Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
File: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft (raw, json)
Hash identifier: rG3S6ICtHGfBck6KXnvY/TOUFqL9e0nLErlN0WATwSs=
Subject key identifier: 96:89:93:DD:D5:DB:AC:0C:DD:5E:C0:B2:5F:0D:F5:81:32:46:93:72
Authority key identifier: A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
Certificate issuer: /CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Certificate serial: 019786617E8B86F4FB25CAB655786F2EE472
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
Manifest number: 0ECA
Signing time: Thu 19 Jun 2025 04:10:25 +0000
Manifest this update: Thu 19 Jun 2025 04:10:25 +0000
Manifest next update: Fri 20 Jun 2025 04:10:25 +0000
Files and hashes: 1: oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl (hash: wqrtge6+RPcN5mBy57Ac/QQuGbUhZH2tE/sm1ex9U+U=)
2: y54lwyg0yxWntbnoIO-4zit0Jno.roa (hash: H4sOyX+DnDSSZx2P69W1kPQ6mzjJ5+oKrKghYFIkZco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:86:61:7e:8b:86:f4:fb:25:ca:b6:55:78:6f:2e:e4:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00995a87bf64dc4949b819dfe02f8a586aaa4de
Validity
Not Before: Jun 19 04:10:25 2025 GMT
Not After : Jun 20 04:10:25 2025 GMT
Subject: CN=968993ddd5dbac0cdd5ec0b25f0df58132469372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8b:db:7f:63:4d:0e:fc:21:ba:5e:67:4d:7f:
f9:0a:f0:c4:30:e7:f5:b7:9a:b7:9d:6a:50:fd:0c:
b7:94:5a:35:68:7a:bd:8f:d7:a5:72:33:7f:a3:17:
a4:7b:cd:ad:39:a0:b0:5b:8a:16:78:fd:2b:55:65:
d7:87:ba:17:c2:67:66:3c:c1:52:fd:8c:f7:59:d5:
f3:0e:28:f3:c2:fa:33:3f:01:04:cd:7f:b7:18:f1:
2f:a6:c6:ee:e1:95:39:09:b7:a3:5f:78:89:34:51:
48:06:a5:ce:99:30:03:57:74:dc:35:1b:8b:42:de:
bf:be:2e:19:54:7a:db:29:d5:82:f9:d8:47:07:5f:
46:16:02:a7:94:2b:0e:df:1a:71:c7:08:33:41:ad:
6c:8d:f9:bc:c3:8a:df:06:3d:2a:ae:3f:5a:4c:6e:
fa:91:ff:8b:35:37:56:96:f7:ab:92:54:87:24:eb:
81:df:d2:c7:f3:e2:d5:d6:17:ff:a9:b6:59:ba:45:
10:5e:a4:96:56:f4:a7:d8:e4:af:c6:21:58:f9:26:
03:78:16:9c:51:49:79:08:6c:19:b9:f5:7e:da:b8:
cc:79:91:02:f9:6c:c3:2d:1c:e0:91:fc:d5:d8:67:
18:8d:18:95:b3:25:84:5b:16:15:e4:a2:6f:5b:7f:
cd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:89:93:DD:D5:DB:AC:0C:DD:5E:C0:B2:5F:0D:F5:81:32:46:93:72
X509v3 Authority Key Identifier:
keyid:A0:09:95:A8:7B:F6:4D:C4:94:9B:81:9D:FE:02:F8:A5:86:AA:A4:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/fea5c4-dde1-4548-a58b-8938e9556342/1/oAmVqHv2TcSUm4Gd_gL4pYaqpN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:b8:bb:86:b8:40:57:67:c9:06:db:46:dd:22:ce:5a:9a:a0:
c5:c9:b1:b9:9b:51:7f:b5:70:80:7e:84:a5:fc:49:26:5d:ee:
6a:84:44:ea:51:65:b9:5d:00:5a:3b:91:0b:ca:e2:f4:4b:95:
59:fb:d7:4a:71:09:ef:9d:1b:82:49:39:b6:ff:63:c3:f3:86:
5a:8d:d6:c3:0b:84:32:de:c9:2b:b5:02:45:b7:b6:8c:7b:4a:
f8:07:ac:56:dd:28:af:2e:f2:cb:03:49:f2:65:bf:97:e9:d7:
3c:f8:d8:22:94:66:3a:ec:0d:02:e3:d4:95:95:95:98:29:d9:
51:77:0b:cd:bd:c2:77:c6:b9:46:47:fd:72:8a:40:aa:89:2f:
f6:9e:e7:19:2a:2e:c8:c9:5b:7b:27:65:52:54:82:3e:af:2e:
7a:db:f2:f0:df:47:ad:30:73:90:c7:f3:a2:8d:a7:1c:62:94:
65:3a:a1:94:4d:ad:ab:67:00:17:ce:83:a8:4a:7c:4a:e1:be:
f1:ed:75:94:6d:45:59:21:c6:75:6e:ff:f9:7d:0b:55:e3:b7:
2b:11:1a:e9:42:52:47:10:9f:f7:32:f2:72:94:33:a6:01:1c:
57:8c:70:0b:77:6e:a3:eb:f2:3d:58:07:8d:8d:f2:34:38:1e:
7b:37:a4:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 10:59:23 2025 by rpki-client