Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
File: oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft (raw, json)
Hash identifier: ZKvS+lmPhRgFlLiXG3IyzK5gv1PS1XY0VZOBP+lS//0=
Subject key identifier: CB:33:3F:4C:7A:0E:61:99:39:6D:7D:3D:FB:D6:A8:E1:CD:EE:4F:A7
Authority key identifier: A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
Certificate issuer: /CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Certificate serial: 019758DB388CE6BBDC68AFE9A4C8DA374486
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
Manifest number: 03C9
Signing time: Tue 10 Jun 2025 08:00:51 +0000
Manifest this update: Tue 10 Jun 2025 08:00:51 +0000
Manifest next update: Wed 11 Jun 2025 08:00:51 +0000
Files and hashes: 1: WacUruZTE83WEEePnyB3KKF0YFU.roa (hash: IGW0uLOK6yIPDXD8+jDEju++6EJZMklynz//i9x70Jo=)
2: oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl (hash: rp1ao+ANIBRqmJYH5qksQJJvRavLpDaUMQ0os4fgGPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 08:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:db:38:8c:e6:bb:dc:68:af:e9:a4:c8:da:37:44:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15d9596b7a5ef0889a73971000d12630daca9a6
Validity
Not Before: Jun 10 08:00:51 2025 GMT
Not After : Jun 11 08:00:51 2025 GMT
Subject: CN=cb333f4c7a0e6199396d7d3dfbd6a8e1cdee4fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:09:09:2b:65:78:58:5c:a8:a3:2d:80:a1:ab:
e4:34:48:1a:bc:ae:70:46:76:7e:69:0b:55:ce:e4:
87:51:4a:71:8b:82:8f:16:0d:b6:89:ed:4d:a3:90:
57:48:0f:a4:c0:64:d5:42:6b:8c:64:c7:3d:81:32:
d6:bf:18:73:86:14:a3:17:35:cb:ef:5b:74:8a:34:
a2:11:03:3a:93:94:f3:fd:02:07:b7:3b:91:df:c7:
39:c3:db:00:35:1a:e2:56:98:a2:07:95:21:a2:41:
bd:53:b4:22:16:70:c3:39:b2:ff:d1:f5:d7:e4:89:
da:be:b9:83:93:8b:f5:ea:ab:24:e3:04:7b:72:df:
39:98:22:3c:b1:bc:38:2a:4d:63:3a:79:98:2d:7c:
a5:7d:0d:7d:c6:6b:81:94:87:92:af:85:df:74:d6:
6e:1a:d3:56:9a:66:a1:9f:50:cd:63:96:da:dd:e2:
1f:a9:3b:8d:7a:44:aa:b8:8e:43:67:91:af:41:90:
3e:31:61:f1:09:4a:18:9b:b4:dc:17:7e:c7:54:77:
b0:a4:cd:72:c7:a4:34:e1:5d:e0:df:b0:39:d6:19:
5d:0a:52:44:aa:93:b6:06:5a:0c:2e:d7:7a:c5:8c:
c0:d7:84:b7:bc:e4:98:38:f5:af:0e:ef:35:7f:65:
c5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:33:3F:4C:7A:0E:61:99:39:6D:7D:3D:FB:D6:A8:E1:CD:EE:4F:A7
X509v3 Authority Key Identifier:
keyid:A1:5D:95:96:B7:A5:EF:08:89:A7:39:71:00:0D:12:63:0D:AC:A9:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV2Vlrel7wiJpzlxAA0SYw2sqaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/cf540f-97d6-4142-b603-3112467bbc88/1/oV2Vlrel7wiJpzlxAA0SYw2sqaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:47:eb:80:f7:30:44:6d:81:e9:a4:36:5c:31:a9:ad:1b:da:
e6:07:21:67:35:8f:18:6a:3a:2a:35:12:1c:e4:80:df:67:73:
4c:54:28:e7:85:9a:7c:18:11:ac:6f:8f:b6:31:65:e8:20:de:
b6:6b:e7:b0:7f:50:44:84:f8:6e:91:8a:4d:f8:13:55:e0:7a:
4c:a5:99:0a:fd:7d:ce:43:7e:0f:f2:eb:ba:12:40:58:c0:26:
e9:d2:7a:78:bb:cf:31:35:b7:ed:4d:db:bb:66:94:9f:98:bf:
fc:9f:71:4f:bb:1b:1c:37:c7:75:f2:4d:18:c2:62:70:fa:8a:
fd:9d:07:42:38:5a:0d:18:b7:a8:df:3b:32:1f:df:13:3e:4a:
89:59:f0:e7:9d:a6:1b:4b:d0:f9:2d:1b:1d:4d:b7:44:49:82:
51:0a:34:ab:8e:0e:ff:ef:96:6b:da:5a:ea:05:e5:23:5d:57:
98:7e:18:54:d9:19:65:08:21:47:5d:3f:22:56:a5:1f:72:ce:
69:31:ca:a0:38:9a:18:67:7a:3c:4f:3d:a6:73:44:39:28:93:
ba:42:c8:65:e7:99:56:3d:5a:51:f7:bb:f3:3f:bc:f6:c0:e5:
50:b1:31:b9:1f:10:0f:17:00:9b:f0:be:cf:34:f5:b7:ad:c3:
47:25:30:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 16:04:06 2025 by rpki-client