Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
File: oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft (raw, json)
Hash identifier: u/B0Eg5FL5wSSMvSkTQXHl3NRU3ql5wKSeqyXl7r61U=
Subject key identifier: 5A:44:D8:83:0C:11:9E:BE:91:95:8F:98:72:DF:9E:4C:AE:D9:0E:42
Authority key identifier: A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
Certificate issuer: /CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Certificate serial: 01976D3E4C802170DD959B246731A7C57EE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
Manifest number: 1031
Signing time: Sat 14 Jun 2025 07:01:28 +0000
Manifest this update: Sat 14 Jun 2025 07:01:28 +0000
Manifest next update: Sun 15 Jun 2025 07:01:28 +0000
Files and hashes: 1: c7xqGqZ0KnoVgSHP1uxqIn-gcow.roa (hash: fgA4jW+G01sd+KIFTnm2o/eJLY8zge2zWEftjWqJRcE=)
2: oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl (hash: JkYKPfoiQPMMC7u0qavd11YQ0M1YmTgc/8BphQUHIWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:4c:80:21:70:dd:95:9b:24:67:31:a7:c5:7e:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Validity
Not Before: Jun 14 07:01:28 2025 GMT
Not After : Jun 15 07:01:28 2025 GMT
Subject: CN=5a44d8830c119ebe91958f9872df9e4caed90e42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:da:7f:22:72:9f:1b:a5:d3:d6:43:6d:c8:db:
ea:f5:26:15:09:96:23:87:85:11:5a:29:93:3d:fd:
b8:b6:a6:52:d5:48:9f:07:49:ee:bf:24:2a:0b:85:
e1:b2:8e:c1:37:23:41:93:7f:c2:8b:ac:f6:4c:66:
4e:99:c1:49:91:14:bc:68:16:4f:6e:0f:c9:3a:34:
87:93:e1:d8:16:ff:73:51:1f:b5:c4:07:ba:74:8f:
70:c0:43:e9:8f:d2:33:c3:57:d4:8e:55:f9:a7:d4:
cb:f6:02:b8:d2:04:2e:e0:16:29:15:d8:7d:ad:71:
13:08:e9:21:07:da:84:fe:49:a0:7a:6c:0e:4f:b3:
91:15:0c:af:e4:71:22:97:7b:86:d2:d0:e0:49:57:
c2:4f:e1:e4:f1:f3:01:2e:c9:2b:8b:10:dc:0e:42:
ec:8a:70:17:38:75:2e:33:b9:b2:90:47:de:d3:f3:
c7:1a:7c:c7:41:9e:4b:63:e5:f2:c9:55:5f:0e:69:
23:ff:9c:b5:d1:12:44:60:7d:2f:ff:a4:a0:8d:a6:
94:15:3d:c5:58:aa:31:78:c3:c4:bb:49:21:d6:74:
17:f6:b1:d3:d6:71:a0:d4:1e:04:e5:e8:a8:d1:cc:
9c:26:6e:59:17:71:1d:b2:0d:43:30:24:66:d4:ed:
5c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:44:D8:83:0C:11:9E:BE:91:95:8F:98:72:DF:9E:4C:AE:D9:0E:42
X509v3 Authority Key Identifier:
keyid:A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:45:43:df:29:23:78:f9:cb:3d:e9:58:aa:af:e5:ad:50:3b:
8c:1b:93:46:44:e1:62:96:7b:f9:68:b4:05:22:10:f9:df:4e:
2f:49:aa:16:fc:a0:6c:cd:88:22:51:3c:1e:1c:83:d4:9a:e8:
5a:3a:fd:12:9d:0a:37:3b:21:3d:0f:c6:71:97:4c:3d:49:bc:
c9:5a:95:da:99:d4:41:7f:db:1e:a0:69:40:46:85:32:6b:f6:
17:c3:1a:2d:1a:8e:6b:7c:f5:6b:f7:e1:0d:5b:ca:9d:ff:11:
6f:c1:43:c9:24:8e:e5:09:c0:a2:c4:cb:4f:fa:6d:ce:f8:7f:
c8:aa:f1:ac:0d:00:8f:71:7a:54:f6:22:75:90:e3:0f:58:33:
68:20:bd:86:98:08:4d:d3:89:af:ab:03:27:61:32:fb:8b:63:
9c:b7:a0:f3:22:12:97:ec:bb:64:2b:62:6b:3b:85:95:b6:b1:
db:ca:84:c8:31:7c:a7:35:db:97:57:87:74:f1:19:89:6a:3c:
48:48:0f:f8:39:00:74:b6:9b:ff:17:65:f8:44:16:0d:64:f2:
0c:cb:d9:cd:52:77:02:66:cb:e7:c7:ef:41:90:ac:77:4f:54:
c0:80:3d:70:a5:73:0c:ca:0d:29:b5:70:4a:f3:20:c2:c2:2d:
08:dc:d6:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:15:07 2025 by rpki-client