Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
File: oheIwIqkN9EWXOy9aP2xlaFd-gg.mft (raw, json)
Hash identifier: NSxdETbFchT/e7ZM5w+B0+UxdIhwC4lBLyqukCLxUcg=
Subject key identifier: 4C:CB:05:97:31:78:8E:2E:09:75:BF:99:A1:C3:F2:D3:D5:8F:BF:D4
Authority key identifier: A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08
Certificate issuer: /CN=a21788c08aa437d1165cecbd68fdb195a15dfa08
Certificate serial: 01974A7B8CDFBA1304149AC39AB95D661CB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 13:01:40 +0000
Manifest this update: Sat 07 Jun 2025 13:01:40 +0000
Manifest next update: Sun 08 Jun 2025 13:01:40 +0000
Files and hashes: 1: 3hcLMvc25IMPdhmKQEHCMZTqIjs.roa (hash: SEybTz+/cd8wiIccvdujur1jHcT09AAEthIXnDu/BtA=)
2: oheIwIqkN9EWXOy9aP2xlaFd-gg.crl (hash: kxgNJLkhBBv0r/VJ99PMQnti9jDwrtRbQpogRboBUKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:8c:df:ba:13:04:14:9a:c3:9a:b9:5d:66:1c:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a21788c08aa437d1165cecbd68fdb195a15dfa08
Validity
Not Before: Jun 7 13:01:40 2025 GMT
Not After : Jun 8 13:01:40 2025 GMT
Subject: CN=4ccb059731788e2e0975bf99a1c3f2d3d58fbfd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:34:ef:8e:35:62:68:f1:68:89:a6:a0:78:37:
6c:92:21:df:ae:c6:70:39:d5:2d:01:90:3b:0b:2b:
4c:49:5c:7e:4f:a2:05:f4:65:63:64:2e:1d:ef:21:
ac:0b:2b:70:37:ca:ac:7b:f9:5d:10:ba:85:74:ed:
2a:22:62:fa:4d:41:ea:3e:35:2c:3d:84:26:23:64:
7b:db:5c:16:c0:7c:a2:db:2d:01:0a:52:d8:6d:48:
bd:33:a2:4d:55:db:bd:39:72:0b:f8:65:6d:0e:a4:
a2:82:30:73:74:83:5a:26:1d:31:4c:67:d2:a4:b1:
70:53:15:e6:f5:6c:fc:c2:b4:d0:a6:eb:cb:fb:8f:
2a:06:42:d3:01:a4:ef:da:e4:5d:22:ae:60:0e:16:
32:1d:5d:53:d1:ce:70:a2:c0:b0:48:cb:e5:5c:14:
60:55:df:d9:3b:b9:3f:72:ac:62:f7:1b:8e:1c:91:
1b:d2:0c:c2:c9:7d:a8:d1:26:93:26:af:41:82:a3:
07:ee:35:d8:68:bb:d7:cb:24:d1:08:1a:4d:96:e4:
03:04:e1:b8:a7:35:0e:5e:22:2b:e8:48:6f:92:e2:
bc:9c:7b:55:78:e7:f1:8c:8d:a0:ea:6e:25:f5:d1:
da:2b:b4:6f:6b:b7:4c:46:fa:55:57:de:9b:d5:c7:
7a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:CB:05:97:31:78:8E:2E:09:75:BF:99:A1:C3:F2:D3:D5:8F:BF:D4
X509v3 Authority Key Identifier:
keyid:A2:17:88:C0:8A:A4:37:D1:16:5C:EC:BD:68:FD:B1:95:A1:5D:FA:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oheIwIqkN9EWXOy9aP2xlaFd-gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/7a0c7c-f2ca-4aa9-87c5-77f4fd53425e/1/oheIwIqkN9EWXOy9aP2xlaFd-gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:31:7f:76:0b:4d:f9:cb:0a:99:d1:1f:ae:d3:03:41:bf:e4:
bc:c4:fa:6a:e2:d6:dd:6f:c3:a6:86:9f:27:c6:da:48:4f:de:
c3:bf:09:5c:86:20:97:d3:20:d8:8d:f0:05:b6:e9:44:73:02:
39:85:2e:fc:ad:18:ae:56:dd:db:fd:de:ee:26:77:34:97:2f:
da:17:68:3a:28:bd:10:54:76:3c:d8:c0:81:f3:59:d9:30:48:
f1:73:3e:cf:d4:a5:43:bb:7e:50:9b:cc:db:87:70:49:68:f6:
ac:ad:52:84:d5:46:b0:9f:0f:8b:43:e8:b9:63:d1:60:2a:f5:
a7:a1:38:97:c5:db:ef:59:d7:18:a9:65:e1:b8:ad:a4:ca:29:
51:bb:0d:c9:aa:de:8b:40:f8:3d:db:d7:44:34:ec:b6:3a:b2:
cf:8a:a0:86:cb:d9:b5:4b:8b:2b:73:bd:96:c7:61:3d:07:19:
2b:86:b6:6d:b6:15:1d:08:b0:fe:b4:b5:3b:c1:76:27:0b:b5:
38:3e:0e:a4:64:1d:8d:c6:e4:11:26:b5:98:00:c3:25:28:18:
a8:c1:99:be:11:b9:94:a6:dc:03:6d:8b:7b:12:fe:19:66:3d:
7a:70:eb:12:d0:d3:e6:b7:b2:99:54:23:be:28:c0:7f:7a:df:
92:d3:4b:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:17:56 2025 by rpki-client