Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
File: oso33tG3DIG3SkMPm016zGKAXtg.mft (raw, json)
Hash identifier: TlohQO2qwawA+UrGqCKeXtEfaVZKLcsuRqC6lNN6M04=
Subject key identifier: C3:B9:69:43:AA:D9:19:3D:91:AF:B1:97:00:47:E8:77:B6:E9:DC:C9
Authority key identifier: A2:CA:37:DE:D1:B7:0C:81:B7:4A:43:0F:9B:4D:7A:CC:62:80:5E:D8
Certificate issuer: /CN=a2ca37ded1b70c81b74a430f9b4d7acc62805ed8
Certificate serial: 01976DAC1C9AFB5F172AC7AFB1ADDEB0F48B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oso33tG3DIG3SkMPm016zGKAXtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
Manifest number: 03C8
Signing time: Sat 14 Jun 2025 09:01:25 +0000
Manifest this update: Sat 14 Jun 2025 09:01:25 +0000
Manifest next update: Sun 15 Jun 2025 09:01:25 +0000
Files and hashes: 1: Uua6yM2rrGnji--Kv2Pn_xDUCUQ.roa (hash: kXckJ9Wq2st2kAYy1iDEHvhVUEJf4YmXaasq7C+0rWM=)
2: WpAem0y3mJRbP65lGL1BbYc7ewY.roa (hash: 9FtB6GE1KbOq2c/Ao/RtTSsyLPIeyA8GKr7sC11YD4c=)
3: ktIBl0vO2PiY2N18cJ-d_fSxe4Q.roa (hash: PaoiyedZ99+u6zVUTqQy6HmR360bMO4FcWgPO5UfmIs=)
4: oso33tG3DIG3SkMPm016zGKAXtg.crl (hash: q1Fu9sfePEnrJ9xwhdettiIbrxHjoM/wTDpBGbBAYIE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/oso33tG3DIG3SkMPm016zGKAXtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ac:1c:9a:fb:5f:17:2a:c7:af:b1:ad:de:b0:f4:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2ca37ded1b70c81b74a430f9b4d7acc62805ed8
Validity
Not Before: Jun 14 09:01:25 2025 GMT
Not After : Jun 15 09:01:25 2025 GMT
Subject: CN=c3b96943aad9193d91afb1970047e877b6e9dcc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f7:b7:5b:ae:41:35:fd:91:65:1e:a8:d0:3a:
ef:f9:cd:d0:af:20:80:cf:7a:18:18:d8:06:d8:8c:
7e:bf:b2:8a:32:87:a6:7f:55:8a:18:11:65:46:90:
61:b9:c3:39:2f:1f:8e:5a:26:c2:0d:51:01:72:ee:
94:c8:f6:23:3e:5b:cf:1e:18:d2:5c:e1:0a:68:06:
3c:d9:14:6e:ba:89:7a:77:b4:11:4a:27:c7:de:36:
23:f2:73:0f:4e:23:97:9c:1d:fa:3d:ec:33:30:bb:
4c:80:22:9f:43:fe:df:7b:78:ee:d4:45:7a:a6:b8:
87:3c:7c:2a:77:97:f4:f0:15:a3:c3:d0:83:97:3a:
1e:19:09:af:5e:ad:aa:73:9b:81:4c:5d:63:86:32:
97:4d:47:80:03:c7:df:91:b1:09:81:c5:5e:4e:ef:
e4:79:63:70:09:c8:c6:2b:f1:0c:a9:50:66:0b:da:
75:3f:37:34:86:1a:77:a2:ee:ec:c0:2f:eb:bc:46:
46:18:14:2f:0e:fe:79:1b:57:32:c2:b4:9f:c1:bf:
4b:39:da:63:d1:4e:5f:24:bc:f9:e8:87:ec:b0:54:
31:34:34:ce:78:60:b3:0e:85:a8:22:c7:94:31:7f:
64:20:ec:94:82:bf:de:fc:66:9a:3a:af:63:17:59:
6e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B9:69:43:AA:D9:19:3D:91:AF:B1:97:00:47:E8:77:B6:E9:DC:C9
X509v3 Authority Key Identifier:
keyid:A2:CA:37:DE:D1:B7:0C:81:B7:4A:43:0F:9B:4D:7A:CC:62:80:5E:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oso33tG3DIG3SkMPm016zGKAXtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b2ace7-48db-4f7d-917f-306189d5c049/1/oso33tG3DIG3SkMPm016zGKAXtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:9d:45:6e:a6:34:d2:a5:ea:7a:ab:c4:88:75:cd:25:43:54:
fe:3f:1f:e6:66:6a:9a:78:c4:d1:02:68:ce:7b:13:b3:50:44:
57:d5:05:65:55:93:79:87:67:80:3e:50:84:22:eb:ca:d4:ec:
25:80:c3:87:00:74:8b:02:09:ab:8c:64:5a:c4:67:e3:45:0e:
cc:b5:df:04:bb:62:43:9f:45:3a:ae:9d:90:b5:4e:f2:7e:24:
1a:8e:20:25:77:30:39:72:e5:08:10:61:73:38:13:50:de:5b:
02:ee:f8:1d:01:11:4b:58:43:2f:27:aa:20:80:69:cd:ed:79:
86:85:05:60:62:92:7e:61:44:f7:05:58:9b:6c:3f:a4:6a:26:
a6:cf:7c:7e:84:ff:7a:02:98:da:79:84:a9:68:54:40:16:52:
e6:c8:30:63:b7:37:42:2b:0d:36:93:d5:0a:d2:82:6e:72:65:
9c:08:ae:f1:0d:f8:cd:86:eb:e2:14:7a:d5:13:18:f8:f3:f3:
6c:1c:81:14:cf:d4:82:8c:e9:ae:a4:13:3a:02:ce:49:c3:46:
45:a0:4e:4c:bc:9c:e1:48:4b:bd:e7:8d:a6:2d:d5:13:ae:44:
88:77:aa:47:29:24:f6:50:4f:ce:43:42:d4:65:8e:77:2c:33:
18:22:37:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:36:16 2025 by rpki-client