Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
File: oVHP748-2G0RrqutTRngal0HDTA.mft (raw, json)
Hash identifier: 8glgtL9MWsk42x0t3RXgKs4BI4jRV3V6TKkvtWwbdiw=
Subject key identifier: 1A:F8:B3:F2:E4:25:CF:A1:75:7B:83:9B:F4:A9:F9:48:CA:72:D4:41
Authority key identifier: A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
Certificate issuer: /CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Certificate serial: 01974666CBC7288E39DCC0E5218FBB46D468
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
Manifest number: 157A
Signing time: Fri 06 Jun 2025 18:00:31 +0000
Manifest this update: Fri 06 Jun 2025 18:00:31 +0000
Manifest next update: Sat 07 Jun 2025 18:00:31 +0000
Files and hashes: 1: cURozdoKIb78CE26-wMYNNQ7Uyc.roa (hash: dA/x8vNS0uSWiGck2vmKHPyuh1JLESwmF1FR0wRZ1Jw=)
2: oVHP748-2G0RrqutTRngal0HDTA.crl (hash: uZxu3PGFWTxQNQbjJSp0HaGnzeuj3JrSZlKm53GwCRs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 18:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:66:cb:c7:28:8e:39:dc:c0:e5:21:8f:bb:46:d4:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a151cfef8f3ed86d11aeabad4d19e06a5d070d30
Validity
Not Before: Jun 6 18:00:31 2025 GMT
Not After : Jun 7 18:00:31 2025 GMT
Subject: CN=1af8b3f2e425cfa1757b839bf4a9f948ca72d441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:79:a3:dd:7b:bc:24:7a:cb:62:61:dc:9b:1f:
eb:7b:19:ed:55:ef:c9:00:d3:92:f0:46:19:8c:a2:
aa:1f:fd:24:df:61:3e:35:14:ac:59:54:58:f4:13:
29:41:7c:a8:bf:4a:48:cd:6c:d8:8a:24:26:4e:cb:
d4:9b:ee:95:19:55:fd:c4:c8:36:c7:b6:e8:ae:b1:
7a:0e:d0:4c:d1:03:ed:c1:68:39:1e:4e:d7:cd:1d:
2a:27:a1:5f:49:c8:23:59:26:4c:24:95:b6:9c:40:
70:f6:4f:f9:f9:de:4f:28:2b:d4:51:fe:b3:08:04:
74:94:71:57:8e:61:c0:91:56:50:18:c4:b5:78:63:
f8:f5:cc:a3:7c:e4:74:ef:d9:4b:70:0d:5b:34:2b:
bf:9b:3d:c9:ce:19:21:8f:33:ca:d0:5c:3e:88:fe:
4c:4b:b6:29:bd:79:5f:71:32:55:10:ca:d8:8c:c4:
ee:6d:e8:34:92:40:7a:65:b2:7f:58:65:09:45:ac:
3c:c9:93:f0:20:e8:cf:6e:28:cd:8b:4b:46:29:82:
9e:7e:b5:ee:a2:dc:c6:34:1f:cb:4d:b7:74:c2:9a:
1a:43:7a:d5:d6:31:0e:45:aa:be:c1:2e:5f:e0:27:
18:98:87:46:8e:93:ad:6b:cc:e0:54:04:6a:29:72:
b5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:F8:B3:F2:E4:25:CF:A1:75:7B:83:9B:F4:A9:F9:48:CA:72:D4:41
X509v3 Authority Key Identifier:
keyid:A1:51:CF:EF:8F:3E:D8:6D:11:AE:AB:AD:4D:19:E0:6A:5D:07:0D:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVHP748-2G0RrqutTRngal0HDTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/959b9f-1408-4cf7-8e75-4046a32d27a4/1/oVHP748-2G0RrqutTRngal0HDTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:f7:fc:d8:d4:4a:88:12:57:2f:bd:8d:c4:c5:04:94:7b:59:
7a:fe:3b:7c:b9:54:21:fb:63:d9:7e:43:2d:55:cf:6c:d0:51:
44:b5:a5:09:39:3e:f2:35:90:92:51:14:6b:bc:dd:36:1f:d7:
ea:b4:25:2e:d7:ff:08:f6:06:c6:57:43:3a:4d:6b:44:18:28:
e6:72:1a:88:93:5a:51:2f:f8:ce:28:6c:ff:6a:57:d9:e1:39:
f4:16:f0:c7:13:a1:a3:c1:a2:7d:05:90:f6:84:0e:b5:8c:b0:
8b:a4:f9:10:80:c3:c5:7f:6a:67:08:ad:53:cb:b0:9f:5a:be:
3e:4c:c9:e5:2f:bb:59:6d:97:47:2a:73:67:29:61:90:49:92:
2e:16:ce:ed:e2:f0:e6:9b:81:34:19:13:e5:2b:45:79:ad:a6:
da:54:02:93:71:1c:24:fc:d6:b5:31:5a:88:c3:42:e2:47:44:
16:25:9c:fb:a5:0f:ab:d3:c4:6d:46:db:60:22:77:3f:03:eb:
7d:89:b9:6d:8d:ca:a7:49:02:9d:94:02:8c:75:a8:26:53:a4:
b7:c2:6f:ec:bb:8e:0a:b7:69:f0:ac:73:19:c4:4e:e8:51:9e:
70:4e:4d:fe:4d:68:ce:7a:07:db:01:c9:33:04:e4:bb:95:c1:
17:d3:b0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:17:36 2025 by rpki-client