Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
File: oCN2bGLetRKXFVcI7MtCHIsEeAo.mft (raw, json)
Hash identifier: fCMkjKjOb/OPAwlrxb7A5Y8iyMoAVbQOGExfGMCq2ws=
Subject key identifier: 7F:89:4C:0C:D1:CD:06:38:02:3D:79:32:B3:65:F7:0B:82:ED:10:73
Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a
Certificate serial: 019747797CF265FCF15512A68E43EB8D265F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
Manifest number: 12CD
Signing time: Fri 06 Jun 2025 23:00:33 +0000
Manifest this update: Fri 06 Jun 2025 23:00:33 +0000
Manifest next update: Sat 07 Jun 2025 23:00:33 +0000
Files and hashes: 1: CHrue45DLIyJD4ONNTGJ0TL9VsA.roa (hash: u/OfuNsymZa5oGvy4EyVltbtk9eDJK5E1jdXxm1UcXE=)
2: oCN2bGLetRKXFVcI7MtCHIsEeAo.crl (hash: IQ4qQvWFV7GCxqOcKAZD1OdWYisYpdGYQ1PcMWOE7PU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 23:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:7c:f2:65:fc:f1:55:12:a6:8e:43:eb:8d:26:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a023766c62deb51297155708eccb421c8b04780a
Validity
Not Before: Jun 6 23:00:33 2025 GMT
Not After : Jun 7 23:00:33 2025 GMT
Subject: CN=7f894c0cd1cd0638023d7932b365f70b82ed1073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ba:c0:a5:14:bf:8c:92:03:fd:3e:bc:3e:aa:
3b:79:67:1f:30:63:19:fc:1b:d2:5b:da:41:ba:b5:
d0:a7:17:c3:63:d1:f5:62:cd:14:4d:23:e4:98:ec:
a4:c6:f7:a8:40:99:79:c8:b8:bf:a1:27:b3:84:b8:
d0:e9:9d:80:b8:0f:51:68:5e:87:0b:71:ac:f8:dd:
70:44:16:9b:e5:b4:c0:92:69:61:4e:64:f2:f9:0e:
d6:7c:a2:d8:68:c4:12:bf:20:fa:be:c0:42:ba:51:
59:22:8d:a2:86:42:1f:26:4f:01:a2:f4:8f:a8:6e:
b6:1a:ce:98:28:c9:ba:b0:0e:b1:c7:74:5f:87:67:
64:53:fb:fc:29:8f:e9:f5:3b:de:65:d1:59:73:7b:
70:87:5e:cb:6f:24:81:26:e3:c6:d7:24:01:c6:89:
b3:06:62:d7:6b:68:d0:f8:2b:c4:28:7b:68:32:5c:
4c:c2:41:38:bf:af:9d:54:9c:a6:b7:4f:f2:7f:5b:
df:f7:83:0f:1b:19:14:14:13:5e:d2:de:bd:a0:9b:
02:93:62:e8:e4:6d:b0:77:8e:d5:cd:67:ad:e6:82:
ad:84:29:83:47:99:b5:85:ad:16:b3:54:b9:92:a1:
df:09:41:c3:e4:ce:6d:ba:b9:b5:68:44:22:f6:f0:
51:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:89:4C:0C:D1:CD:06:38:02:3D:79:32:B3:65:F7:0B:82:ED:10:73
X509v3 Authority Key Identifier:
keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:c4:e3:77:d1:0f:f9:c4:22:4d:5b:bd:43:4f:f0:06:a8:43:
9b:ba:69:08:f1:1d:a3:06:de:1f:19:f2:6d:9b:dc:cd:9b:d4:
0a:fa:dc:6a:01:67:73:93:7d:ed:75:d2:19:aa:69:96:56:ee:
6b:5d:b6:b8:be:a2:80:a8:e7:c8:b0:40:bb:c1:46:3d:42:8a:
fa:49:f8:db:60:3d:3a:dc:62:7b:e1:cb:d6:86:2e:98:b6:f2:
b1:27:1e:ea:9d:0c:e8:15:4c:c0:e3:46:29:80:ff:05:85:d4:
4e:98:a7:8c:73:ac:6f:d9:39:5b:f1:10:ee:07:b9:8b:dc:51:
45:47:0d:10:1a:b8:3d:46:f1:66:6a:c2:53:bd:03:20:fa:11:
11:2f:99:dd:54:3e:54:67:40:0f:93:98:8b:99:43:12:db:15:
53:fe:ca:d3:e2:ba:53:93:f7:c7:95:0c:a8:77:b0:f2:30:b1:
c1:08:66:41:17:d0:8d:d6:52:18:9a:0c:29:8c:37:14:c3:3c:
6e:ff:bb:10:89:e6:12:fd:1d:e5:bd:6d:bc:3c:ac:24:84:90:
e6:f0:e4:28:c1:f4:f0:75:e3:ff:7e:88:27:07:fd:90:4b:b0:
59:c3:f2:fe:80:1f:79:19:4a:e4:43:8c:5c:3a:5e:e5:26:53:
bd:ea:12:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:24:50 2025 by rpki-client