Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
File: r2Okes26jsHNhdTXnzazW2mOX4k.mft (raw, json)
Hash identifier: ReIKhHpzKCOQ5i6y2F4pGtZIvGEmkRjVrvN1MsYMdYA=
Subject key identifier: 58:AC:67:52:7E:33:58:D5:A0:E8:D7:C5:C7:58:29:01:AD:E2:7B:A9
Authority key identifier: AF:63:A4:7A:CD:BA:8E:C1:CD:85:D4:D7:9F:36:B3:5B:69:8E:5F:89
Certificate issuer: /CN=af63a47acdba8ec1cd85d4d79f36b35b698e5f89
Certificate serial: 01974B5665E0AA07F0A11855880FDF8823DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 17:00:42 +0000
Manifest this update: Sat 07 Jun 2025 17:00:42 +0000
Manifest next update: Sun 08 Jun 2025 17:00:42 +0000
Files and hashes: 1: YXk4VQ9w2ydeFfWUpTPAL38DI14.roa (hash: 63k2DxSPaDP/x2Jl3oeCNKnb4PXDg6/RYTgk7tLrZPw=)
2: r2Okes26jsHNhdTXnzazW2mOX4k.crl (hash: wMI6OI8LZ0L1bLOHuhDZ3tuSW2bMa5wSVWD3MtGNfwM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:65:e0:aa:07:f0:a1:18:55:88:0f:df:88:23:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af63a47acdba8ec1cd85d4d79f36b35b698e5f89
Validity
Not Before: Jun 7 17:00:42 2025 GMT
Not After : Jun 8 17:00:42 2025 GMT
Subject: CN=58ac67527e3358d5a0e8d7c5c7582901ade27ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7f:16:5f:3d:b2:cb:24:17:55:24:69:c8:61:
51:09:a2:9e:6b:b5:02:fd:75:dc:a1:f4:59:c5:23:
76:63:e3:a4:80:48:1f:de:8c:a6:16:73:a0:fd:13:
ea:d4:59:16:9c:c9:d0:3f:ab:28:99:fa:6b:8e:5d:
0b:72:83:82:2e:69:10:f7:d5:bb:0f:d3:5a:9f:2b:
dc:c9:0f:5e:c0:28:8d:ea:b2:cd:44:17:90:05:18:
64:10:17:d2:b5:5e:7e:8f:a4:76:05:41:3e:14:86:
a5:ab:b7:5f:7b:75:8a:7f:3a:78:af:1c:aa:4e:91:
95:29:1e:4b:9f:01:c0:50:45:2d:28:f2:b6:85:97:
07:df:71:65:b7:f1:4c:67:a4:5c:2a:ea:8e:03:0c:
66:81:60:b6:05:94:bf:20:9b:01:93:1c:6d:25:ee:
8e:d2:7e:29:3a:5b:2c:dc:5d:04:3b:e8:4d:eb:f8:
49:bc:0a:72:1f:aa:2c:2e:3b:46:23:c4:d7:b2:f7:
b4:04:04:9b:f8:21:67:d6:4a:cf:b6:e8:4b:1d:a5:
2e:49:4a:5e:8e:73:55:16:b9:57:59:35:e2:d5:7c:
b9:9a:ed:39:d0:77:52:1e:f1:12:78:0e:06:b6:42:
33:ee:dc:4b:25:b5:ca:d3:ab:bb:c3:8a:86:52:f4:
f7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:AC:67:52:7E:33:58:D5:A0:E8:D7:C5:C7:58:29:01:AD:E2:7B:A9
X509v3 Authority Key Identifier:
keyid:AF:63:A4:7A:CD:BA:8E:C1:CD:85:D4:D7:9F:36:B3:5B:69:8E:5F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r2Okes26jsHNhdTXnzazW2mOX4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c4d7b0-6ebf-4cac-a8ad-fe3e318cae9c/1/r2Okes26jsHNhdTXnzazW2mOX4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:d9:12:56:ff:10:6f:e7:55:45:64:e1:22:5c:b4:d3:4d:3e:
dd:70:bb:59:1a:23:c7:fc:7a:ed:78:09:8d:be:00:f8:5d:24:
a5:f0:90:90:41:5f:2a:ae:ad:2a:b2:73:52:55:c9:38:7d:4e:
9c:05:23:44:e0:08:f1:cb:0a:7b:c7:b4:b5:98:b5:d1:2b:d9:
0e:e3:ac:e3:36:77:a2:32:d7:42:00:c6:98:3b:58:d3:b1:b2:
6f:fc:83:37:12:41:b1:0a:57:c5:a3:2d:a2:d6:fc:e5:8a:64:
67:18:f1:ec:d2:e7:f9:11:c6:e1:c7:28:02:aa:ae:48:58:f0:
bd:5e:a2:bd:4b:2b:bd:e2:3b:89:6d:72:de:93:fa:5b:37:85:
2e:40:4b:df:84:1d:43:ea:7b:e1:41:7e:98:4f:a8:96:62:4b:
d0:14:97:e9:65:c8:0b:ce:53:47:aa:82:9f:06:53:78:e8:9e:
a9:d5:25:e1:dd:ae:48:13:f1:53:50:46:1d:ad:b5:88:f1:f0:
f7:4e:8c:d8:99:c3:bb:5a:76:b8:8f:ee:84:dd:47:82:13:0f:
ed:d9:9a:cd:e3:72:19:f8:e2:db:f5:45:97:f2:e4:a9:40:d1:
b9:5b:2b:41:19:0f:57:cd:25:13:c5:81:01:98:cf:3a:ea:3d:
8a:48:a1:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:36:39 2025 by rpki-client