Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
File: o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft (raw, json)
Hash identifier: GCYJajJ6gWJjqVjGll6BSJzQlk9TD2C/gKduvQTjpl0=
Subject key identifier: 77:FC:90:57:03:0D:15:BE:BD:00:B9:43:F2:05:A8:3A:82:20:FB:AE
Authority key identifier: A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
Certificate issuer: /CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Certificate serial: 01975911F40CC834DF609FFBFD9CBE4FDEFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
Manifest number: 1292
Signing time: Tue 10 Jun 2025 09:00:38 +0000
Manifest this update: Tue 10 Jun 2025 09:00:38 +0000
Manifest next update: Wed 11 Jun 2025 09:00:38 +0000
Files and hashes: 1: KHmBEFAHu1D8g7BNr6DM90HcrdE.roa (hash: cHCWZbVIixRYPkJFTsJoo7AK/4mwhNH2E0rmOh1q4HI=)
2: o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl (hash: hufOQQ9dU98BnDWSjUdYCxul1Mw50yWzsrLNsyeJJIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:11:f4:0c:c8:34:df:60:9f:fb:fd:9c:be:4f:de:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Validity
Not Before: Jun 10 09:00:38 2025 GMT
Not After : Jun 11 09:00:38 2025 GMT
Subject: CN=77fc9057030d15bebd00b943f205a83a8220fbae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e0:ff:63:a8:43:bb:f6:b5:65:32:ac:f2:aa:
7e:d5:bb:3c:a0:c2:c0:ed:64:92:1c:71:80:b9:6e:
ae:c7:dd:a2:3f:73:e2:bd:24:52:d7:a5:65:cc:6f:
11:42:f6:7f:4d:03:4d:75:7d:b9:e9:0b:4c:e3:61:
f2:97:ea:40:16:5b:75:1f:56:ea:7e:8b:03:8a:e8:
f9:68:5c:97:04:02:a4:bc:0e:dd:79:46:d6:97:98:
e2:cc:e6:37:97:1c:9d:31:d2:c1:e3:d5:07:fd:31:
70:af:11:96:08:63:2d:90:17:f2:5e:7a:ef:9d:c7:
ea:8a:60:b9:f8:83:02:fa:df:7b:42:fa:af:f3:74:
2c:e1:3f:91:16:c2:03:4e:66:7a:a2:0c:de:b5:4b:
e7:2d:53:34:57:43:8a:f9:61:68:e0:dd:c6:0d:6c:
54:cd:f4:a2:1f:83:56:a0:06:c8:74:ea:3c:d6:99:
e2:43:b2:48:18:00:c1:7e:ea:79:5a:ae:59:9f:3c:
0e:e6:17:46:94:3a:7b:58:eb:4b:70:1c:e3:c7:b7:
36:00:5e:06:71:f8:ca:39:da:86:f6:88:54:78:6a:
c8:5c:bd:c3:9c:b6:d5:68:0c:f1:65:a7:b6:cd:37:
bc:c6:e6:28:fe:fd:d8:45:c8:d8:33:96:b9:09:57:
82:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FC:90:57:03:0D:15:BE:BD:00:B9:43:F2:05:A8:3A:82:20:FB:AE
X509v3 Authority Key Identifier:
keyid:A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:4e:19:83:3b:74:19:78:33:fd:d2:ca:e9:6f:42:5d:16:6f:
e1:5a:85:54:15:e4:06:4d:92:96:ca:5e:f0:0b:e8:66:2a:1e:
5c:0d:d5:a3:11:03:07:de:88:96:f0:f8:6a:39:fb:65:70:70:
d9:00:80:36:df:81:99:b8:e3:91:8c:23:6a:33:b1:47:0e:66:
cf:8b:5c:10:50:66:25:97:e7:98:8d:f3:38:2e:8f:0d:b6:4c:
56:e2:20:0d:d1:3b:ec:5c:d5:c5:e6:42:4e:44:5f:33:cb:9f:
ce:96:73:64:9b:37:ad:0d:c7:ae:46:d1:aa:04:37:7b:a6:41:
32:43:4e:25:60:48:71:d9:1e:f1:50:c3:b3:87:b5:9e:16:7f:
7e:78:37:ee:02:cf:62:98:9a:d8:d6:59:e2:e4:cb:52:b0:04:
6a:5d:02:ed:fc:99:1a:d1:cc:19:1c:76:10:78:c0:d7:ab:9e:
17:7a:7a:73:e9:6d:11:64:fb:96:25:2c:46:9f:d9:cb:b8:9e:
66:82:8c:ae:29:18:bf:f2:a6:38:68:25:95:48:a3:07:14:1d:
35:d1:82:16:8c:91:e3:52:6e:95:9e:16:31:01:09:10:f8:c4:
23:35:20:30:31:80:d4:3a:bf:60:27:de:45:69:b1:cb:ca:2f:
cb:5c:30:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 20:14:20 2025 by rpki-client