Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
File: o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft (raw, json)
Hash identifier: iwYpgufU9fYauKbEP/+vw4+/T9kPDzPjOk+5VGqwJ8s=
Subject key identifier: AA:A8:67:F3:60:B4:D4:0B:BC:AE:9C:7F:E2:9B:5C:D4:23:6F:FC:AE
Authority key identifier: A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
Certificate issuer: /CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Certificate serial: 01974C31F9AC0F3E48587010EA6B54AF16FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
Manifest number: 1570
Signing time: Sat 07 Jun 2025 21:00:32 +0000
Manifest this update: Sat 07 Jun 2025 21:00:32 +0000
Manifest next update: Sun 08 Jun 2025 21:00:32 +0000
Files and hashes: 1: JQFRevUesYnGzWy86if_lRLWdpc.roa (hash: t3BYwJZyAAH5HRBi+AIKc99FxTLmFzwx0nZw4AplB88=)
2: o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl (hash: xTKos7P7GFlJNXjHIF9xAm3xHNWUVKWYocp613ar8Ag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:f9:ac:0f:3e:48:58:70:10:ea:6b:54:af:16:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a366f35bac61a0abf71d18d6b1063d5c933a24ab
Validity
Not Before: Jun 7 21:00:32 2025 GMT
Not After : Jun 8 21:00:32 2025 GMT
Subject: CN=aaa867f360b4d40bbcae9c7fe29b5cd4236ffcae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:23:9a:e3:98:dd:61:bb:08:0f:b4:b1:34:90:
c1:74:84:82:ff:20:f7:84:4d:ee:23:45:09:dc:81:
58:41:d8:07:db:6b:2a:c3:48:ba:ff:27:f8:2c:0b:
6f:b2:99:1d:b7:2f:ba:c2:c3:4d:7c:32:8b:4a:8b:
a2:75:c9:96:ae:de:20:5d:94:ac:d1:07:84:7f:ba:
9d:6c:1a:f2:35:bf:90:f1:49:ca:04:6a:00:10:b1:
c6:5e:61:2f:08:79:55:ba:b1:1e:d4:55:51:7a:4d:
a7:42:a1:05:b2:4f:b4:88:c8:06:5a:24:d3:bf:50:
bf:aa:1c:e5:ef:b9:2a:3e:53:8b:58:29:d0:d1:da:
28:a2:fa:03:fc:26:08:3b:01:52:97:e2:55:de:8a:
f5:b7:7d:bb:20:e8:59:f2:05:97:ac:15:0b:8c:3b:
32:e6:27:2f:fb:e6:ba:f3:6d:5d:be:fe:22:2a:83:
49:24:22:e4:ed:75:3f:9e:97:47:ce:9a:f0:15:7b:
5b:14:7c:89:b5:02:4d:b8:87:0d:03:f7:6c:0b:0f:
f1:ff:08:0c:1e:fe:1a:3d:5e:03:88:14:82:39:ea:
09:38:d6:bd:73:d0:96:90:67:e5:43:1f:fd:8c:03:
5d:05:4e:6f:e1:da:6f:c9:d0:81:8f:cf:3e:5f:2d:
ac:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A8:67:F3:60:B4:D4:0B:BC:AE:9C:7F:E2:9B:5C:D4:23:6F:FC:AE
X509v3 Authority Key Identifier:
keyid:A3:66:F3:5B:AC:61:A0:AB:F7:1D:18:D6:B1:06:3D:5C:93:3A:24:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2bzW6xhoKv3HRjWsQY9XJM6JKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4cf814-79b5-4786-ac51-3190795e863b/1/o2bzW6xhoKv3HRjWsQY9XJM6JKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:d5:39:03:49:e9:5c:7e:1a:59:f3:0f:4f:85:5e:4a:2f:f5:
9c:7d:3b:54:be:d4:85:7d:a6:ef:d9:3a:d8:ac:d5:d5:fb:47:
c7:0b:c8:37:eb:25:9f:e1:82:79:9d:95:32:06:b4:b7:45:f2:
74:7a:5d:7a:eb:c3:fe:67:a6:11:c9:2b:47:3b:af:40:c0:04:
0b:68:f4:27:cf:2b:18:51:94:4d:3e:4c:78:65:fd:00:aa:67:
bd:60:5d:66:b9:5d:6a:13:1f:1b:15:c2:6e:c9:67:74:5e:d3:
bc:74:83:f7:c3:d4:8d:91:e3:5a:1a:86:bb:c6:76:21:3b:cc:
66:42:fb:bf:6c:f3:16:64:ad:45:6b:2d:45:22:38:7b:bb:a9:
e7:03:93:74:72:50:7a:c4:de:9f:2b:e4:7f:a3:18:f6:54:3e:
a4:f7:0f:09:6e:c4:be:07:cf:7e:bb:95:b9:8b:9e:cc:b3:89:
ce:a7:86:cf:d7:40:2d:4f:e1:c8:de:ca:23:9c:e8:58:87:ca:
ef:94:d0:11:ba:42:5c:60:b3:20:c0:52:39:23:5b:cf:ae:bd:
dc:66:f2:9b:1c:7e:5e:60:30:2b:1d:77:1c:3a:75:8c:b1:2e:
69:e5:8e:f7:14:c8:07:87:86:1d:b8:47:65:0e:50:68:81:ca:
cb:cc:cc:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:27:13 2025 by rpki-client