Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
File: oKrlhQo22yiCKmwa_F_6z_AH7vI.mft (raw, json)
Hash identifier: MpYO+At9Cq4zlZdlFXZyepmehfUHiVMvUOEp4ft7pfk=
Subject key identifier: E6:E2:02:61:A3:68:1A:D7:BC:73:8B:DE:69:9F:D9:4E:A5:AC:83:68
Authority key identifier: A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
Certificate issuer: /CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Certificate serial: 019768F29FCCF0BD7613518DB1B2B661F97C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
Manifest number: 0883
Signing time: Fri 13 Jun 2025 11:00:20 +0000
Manifest this update: Fri 13 Jun 2025 11:00:20 +0000
Manifest next update: Sat 14 Jun 2025 11:00:20 +0000
Files and hashes: 1: oKrlhQo22yiCKmwa_F_6z_AH7vI.crl (hash: Nn7O+ic7dJCMD7/PmD7haC6MroimaDOkhuxAdBnABFs=)
2: vPivcilO-E_vThnuw1Jbeo7vl7Q.roa (hash: ue62obgrVIotq1vJM56av/nq50vzkGkDbEL5zd0kvpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f2:9f:cc:f0:bd:76:13:51:8d:b1:b2:b6:61:f9:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0aae5850a36db28822a6c1afc5ffacff007eef2
Validity
Not Before: Jun 13 11:00:20 2025 GMT
Not After : Jun 14 11:00:20 2025 GMT
Subject: CN=e6e20261a3681ad7bc738bde699fd94ea5ac8368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5c:55:85:39:01:52:6f:4b:a0:f9:04:ae:e3:
af:c4:01:3d:0b:bb:18:77:1e:77:88:03:b2:39:05:
18:ce:8c:d1:f1:cc:27:8b:aa:cd:2c:a2:5a:df:20:
bc:26:9a:e6:fb:8d:6a:a5:13:a2:d2:73:42:f9:88:
d4:60:91:88:11:a0:dd:85:32:f8:ef:ee:03:8d:1b:
99:ef:06:74:7d:6e:05:d5:fb:58:c3:19:83:c9:e8:
e6:25:04:6b:31:f0:cf:13:1c:f6:ca:c7:35:af:7d:
68:ed:d5:9d:dc:58:71:20:11:dc:62:d2:33:03:08:
cc:43:58:db:41:cf:75:82:4d:a7:35:53:d5:0e:25:
49:3d:80:c7:a5:3e:66:22:d6:ed:b2:14:ad:33:73:
3a:a7:74:61:5b:86:d3:84:6b:e7:49:7f:84:eb:01:
56:d5:09:25:25:fb:32:9a:75:09:80:90:5a:e3:63:
8c:f7:04:e0:15:0e:90:bc:7a:ad:9d:c0:f5:80:6c:
4e:7a:b4:75:fc:24:0e:3b:41:64:d9:d2:cf:d4:fa:
11:eb:86:97:b6:72:58:5b:29:b9:c8:ab:37:54:4c:
76:f7:3a:3b:d8:cf:31:26:3e:0e:16:8b:24:04:72:
90:6b:9b:7e:94:10:11:a5:19:4e:1f:c3:5b:9e:08:
74:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E2:02:61:A3:68:1A:D7:BC:73:8B:DE:69:9F:D9:4E:A5:AC:83:68
X509v3 Authority Key Identifier:
keyid:A0:AA:E5:85:0A:36:DB:28:82:2A:6C:1A:FC:5F:FA:CF:F0:07:EE:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKrlhQo22yiCKmwa_F_6z_AH7vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/720e67-d94c-4ff9-ba82-2819e4c5f123/1/oKrlhQo22yiCKmwa_F_6z_AH7vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:46:29:47:1a:25:eb:56:f5:b1:b8:3a:65:1e:01:44:01:55:
85:d7:ba:4d:60:92:94:0a:25:36:9e:b0:d4:3c:65:75:34:9c:
8b:b1:a1:a3:1c:14:6e:fb:c6:65:bd:ef:54:ae:48:b6:37:8d:
6a:7c:c9:2f:ae:92:63:92:b8:d8:33:0e:f0:3e:6a:14:3a:6e:
1c:9b:ff:9d:bf:7f:68:34:0e:89:44:6f:b9:a9:2e:9c:8e:ad:
b3:8c:d2:11:1f:a7:65:b7:dd:38:83:ef:1b:c1:2c:96:d6:f4:
8b:98:6f:e3:34:7f:0e:a7:07:26:96:8d:fe:6a:27:44:d1:80:
33:ba:11:7b:a1:92:e2:a7:de:a7:4d:e2:18:71:c8:0a:ec:8e:
ea:e7:04:d4:9b:ed:a2:db:6b:82:62:1f:84:67:37:b4:c3:1e:
5c:e6:9c:a4:39:a5:cf:7a:c7:16:46:23:8e:29:e0:c8:34:3a:
2b:85:61:1e:4b:4e:fe:47:9c:e7:cb:a4:c7:94:eb:13:a9:eb:
fc:51:c1:53:d3:f1:ec:2f:1e:6c:b9:bf:55:76:5f:ee:13:39:
97:b1:b8:12:49:bf:b0:5e:f2:67:d9:1b:8e:56:a2:27:8c:33:
20:af:48:0a:c9:45:ad:a7:64:5e:c0:80:24:a3:aa:3c:57:32:
53:da:f1:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:38:42 2025 by rpki-client