Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
File: oNki4v4kvSzaeToqrcEzYlAM2bE.mft (raw, json)
Hash identifier: /Oyjk0VbHEA/mNq/42XaF6m+w0c3Nyysz2yYqefu2nA=
Subject key identifier: 1D:2E:4E:E3:D5:B0:74:0C:E8:F5:5E:F4:46:FA:9F:AF:77:F8:50:DF
Authority key identifier: A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1
Certificate issuer: /CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1
Certificate serial: 01974D0DB535ECA7D1B6C36A66430174D643
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
Manifest number: 0B81
Signing time: Sun 08 Jun 2025 01:00:33 +0000
Manifest this update: Sun 08 Jun 2025 01:00:33 +0000
Manifest next update: Mon 09 Jun 2025 01:00:33 +0000
Files and hashes: 1: QU8GopeOlHwkTprCT-S3aTgX93c.roa (hash: wdEn+nBxYgSylw1Zt9va3XXWns8S/pGLaLLxEZ/5irY=)
2: oNki4v4kvSzaeToqrcEzYlAM2bE.crl (hash: TwfrZ7gKcWeZikJ+GB3XTfbOYgFEFBAl7DEDV71jIrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 01:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0d:b5:35:ec:a7:d1:b6:c3:6a:66:43:01:74:d6:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0d922e2fe24bd2cda793a2aadc13362500cd9b1
Validity
Not Before: Jun 8 01:00:33 2025 GMT
Not After : Jun 9 01:00:33 2025 GMT
Subject: CN=1d2e4ee3d5b0740ce8f55ef446fa9faf77f850df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:7e:c8:9f:18:5b:1f:3e:4b:91:52:ce:d1:
fb:bb:77:a7:7c:51:0e:c9:eb:9b:db:2c:60:6f:79:
79:c1:78:dd:28:46:8d:d7:fe:6e:01:0f:ae:4c:4b:
e4:f1:81:5d:d8:27:33:d9:1b:74:ee:c7:c9:c5:78:
63:9d:1e:41:94:94:a0:19:1e:1a:f3:d1:2e:d9:e6:
6a:13:7e:cd:d3:b7:54:81:d5:30:16:3a:7a:cd:d5:
95:c1:49:bd:db:b3:d6:2f:47:b9:46:8e:fe:de:bc:
4c:32:47:e9:d2:63:65:db:27:f9:e1:b2:5d:93:d4:
ae:5c:0d:fb:4d:d4:7c:42:c2:34:ea:b3:11:3e:4d:
81:4a:33:79:dd:41:50:d4:22:37:93:5b:c3:70:3f:
bc:83:b2:ea:de:ee:6e:3f:8c:10:88:56:09:04:7b:
3f:25:02:1d:c6:19:06:e7:7d:a6:0a:7a:be:96:fe:
d7:ad:fb:51:4e:58:b0:3c:bd:e1:d0:a0:12:69:2a:
52:5b:5e:0b:f2:21:a8:0c:2f:9c:e2:f8:ec:3e:4b:
23:28:85:81:8e:15:74:d3:1e:fa:ca:e4:93:79:14:
b8:eb:6e:4b:28:b5:66:2f:70:57:54:02:ed:1f:e8:
51:59:58:64:75:7f:72:be:b2:a0:c6:a0:be:78:cf:
a6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2E:4E:E3:D5:B0:74:0C:E8:F5:5E:F4:46:FA:9F:AF:77:F8:50:DF
X509v3 Authority Key Identifier:
keyid:A0:D9:22:E2:FE:24:BD:2C:DA:79:3A:2A:AD:C1:33:62:50:0C:D9:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNki4v4kvSzaeToqrcEzYlAM2bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/d4fc4c-4815-4e56-bf73-4a6ace26b972/1/oNki4v4kvSzaeToqrcEzYlAM2bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:62:63:0b:d4:49:b0:02:b5:4a:41:62:73:cc:00:64:61:6b:
6d:7b:78:1a:e3:ee:0c:a4:a9:4e:08:ca:34:52:c7:27:b0:f9:
fe:0b:e5:db:47:00:8d:5a:e5:2e:43:10:27:6b:24:d2:7f:9a:
56:3a:64:55:ed:48:59:13:09:56:c5:96:36:6e:26:46:16:ad:
1d:61:5c:7e:57:1c:fe:e8:13:51:c9:e8:28:e8:1f:0a:59:65:
be:d7:e5:5f:f3:19:b3:72:fb:4e:15:b2:86:4f:69:97:45:82:
f0:e7:d9:6e:95:e8:93:8e:fa:c0:e1:b5:98:e6:20:03:bc:13:
75:43:cd:4f:c6:cf:8d:35:1a:0d:4f:0a:2c:df:6e:df:ff:9a:
81:d0:00:c4:1d:1f:15:5f:41:65:00:8e:5f:b6:e2:2f:97:15:
35:22:50:fb:69:4a:a9:21:20:20:52:0c:9d:e2:1c:5d:89:b5:
6b:74:6d:5c:6b:9f:91:45:4f:81:c1:7e:93:73:de:13:e9:1d:
56:ba:03:aa:53:82:8b:f7:53:1b:b1:1e:48:aa:21:6f:3e:4d:
7a:75:61:c4:25:ae:e4:8c:58:1e:44:65:46:f9:70:7b:d1:6c:
8b:f1:15:65:84:0b:71:e2:a8:6b:52:12:60:db:42:9e:27:ec:
24:fc:7f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:09:38 2025 by rpki-client