Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
File: oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft (raw, json)
Hash identifier: J8N3xDSXyWukWyy2/RPsXxwg2y+RIJ0fdO/i0gsjF2g=
Subject key identifier: F3:95:BB:CC:93:B0:06:5B:0B:51:3C:9D:A6:94:C0:29:1B:2E:61:FE
Authority key identifier: A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
Certificate issuer: /CN=a220dda64843a4ee364b089356ca87995830fd77
Certificate serial: 01977A8B84B7FE2543039328F2DC9A63A3BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
Manifest number: 0CBD
Signing time: Mon 16 Jun 2025 21:00:53 +0000
Manifest this update: Mon 16 Jun 2025 21:00:53 +0000
Manifest next update: Tue 17 Jun 2025 21:00:53 +0000
Files and hashes: 1: f3Wn9TOfcfxB3VYXWanqfMC6WRI.roa (hash: CJSEzeKkH+A8u48zVCzb/MrI7FvV/Beze1CPp3UTLZU=)
2: oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl (hash: Web0jKJsyrjrHrKzo4Y5RwPlh+S2OhR7Ylls1V+M6Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 21:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:8b:84:b7:fe:25:43:03:93:28:f2:dc:9a:63:a3:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a220dda64843a4ee364b089356ca87995830fd77
Validity
Not Before: Jun 16 21:00:53 2025 GMT
Not After : Jun 17 21:00:53 2025 GMT
Subject: CN=f395bbcc93b0065b0b513c9da694c0291b2e61fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c8:0d:14:f6:a1:4b:43:11:c5:55:66:65:20:
75:61:c6:a6:dd:d4:d7:f8:40:5c:0e:3f:af:da:9c:
16:e4:f3:aa:e2:67:5a:48:7f:13:49:82:32:2e:ef:
4c:9b:20:9a:80:75:e7:a4:33:e5:7a:84:e2:31:21:
38:d5:06:ae:f5:bb:ca:8f:3e:da:9d:73:5e:89:b3:
95:e8:40:de:55:47:d8:0e:b8:d5:82:5c:20:6f:00:
45:35:3e:17:6c:3c:03:82:2a:b5:55:50:df:35:de:
eb:a4:85:cf:d4:9f:36:60:6f:93:0a:ba:5e:4f:5c:
21:f4:fe:50:59:94:8f:34:99:a6:91:7c:24:ca:31:
b8:14:bb:c0:ad:1b:ca:a0:cc:ec:be:5c:86:c8:d1:
5a:de:e4:0c:47:ca:2a:4e:77:55:15:42:67:c1:a3:
eb:b1:c8:78:9a:93:0a:52:e2:8f:4d:eb:a1:a2:d4:
d2:01:3a:3a:33:62:3d:ae:3d:08:9b:87:d9:c4:65:
79:6a:ae:c2:c7:48:0d:79:ba:4d:eb:4a:d4:ca:0a:
a2:54:74:78:96:2f:26:75:de:59:ed:5a:fc:b3:35:
33:1f:52:7e:d1:58:a1:00:f0:b8:32:bd:ab:eb:52:
47:ea:ec:c2:69:c7:d2:77:49:20:69:2a:16:d2:0f:
d5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:95:BB:CC:93:B0:06:5B:0B:51:3C:9D:A6:94:C0:29:1B:2E:61:FE
X509v3 Authority Key Identifier:
keyid:A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:3d:a0:fb:33:8c:85:c8:bb:76:e6:16:55:b2:c0:df:11:56:
b0:ef:ad:52:c1:61:c4:25:4a:c0:91:40:2c:27:61:be:59:bd:
b1:a9:7a:fc:be:57:77:0a:22:43:a0:46:c7:08:4e:fd:a7:23:
46:27:37:72:7c:e8:47:8b:ae:8c:00:1e:ba:0b:1e:94:ea:0b:
17:2d:76:ad:dc:42:61:93:2f:a9:6c:44:d6:43:43:af:d7:43:
85:5b:a3:0e:c4:56:65:67:4f:15:12:1f:6f:9c:40:f6:19:99:
c6:dd:c8:21:4a:b5:d3:3c:7f:99:fc:e3:c7:80:89:02:66:7e:
92:8c:cb:af:5f:f9:8c:49:08:d0:ba:96:58:21:30:16:47:94:
d4:fe:fc:9d:db:98:f0:f2:54:26:0d:04:27:8a:c6:d2:76:0d:
ac:2a:48:b5:a6:8b:71:de:28:a4:61:a8:e2:90:05:93:7e:2e:
29:6b:04:7d:b3:a1:e8:1b:26:e8:45:ab:3b:c5:13:32:f6:f3:
a5:c6:ab:6c:eb:29:13:0e:d7:81:70:43:6e:d1:7a:3e:77:a4:
29:d8:76:cf:f0:ee:07:2a:6b:2c:f5:c3:3d:09:c0:95:35:38:
05:40:5b:36:a8:e1:d9:7d:0c:c2:14:55:fa:36:8e:fe:e3:31:
40:bf:3b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 02:11:16 2025 by rpki-client