
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.mft
File: o7HPJ-q7mfazXewahDm21lPc4zo.mft (raw, json)
Hash identifier: s2WeTpDYlcxcNEkuuK7v2IZ9LyuX2tfKPOzipSpEDlM=
Subject key identifier: AD:18:CB:57:F1:64:30:F1:00:B4:32:17:57:06:F8:74:45:0F:BA:CE
Authority key identifier: A3:B1:CF:27:EA:BB:99:F6:B3:5D:EC:1A:84:39:B6:D6:53:DC:E3:3A
Certificate issuer: /CN=a3b1cf27eabb99f6b35dec1a8439b6d653dce33a
Certificate serial: 01976BBCF220F5554AB1142FC0DE0E005283
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o7HPJ-q7mfazXewahDm21lPc4zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.mft
Manifest number: 158B
Signing time: Sat 14 Jun 2025 00:00:34 +0000
Manifest this update: Sat 14 Jun 2025 00:00:34 +0000
Manifest next update: Sun 15 Jun 2025 00:00:34 +0000
Files and hashes: 1: o7HPJ-q7mfazXewahDm21lPc4zo.crl (hash: SeSdJNTuZYUy9vxMKQVMpbdq+M43NHduGTGEOUzP/Oo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/o7HPJ-q7mfazXewahDm21lPc4zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bc:f2:20:f5:55:4a:b1:14:2f:c0:de:0e:00:52:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3b1cf27eabb99f6b35dec1a8439b6d653dce33a
Validity
Not Before: Jun 14 00:00:34 2025 GMT
Not After : Jun 15 00:00:34 2025 GMT
Subject: CN=ad18cb57f16430f100b432175706f874450fbace
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:52:32:8c:47:df:66:76:b2:ed:24:c1:d9:11:
d5:7c:7e:ac:cf:8f:65:b2:18:48:8d:84:b3:4e:9f:
fb:bb:3e:b5:c7:34:58:07:0b:6c:9d:bc:5d:c0:3c:
2a:fb:00:8b:fc:73:29:00:b4:a2:f4:84:10:8a:4f:
f2:11:fe:07:bc:fd:27:b6:dd:49:cc:a0:9b:b9:d9:
99:0a:70:44:07:ae:5b:94:7e:aa:93:ce:3f:d4:ae:
bb:3f:91:b9:64:b5:3c:80:4e:bb:bb:53:1e:aa:1c:
e2:f9:87:f2:9e:b9:6d:26:05:fd:c3:39:39:ea:21:
89:94:f6:90:77:08:5e:ee:51:0b:57:8f:31:e0:01:
7a:96:5e:92:8c:fa:f9:68:0e:c6:ac:55:3b:f4:50:
47:6e:53:64:bd:d8:94:a2:82:f5:0c:1b:06:75:93:
c8:c2:78:38:74:95:c0:f1:25:ad:bb:51:22:63:85:
25:a7:6b:e0:aa:72:34:d2:a3:e2:ee:f2:2b:0a:81:
c8:da:62:7d:a9:46:98:46:71:bf:c5:4f:bd:39:57:
f0:15:0d:43:fd:45:04:13:d4:9b:00:bf:e3:6f:26:
7d:88:d8:95:61:c5:47:b8:0c:c2:f5:dd:cd:f4:e2:
2a:89:b9:e8:df:d9:40:63:8f:2d:63:2b:7a:af:af:
e9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:18:CB:57:F1:64:30:F1:00:B4:32:17:57:06:F8:74:45:0F:BA:CE
X509v3 Authority Key Identifier:
keyid:A3:B1:CF:27:EA:BB:99:F6:B3:5D:EC:1A:84:39:B6:D6:53:DC:E3:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o7HPJ-q7mfazXewahDm21lPc4zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/416742-7dd6-4101-8c18-05786bfd6857/1/o7HPJ-q7mfazXewahDm21lPc4zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:35:e9:4b:8a:67:1f:ea:dd:08:d2:22:a7:1a:30:76:ad:59:
01:70:ce:61:a1:c5:bb:bf:80:61:8f:8b:83:08:86:92:d8:4a:
55:b4:3d:7c:ef:50:11:d9:53:d5:86:97:71:84:64:dd:2f:54:
7e:37:6b:3a:01:9e:60:4a:a1:72:1e:ab:8a:3e:b6:f0:a1:5b:
57:45:8f:1b:f1:84:66:23:05:e7:9a:12:98:c6:48:7b:ad:fa:
35:25:34:d1:8c:79:77:92:45:f4:8e:2a:88:34:c1:24:9d:1e:
bc:d4:ed:5d:86:9e:0d:e7:7a:d9:58:42:71:9e:f9:b4:ba:b0:
34:c5:aa:08:74:c1:d3:43:cb:47:a5:f4:5e:c2:59:a4:7d:c7:
d0:ed:74:b7:3f:88:aa:5f:64:6c:c0:90:98:4c:05:a2:18:b0:
19:28:96:d2:e6:c4:25:97:11:70:89:63:4e:9b:f8:c6:ba:b2:
be:9f:d0:c8:6b:da:90:2d:26:07:d5:9d:79:09:be:80:13:a6:
0f:36:3d:f9:85:bf:9a:f0:d3:92:02:a5:8f:b5:03:53:b4:d1:
be:dd:3c:14:ae:ce:12:39:71:27:17:5a:84:f1:b9:73:ae:3f:
dc:59:f1:c2:3f:e4:48:87:ee:90:5d:22:d3:85:44:30:c3:ce:
fe:d8:26:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:24:26 2025 by rpki-client