Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
File: o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json)
Hash identifier: 3516oLCyoLKaf5ilyKVBr/d+piGWrGtikF7OlU120K4=
Subject key identifier: 1E:5C:11:79:1C:D4:34:E7:FC:CB:D7:96:EA:70:63:ED:CE:FC:AA:7F
Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
Certificate issuer: /CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Certificate serial: 01974D7C041C157E605DAA71F5DE99E508CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
Manifest number: 0FDF
Signing time: Sun 08 Jun 2025 03:01:02 +0000
Manifest this update: Sun 08 Jun 2025 03:01:02 +0000
Manifest next update: Mon 09 Jun 2025 03:01:02 +0000
Files and hashes: 1: DfIfeCsjxuTLGxOswS1IRTtCtFo.roa (hash: BfLaITLvBopGuXyhXf+VexAjyd8LBGCkT8+9wJK+KLI=)
2: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: ighIPJ1zR8+QV3K3oFbecfJSlmoFKW6qwj9Cz2zqtas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7c:04:1c:15:7e:60:5d:aa:71:f5:de:99:e5:08:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Validity
Not Before: Jun 8 03:01:02 2025 GMT
Not After : Jun 9 03:01:02 2025 GMT
Subject: CN=1e5c11791cd434e7fccbd796ea7063edcefcaa7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2a:80:d4:27:78:7c:69:fa:99:b7:0b:4d:2f:
f5:98:70:17:33:4f:82:6a:51:58:9b:71:92:00:71:
c7:b1:c7:ef:4d:4d:f6:45:70:86:a5:0f:6b:d5:97:
73:94:50:8c:bf:2b:66:e3:f6:49:39:71:f2:b8:d5:
1b:1a:a9:76:aa:31:a3:6f:e4:48:5d:7c:b2:63:30:
42:07:bd:8e:52:04:31:bc:63:2c:67:7a:73:a7:4f:
6b:4c:c3:fc:95:14:0a:11:95:66:11:55:ad:92:55:
6d:cd:1f:a2:6c:6e:99:6e:40:44:79:b7:74:b1:bc:
24:b1:d7:53:56:ce:cf:ed:cf:e6:73:e6:6b:5f:fc:
67:35:65:2b:55:ad:4a:68:0a:ae:54:26:e1:32:6c:
d8:75:69:8a:f1:79:00:98:a2:12:33:88:85:9f:1c:
d7:57:89:13:24:42:25:2e:86:1b:0e:93:10:9d:bc:
73:59:52:03:d8:80:4b:a7:a3:5b:fe:ac:7e:6a:4c:
3c:1a:61:07:95:ac:89:99:af:59:38:eb:5c:33:a6:
c8:67:b5:f7:ae:50:c7:71:cd:95:15:b1:33:e8:09:
79:64:4f:d4:cd:8b:28:c7:d1:f9:e2:2e:5b:f3:fb:
da:ba:02:20:2d:65:eb:c2:85:e4:0c:d3:55:55:07:
42:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:5C:11:79:1C:D4:34:E7:FC:CB:D7:96:EA:70:63:ED:CE:FC:AA:7F
X509v3 Authority Key Identifier:
keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:12:4f:02:c3:b7:ec:71:f5:da:15:7e:74:0f:5b:61:97:c2:
15:c7:ba:ca:e6:3b:2b:a2:ae:9b:be:f5:86:ff:d5:46:f5:77:
d1:5f:96:03:d1:ea:5c:ab:dc:30:40:c3:d4:dd:1d:dc:81:ce:
00:6d:a8:b4:64:77:80:02:f5:eb:e2:04:79:be:b2:d3:e7:90:
41:cc:48:91:fb:c0:76:c1:9b:8b:0c:61:67:05:41:7c:72:56:
48:c6:c6:19:f9:c1:29:77:3d:65:4b:b2:3e:ed:25:98:1f:cb:
69:60:7b:ce:47:63:4e:22:eb:b7:5a:78:14:bc:c7:0d:58:63:
43:a4:8b:b4:e6:f6:6e:ae:46:0a:91:2d:3f:6c:2f:63:98:78:
15:d2:af:0b:60:cc:94:6a:19:41:25:12:1f:fe:d5:5f:fc:37:
77:c4:df:c0:97:4a:d6:3a:ab:57:04:5e:25:e2:99:7f:20:e7:
5d:88:dc:50:fe:7e:05:f9:cb:18:17:0a:f9:33:f3:3f:c2:ed:
17:90:ff:0c:22:b6:69:e4:bb:79:a0:3e:9c:7c:0b:59:3b:8c:
7f:3b:f7:db:2b:76:df:ac:f6:10:56:6d:ce:24:c0:7f:9b:52:
2b:43:69:e4:08:de:39:e4:74:4e:2e:e1:cb:00:2e:b0:52:80:
f7:09:ac:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:50:56 2025 by rpki-client