Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
File: o8p7HBOn17MSMUErj7aUehdH250.mft (raw, json)
Hash identifier: 6TO3uIsrJE90R8ydIji2nea2jQt+XIyuM57A3BTAsa4=
Subject key identifier: E6:28:51:67:F9:ED:B9:5B:11:E2:A6:C4:9F:5F:64:3E:D0:71:53:34
Authority key identifier: A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
Certificate issuer: /CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Certificate serial: 01974779AA2519B53AC5C43E0406AA35EA37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
Manifest number: 0368
Signing time: Fri 06 Jun 2025 23:00:45 +0000
Manifest this update: Fri 06 Jun 2025 23:00:45 +0000
Manifest next update: Sat 07 Jun 2025 23:00:45 +0000
Files and hashes: 1: X0-Djm0vHdUiJwsWds74O566gnw.roa (hash: wptFaY0ZwFbGnw/VuRN3robTidxbKoo/tyvxKrOBB/E=)
2: o8p7HBOn17MSMUErj7aUehdH250.crl (hash: mZJapmMwrF+VplzMw7vnVGfB6UWd/1YqC387nYs1g5A=)
3: wfeH5shQb9p8-APifaQwZCuXjuw.roa (hash: i3m8mYv5PGE+aCaz85jAgzkj3ipmT/iJy2vmh07ZehU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:aa:25:19:b5:3a:c5:c4:3e:04:06:aa:35:ea:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3ca7b1c13a7d7b31231412b8fb6947a1747db9d
Validity
Not Before: Jun 6 23:00:45 2025 GMT
Not After : Jun 7 23:00:45 2025 GMT
Subject: CN=e6285167f9edb95b11e2a6c49f5f643ed0715334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:4c:b9:28:e6:67:67:0e:16:b7:d5:7a:f5:bc:
d0:4f:68:7d:2d:f3:2f:f2:72:25:2f:e0:30:b1:ae:
89:e8:b4:19:2b:8d:7e:33:62:b9:fa:4c:65:76:c8:
80:f3:ec:0b:6e:79:cc:34:5a:51:fa:c5:d6:8b:93:
65:f7:6f:5b:64:d3:73:22:66:8d:ca:5d:a6:0d:8c:
60:bc:8a:50:2c:9a:8b:d6:a5:e0:bc:36:3a:19:cb:
c9:d1:28:d7:cc:9d:c1:3a:04:49:1e:52:64:11:6e:
e9:e6:0d:3d:8e:2c:77:4e:33:4c:99:3e:8f:b2:e5:
7f:c1:9f:72:95:a5:fc:2d:6b:d1:d8:6b:d2:c9:a1:
f4:23:98:c5:3e:6a:7c:ab:8d:b4:ab:5d:66:18:b5:
d3:3b:1f:57:ce:47:2f:5b:72:63:64:57:74:92:ac:
42:0e:ba:49:11:3e:7e:26:98:ff:e8:37:d6:c5:1f:
9b:1b:33:82:59:f8:28:57:f1:26:e9:42:5f:af:3c:
01:d5:db:47:4d:63:3a:47:d3:c1:d0:08:d5:5d:d6:
0d:fe:23:9a:8f:ba:3c:a3:d5:af:4e:4f:ca:9d:c3:
e0:d4:fb:0c:4f:61:ef:cc:43:9a:62:a5:8f:ac:36:
f7:14:de:bb:f6:56:82:4b:30:cb:ab:37:87:4e:ce:
bc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:28:51:67:F9:ED:B9:5B:11:E2:A6:C4:9F:5F:64:3E:D0:71:53:34
X509v3 Authority Key Identifier:
keyid:A3:CA:7B:1C:13:A7:D7:B3:12:31:41:2B:8F:B6:94:7A:17:47:DB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8p7HBOn17MSMUErj7aUehdH250.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/bcdcca-f06b-40cf-8e21-2145220994ce/1/o8p7HBOn17MSMUErj7aUehdH250.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:63:f7:b8:75:56:2e:b2:9b:a4:bf:fc:8c:18:bc:cd:67:a1:
57:93:20:a9:7d:2f:db:40:70:1d:b4:4a:7c:71:1a:5f:06:69:
a8:76:36:31:86:ea:8e:6b:18:a3:6c:74:52:b5:0a:26:59:b2:
69:a6:c0:89:21:b6:52:52:26:c5:72:11:25:22:d2:23:d9:55:
e8:66:8f:a8:54:30:1c:68:a4:60:cd:e5:b0:71:42:27:9c:f7:
3a:3e:f0:d9:f4:3f:fa:23:3f:2d:59:69:7a:26:c0:bc:ff:b2:
af:19:85:da:88:31:08:c1:7a:9e:86:86:90:b0:30:14:3a:af:
b2:01:f6:c0:60:ec:d9:21:30:d9:33:15:c1:9d:f6:b3:d5:fd:
79:54:fe:53:8d:83:28:98:8b:7b:83:3b:a8:f1:92:73:b7:f5:
94:28:ac:13:ee:3b:24:20:2b:4d:25:06:d9:4d:7c:48:07:10:
47:10:43:d7:94:89:4d:2c:e6:8a:11:2e:d8:22:9d:9e:45:87:
8a:0b:7e:23:75:85:a7:1e:34:28:1b:80:0f:c7:3b:04:30:3a:
e5:b2:5e:34:59:9c:44:14:4b:f9:20:6a:6c:6d:fa:44:b5:dd:
b9:10:82:f5:ec:4f:45:52:c6:3b:6c:05:fd:2f:94:3b:ed:50:
63:92:fe:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:23:48 2025 by rpki-client