:15:99:f7:94:40:e6:fd:73:e6:fd:
b1:26:88:31:20:65:9c:a3:88:bb:f8:64:fe:c0:6e:
81:6d:b0:90:9b:3d:a8:b7:ef:eb:77:ca:bc:ac:ee:
93:27:ff:26:ea:39:c3:4a:19:2f:9c:b4:88:19:d0:
9f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:5C:65:B7:BF:80:40:75:4B:B2:67:1E:35:31:66:CF:2A:84:E4:29
X509v3 Authority Key Identifier:
keyid:A2:2C:3C:E2:37:1B:9F:21:C5:7E:0C:3A:57:87:D9:5A:73:5C:B5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiw84jcbnyHFfgw6V4fZWnNctQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/506ec8-150f-4275-ac05-05393f2b3a47/1/oiw84jcbnyHFfgw6V4fZWnNctQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:08:f8:82:a7:1a:71:4e:e7:31:25:f7:de:18:9d:2d:de:64:
b8:d2:46:0a:e5:95:a3:b7:00:dd:82:c2:c0:a4:c6:b4:11:ef:
10:2f:f5:24:ef:ad:fb:34:17:50:51:3c:4f:a8:52:5f:7d:87:
b8:bc:cd:99:2b:29:c0:2c:d3:02:90:98:50:5d:63:ff:75:6f:
1c:29:29:53:10:cc:cf:27:3e:32:c0:f9:20:cf:a3:b8:2b:b3:
b5:74:b4:a3:57:56:a1:e6:4d:2c:93:b7:b3:52:df:f5:a3:12:
5d:0a:98:82:67:59:e2:85:d6:5a:5a:74:a8:4d:ac:2a:af:db:
90:1e:e0:17:90:02:a3:85:ab:cb:1f:fe:ed:a9:1e:30:96:55:
cb:e3:c9:91:ac:94:67:76:1d:4d:0b:3b:db:df:64:4c:bb:8e:
37:47:46:bc:67:36:2b:ea:e3:52:0d:d2:46:d5:17:c6:33:51:
b6:6f:25:e8:f8:46:67:25:af:c9:8c:10:be:3c:40:5e:9f:d3:
05:4a:d0:6d:e8:94:f2:7c:b4:f8:ec:9b:ad:e2:14:53:a8:e4:
6f:0b:79:8d:e9:f3:a4:6d:45:a0:9b:db:96:d2:4c:9f:73:22:
4d:b9:f2:8f:af:a1:7f:fc:be:a0:95:d6:59:1a:f9:f9:d6:7f:
da:35:54:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 16:37:14 2025 by rpki-client