Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
File: o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft (raw, json)
Hash identifier: 4LWXUfnaXyl2C3ta+Fl5c/kKD6PVV2BO7Qwr5icWZt4=
Subject key identifier: 7F:FC:09:96:13:E4:E6:45:FD:FA:4C:8E:DD:30:BB:A3:F0:B6:04:8A
Authority key identifier: A3:68:83:05:FE:D5:C9:97:60:AE:C7:C8:94:C6:BA:21:E4:EA:D6:75
Certificate issuer: /CN=a3688305fed5c99760aec7c894c6ba21e4ead675
Certificate serial: 01976BBD214F5B9D21A315F8FC8D09AE46FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
Manifest number: 108E
Signing time: Sat 14 Jun 2025 00:00:46 +0000
Manifest this update: Sat 14 Jun 2025 00:00:46 +0000
Manifest next update: Sun 15 Jun 2025 00:00:46 +0000
Files and hashes: 1: 29zZRujAn8DGdUDp5utUkmVO-uo.roa (hash: pdGXIGI1eFN6x7W6e3AuHm1Q9j3iH8yigptYTm3P3QA=)
2: o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl (hash: Th5Bw7x5cR2NNUsN+QqxwOtu1pZGZmzWhLRAlZ3W0F0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:21:4f:5b:9d:21:a3:15:f8:fc:8d:09:ae:46:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3688305fed5c99760aec7c894c6ba21e4ead675
Validity
Not Before: Jun 14 00:00:46 2025 GMT
Not After : Jun 15 00:00:46 2025 GMT
Subject: CN=7ffc099613e4e645fdfa4c8edd30bba3f0b6048a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5f:b1:f2:b9:e5:b4:a1:08:ea:3d:04:b4:c9:
5c:b8:05:0d:a9:9f:e2:ef:d6:c9:d3:69:c9:50:6d:
40:41:8b:73:00:1b:3e:dd:09:b2:28:a0:b9:e4:c2:
11:eb:2a:54:bc:e8:a1:ba:95:a6:8f:f0:a8:62:12:
55:bd:d0:92:ac:be:84:ad:06:5a:c9:2c:bf:0a:22:
b9:17:d8:af:57:42:af:48:22:b3:e4:e8:38:b8:17:
39:ab:cd:e4:64:09:7c:a6:0e:79:31:64:86:0f:43:
91:a3:37:6b:bb:0c:12:fe:b2:d3:64:82:09:6a:d6:
4e:26:4e:99:9b:fc:7a:3c:fc:5d:97:87:6e:38:96:
65:df:0a:bb:b9:38:13:49:89:e0:91:5e:32:80:f4:
31:88:dd:98:2c:f1:f2:97:82:84:ed:7a:ef:79:f2:
48:f0:a6:34:cc:31:46:de:4f:b2:bd:f4:45:a1:05:
1f:09:0d:ae:a4:e0:72:6a:00:8e:f9:6b:fb:8f:b7:
86:a4:28:77:39:8d:0a:98:07:f8:dd:69:64:77:2f:
7c:47:7e:82:27:a3:4f:ff:67:58:6d:93:8d:3b:1b:
91:4e:3e:48:c1:35:01:51:df:8d:82:2c:d1:b4:62:
d8:e6:7d:46:a3:ff:30:cf:f5:0a:7c:fe:68:10:a7:
5b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FC:09:96:13:E4:E6:45:FD:FA:4C:8E:DD:30:BB:A3:F0:B6:04:8A
X509v3 Authority Key Identifier:
keyid:A3:68:83:05:FE:D5:C9:97:60:AE:C7:C8:94:C6:BA:21:E4:EA:D6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2iDBf7VyZdgrsfIlMa6IeTq1nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f9e257-0162-4def-96ad-dec9796f6223/1/o2iDBf7VyZdgrsfIlMa6IeTq1nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:ba:22:91:24:66:d7:58:1a:ff:05:37:4b:21:e7:9b:94:7b:
d9:af:24:2e:bd:ff:5d:5f:25:55:6c:75:f8:d5:d0:d8:7f:f3:
50:f7:d3:b5:02:32:8d:65:e7:42:c7:8a:0d:dc:48:95:97:b2:
61:e6:2a:ac:ed:fb:1b:d5:05:ff:16:fd:f5:c0:34:8b:81:1f:
70:28:81:8e:19:af:12:c4:29:61:82:81:b5:34:30:36:92:0f:
b5:f8:6f:53:01:de:19:2c:04:e8:06:25:13:e7:54:3d:4e:05:
a5:51:25:e4:0e:4e:d8:24:2d:2c:30:7b:07:08:ac:0c:f7:2b:
50:3d:77:9e:b2:87:01:e8:76:10:d1:49:f1:22:eb:8f:af:38:
46:0f:ae:b0:c6:86:f1:d0:80:63:77:95:e1:c5:c4:6f:9c:c7:
a6:9f:d6:1f:d4:37:61:24:c4:22:b2:1d:33:3c:4f:ce:09:f8:
15:61:e4:9b:ac:e3:37:40:0d:c7:f3:34:74:2e:95:a0:75:e5:
63:13:8b:45:24:36:9c:ec:ec:91:81:eb:06:cd:87:42:85:0a:
7f:d6:f0:e4:72:41:6e:a8:5b:38:6f:c9:f5:a3:44:5c:ea:65:
27:0f:13:96:00:46:be:ba:a1:71:29:fd:14:eb:76:59:97:76:
11:60:2a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:24:50 2025 by rpki-client