
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
File: oQIHcvYouPtR80dRNrd_60smmL4.mft (raw, json)
Hash identifier: bg2IOCcWndi9R5PtTfEfenVnKDLyuSBvU90G/48lIy8=
Subject key identifier: A7:23:1E:5C:DD:55:01:37:95:7B:96:D1:22:E3:A1:39:52:7D:26:B7
Authority key identifier: A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
Certificate issuer: /CN=a1020772f628b8fb51f3475136b77feb4b2698be
Certificate serial: 01975791C32B310EB00F1AD173E1B2675BB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
Manifest number: 11CC
Signing time: Tue 10 Jun 2025 02:00:59 +0000
Manifest this update: Tue 10 Jun 2025 02:00:59 +0000
Manifest next update: Wed 11 Jun 2025 02:00:59 +0000
Files and hashes: 1: Xn7HlAmazqZObEY4Svfv4ZbMChM.roa (hash: 900LVbegyuqsxm1Su/VFGub5Wi1DlW68cWbr8g1USwo=)
2: oQIHcvYouPtR80dRNrd_60smmL4.crl (hash: wbNrDEojqIL10imy/KUL5cy8F5/tYU34aKnoNNWdYho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 02:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:91:c3:2b:31:0e:b0:0f:1a:d1:73:e1:b2:67:5b:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1020772f628b8fb51f3475136b77feb4b2698be
Validity
Not Before: Jun 10 02:00:59 2025 GMT
Not After : Jun 11 02:00:59 2025 GMT
Subject: CN=a7231e5cdd550137957b96d122e3a139527d26b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b7:56:91:e7:d6:8e:fd:38:e9:6a:2a:9a:c9:
4d:16:3a:27:f6:92:d5:d1:7f:10:6f:d0:1e:8d:18:
0f:76:f1:5f:70:72:e2:68:2f:1f:6f:9a:c7:67:3d:
07:8c:7d:7f:3f:4a:6a:50:f8:dc:b6:ae:70:dd:63:
7c:d4:ab:ae:36:1d:48:4e:2c:9d:d0:58:1e:5c:42:
f4:b7:8e:65:e1:6f:42:71:fe:3c:d4:dd:6c:e0:1f:
ef:f7:86:92:72:3e:16:f1:7a:7b:e0:65:43:d7:52:
86:ca:18:f4:ba:ee:dc:4d:09:76:55:51:ea:8c:bb:
58:52:39:e0:13:86:5b:42:80:65:54:f8:84:0a:21:
7c:76:e1:7c:ff:48:ee:07:b6:f5:c0:a3:3a:b7:74:
da:b5:fc:54:f4:a8:c1:29:1c:63:03:c9:d7:e8:eb:
75:a6:5e:0e:d7:f2:f9:00:b5:9f:18:42:ea:73:bb:
72:d2:75:ec:dd:b3:a0:3c:73:60:89:fa:84:19:7e:
47:ee:a9:d6:f3:69:91:75:2e:57:04:fb:94:56:cf:
d5:2a:41:ba:80:a3:9f:f8:3f:41:55:b5:0b:80:b8:
ba:a6:4f:02:7d:4e:95:3b:80:d9:06:67:17:cd:34:
b6:df:08:a1:78:cf:21:79:67:b8:3d:0c:65:f5:5d:
ef:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:23:1E:5C:DD:55:01:37:95:7B:96:D1:22:E3:A1:39:52:7D:26:B7
X509v3 Authority Key Identifier:
keyid:A1:02:07:72:F6:28:B8:FB:51:F3:47:51:36:B7:7F:EB:4B:26:98:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQIHcvYouPtR80dRNrd_60smmL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/550431-6174-47d2-8bab-51af82965e33/1/oQIHcvYouPtR80dRNrd_60smmL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:5c:76:ac:4d:c9:87:e1:d5:6a:6d:bf:8b:86:c4:f5:46:ca:
04:13:32:f2:4b:08:b8:9a:0f:3f:d4:98:2f:2c:f0:e1:73:15:
31:94:11:85:ca:cc:2e:41:14:83:a9:31:12:20:25:20:8b:a1:
e7:83:dc:5e:40:2e:f1:00:9f:00:8b:c8:14:a5:6f:f3:ad:1c:
c3:31:bd:61:f6:18:47:f3:2d:78:5e:09:ee:6f:64:22:9f:3f:
8e:f5:fa:ee:8b:ad:06:9e:44:82:2b:f4:0e:ba:04:bf:45:d2:
3c:76:d1:03:8a:91:c1:8e:5d:02:f0:90:57:a1:78:48:ae:0d:
86:50:bb:1b:84:88:3d:16:1b:9f:11:ed:24:16:54:a5:94:65:
9e:04:dc:7e:85:d9:66:fd:9b:7e:df:d3:7f:8d:70:b6:77:e6:
58:66:b2:68:5e:00:89:a8:42:8c:1b:77:30:89:a7:4d:4d:db:
8f:58:c3:ba:82:80:45:d3:cb:98:10:98:76:d0:e1:26:86:48:
61:fe:4f:31:b4:7e:cb:87:f7:e6:44:a1:36:ae:96:ce:a3:0b:
ab:3c:c7:29:eb:14:53:6b:c7:79:65:46:6e:c9:b4:2c:87:9f:
07:91:58:ce:fd:78:27:3c:05:9a:79:71:c7:4c:0c:cb:89:6a:
37:18:6b:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 12:24:49 2025 by rpki-client