Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
File: oLwgSfIYtv2rytdZTCUjso2kd8E.mft (raw, json)
Hash identifier: ktgt1dtTOdQpY2DW5jPjpeFXvOFd/gr7KZleEEIZVts=
Subject key identifier: 29:7B:8F:5B:71:93:07:82:35:6A:14:67:02:AB:B4:87:50:5F:D5:7E
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 01977E31117E122FA7358F7A77F32281E497
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
Manifest number: 152C
Signing time: Tue 17 Jun 2025 14:00:34 +0000
Manifest this update: Tue 17 Jun 2025 14:00:34 +0000
Manifest next update: Wed 18 Jun 2025 14:00:34 +0000
Files and hashes: 1: APsUsrAn96ow-lwQ45SmC1gQegc.roa (hash: t3tVyfgAERiYm7/hAZrrvXacDVWFUchPqKdL2GXQLe4=)
2: oLwgSfIYtv2rytdZTCUjso2kd8E.crl (hash: S8UdK4cuKEkw54lXBR5/Q4Ps1ucLEqOw+MspvyX9uCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 13:26:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7e:31:11:7e:12:2f:a7:35:8f:7a:77:f3:22:81:e4:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Jun 17 14:00:34 2025 GMT
Not After : Jun 18 14:00:34 2025 GMT
Subject: CN=297b8f5b71930782356a146702abb487505fd57e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:8f:4d:da:0b:f2:21:90:d3:4a:01:95:1b:a3:
29:1d:eb:25:ec:81:f5:76:e0:d3:89:a5:07:38:8e:
df:7c:0d:ed:ed:ea:47:49:6d:25:dc:77:29:2c:a7:
8d:9e:92:14:d1:09:a9:7e:cd:78:82:cb:46:8a:0b:
67:45:22:13:86:d7:79:9e:a0:c6:d5:9d:3e:c1:0d:
5c:0e:e8:35:68:35:4a:3a:08:b7:9b:0c:4d:27:21:
ee:a8:42:e9:f8:b6:31:d4:9e:c4:1e:49:2f:9c:de:
ca:83:e4:bd:e8:89:00:79:1e:f4:15:be:8d:ad:cd:
d6:33:7e:83:47:f2:44:0b:c2:34:0e:85:a1:f1:ec:
d7:ea:2f:0f:fc:82:34:7f:47:51:00:d4:ab:16:73:
18:79:a1:d8:60:70:eb:41:14:eb:81:23:58:fb:c2:
48:93:d4:36:81:e5:0b:2a:8a:a3:55:a5:64:17:a7:
0a:15:0b:c4:9e:06:27:5e:e1:15:51:62:3e:b0:d2:
64:50:c3:bc:ff:01:29:fc:a8:72:c6:67:af:be:1c:
9b:f6:39:6d:e2:09:da:43:43:26:b0:ac:4d:6c:3b:
f2:b3:f8:31:5f:b4:d1:ce:db:4a:8e:74:90:72:c0:
50:da:ba:24:cb:b2:99:ef:86:32:7b:1c:79:62:c3:
77:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:7B:8F:5B:71:93:07:82:35:6A:14:67:02:AB:B4:87:50:5F:D5:7E
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:65:c3:1f:19:8c:cb:c6:48:d0:51:7b:17:98:67:ca:bc:e3:
c8:22:eb:98:55:db:5c:da:07:fc:43:dd:07:32:42:5a:2d:07:
c3:92:c4:d2:76:ab:11:55:46:62:ee:5d:25:08:38:da:81:ec:
70:f0:38:ab:6d:74:1d:70:38:d5:10:c9:3b:7e:b8:0e:63:99:
d7:ce:6a:f4:bc:87:70:3f:a7:0e:0f:0f:98:83:47:1d:99:f4:
07:7a:4e:3b:17:6c:9a:24:00:48:ce:57:5e:58:01:ad:3e:b1:
07:cd:fc:9b:2d:e8:bd:00:35:36:b4:57:51:e8:e2:57:ff:b7:
d9:3d:9e:fd:66:8c:b9:c7:97:04:2d:38:99:b1:98:e7:66:ad:
f4:0a:22:30:15:7f:38:f8:50:c2:f2:c0:3d:bf:10:8b:f4:53:
cf:58:60:6c:17:9c:16:1f:3a:40:93:dd:ce:af:96:04:7c:db:
51:a6:3a:e9:d7:1a:05:19:01:17:23:e1:d5:cc:87:c8:24:74:
7a:52:aa:f2:c6:9f:f0:fb:65:df:cf:ac:47:d0:6a:af:47:3e:
c9:a9:96:b8:39:d5:96:17:b7:77:52:4e:4f:65:e8:fd:99:1e:
ca:77:cf:ed:ce:89:5f:24:3e:dc:4b:d9:58:48:75:0e:6b:b7:
e0:8d:7b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 23:02:11 2025 by rpki-client