Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
File: Oexx3D1ozej5B3069mdRwp_O6kw.mft (raw, json)
Hash identifier: lk8/kZhWnkeTvPljy0al/b/wURA/PcuGEfPWhuEwqyo=
Subject key identifier: EC:29:A4:B1:A0:6A:7F:76:94:25:29:2F:08:8C:2B:8E:71:A4:D4:00
Authority key identifier: 39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
Certificate issuer: /CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Certificate serial: 019773095ED8377956703F4B5D4E08D69C2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
Manifest number: 08EC
Signing time: Sun 15 Jun 2025 10:01:23 +0000
Manifest this update: Sun 15 Jun 2025 10:01:23 +0000
Manifest next update: Mon 16 Jun 2025 10:01:23 +0000
Files and hashes: 1: 5MBvIRiYFms3iGBeHF3RQe9ll34.roa (hash: ZOt4HY8JzWPIwKbCM0yXoS+siw4USQmatYhxT9gEU9M=)
2: Oexx3D1ozej5B3069mdRwp_O6kw.crl (hash: tpXpb/iteVWZHbHFzuJ7/6S135Jefv0Wn99RPE6U+rI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 10:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:09:5e:d8:37:79:56:70:3f:4b:5d:4e:08:d6:9c:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ec71dc3d68cde8f9077d3af66751c29fceea4c
Validity
Not Before: Jun 15 10:01:23 2025 GMT
Not After : Jun 16 10:01:23 2025 GMT
Subject: CN=ec29a4b1a06a7f769425292f088c2b8e71a4d400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f8:69:e1:bd:54:cb:36:e6:80:df:9c:38:db:
19:f4:61:14:bd:46:8d:24:bc:41:06:71:a9:52:e0:
1d:09:be:9c:09:00:99:32:b3:5a:18:57:bc:4a:7b:
79:a8:71:92:41:23:68:c3:f8:00:b9:f7:b8:19:db:
eb:ed:46:75:19:e7:e7:29:ae:a4:68:63:0d:48:5f:
fb:02:66:5c:69:b7:79:73:66:bd:85:e0:cd:dc:0b:
b3:42:25:79:51:b0:8d:3d:d1:71:b3:f2:dd:2f:dd:
3d:30:7c:19:97:ba:09:ff:5b:44:7a:45:0b:a3:00:
ae:ee:b2:4b:f9:ae:3c:0e:a8:a2:8e:34:41:2c:05:
c0:c8:fe:63:01:f4:89:61:48:a4:01:cf:6d:5a:74:
94:fc:ed:c7:0e:b5:95:77:ba:6e:18:2c:b3:e8:10:
0d:48:72:92:36:8b:9c:00:23:4c:e4:69:a6:09:02:
b1:45:79:1f:31:d2:46:12:5d:42:bf:f1:4f:62:e0:
45:83:da:03:46:60:fc:52:21:a6:eb:53:a6:dc:60:
e3:35:2b:b4:f7:b0:d7:38:18:f3:b1:2c:39:25:52:
e7:db:3d:a9:ca:db:3a:3e:d7:2f:cf:88:68:47:46:
f9:97:f5:6a:11:80:ac:41:33:84:13:57:48:d3:37:
1f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:29:A4:B1:A0:6A:7F:76:94:25:29:2F:08:8C:2B:8E:71:A4:D4:00
X509v3 Authority Key Identifier:
keyid:39:EC:71:DC:3D:68:CD:E8:F9:07:7D:3A:F6:67:51:C2:9F:CE:EA:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oexx3D1ozej5B3069mdRwp_O6kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/1bfdf7-a19f-418e-89c7-db3f22705dd6/1/Oexx3D1ozej5B3069mdRwp_O6kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:73:68:fe:9a:18:8a:c7:80:e4:45:e2:cb:f9:d7:0a:86:59:
51:47:3b:6b:58:31:59:89:73:ef:8c:25:9a:df:97:85:bd:ff:
59:fb:81:bb:4e:13:70:3a:1c:4b:50:82:1e:51:73:be:5a:6f:
b1:97:c3:5f:d0:be:f4:80:65:a9:74:d7:84:73:71:96:ca:63:
af:b7:32:75:4b:d8:d6:2e:53:64:ee:f9:04:4c:4d:41:f2:fd:
6d:12:9f:c9:d9:e5:ec:56:77:5b:e8:b1:d3:f0:b2:38:d7:f9:
88:e5:f0:a1:53:ee:76:bb:e5:26:3f:87:17:14:20:ca:54:8a:
dc:ed:10:e3:94:19:0c:78:7e:0f:dd:48:35:9e:e1:b6:f3:23:
45:29:d5:ac:c4:d4:d5:ae:5d:64:fd:a8:fc:ea:12:2d:94:10:
87:96:ed:99:5d:64:e5:3c:d6:f7:68:fe:d8:03:4b:68:f8:35:
02:f7:ca:4d:40:42:0e:54:12:5d:98:9e:aa:5a:3e:04:bc:c6:
bd:7d:07:8f:89:f8:e4:9e:e8:bc:7f:23:54:1e:fd:a4:23:dd:
62:6f:42:94:5c:60:f4:1b:68:a0:a5:30:5c:74:9d:65:42:3a:
21:ed:b2:59:53:7e:71:e1:9d:1c:f1:b7:1b:e5:1b:cb:97:22:
c2:ff:67:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 19:25:59 2025 by rpki-client