Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
File: oNxs0zNOAmkDIjc8O1BuQYT67H8.mft (raw, json)
Hash identifier: 6xvF94CWjJK2CGjI8hywRme1n+SyLCDgWCyJ9g1mZQw=
Subject key identifier: 8F:2E:60:4C:1D:BF:66:4E:A9:90:F5:2F:09:3A:01:63:48:13:D3:97
Authority key identifier: A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
Certificate issuer: /CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Certificate serial: 01976C2A9F8CAEA21D636E69BBBA931DD390
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
Manifest number: 03BB
Signing time: Sat 14 Jun 2025 02:00:22 +0000
Manifest this update: Sat 14 Jun 2025 02:00:22 +0000
Manifest next update: Sun 15 Jun 2025 02:00:22 +0000
Files and hashes: 1: L2QPsEXXxjypDuteGOkuNir3lUA.roa (hash: mcJaTh3VxTTNDuoHtoju+OCGdo4jk9ztR2/hlQRPaNY=)
2: oNxs0zNOAmkDIjc8O1BuQYT67H8.crl (hash: HKgeX0oXvPysiQNUfJvXtimI/Pj93pJQPQsiK96HP7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:9f:8c:ae:a2:1d:63:6e:69:bb:ba:93:1d:d3:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Validity
Not Before: Jun 14 02:00:22 2025 GMT
Not After : Jun 15 02:00:22 2025 GMT
Subject: CN=8f2e604c1dbf664ea990f52f093a01634813d397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b7:cc:25:58:d5:c7:46:57:64:59:3b:5f:0a:
4d:d5:47:3a:63:16:63:e3:cd:10:19:25:15:e3:60:
7a:3d:6c:54:65:2a:d5:ed:1f:a6:c4:3b:20:27:b9:
3d:56:6c:e0:07:c4:f9:ff:0b:ff:36:9b:a6:3b:47:
4c:69:ea:7d:27:9e:35:a9:b2:a4:b2:f5:24:6c:2e:
78:15:88:5d:54:67:c1:c9:80:cf:20:9e:24:37:96:
57:c6:26:ca:bb:18:69:4c:b8:ac:bb:a9:0f:2d:62:
fe:2e:d8:d9:98:8c:ac:5b:0e:6f:71:9c:f2:c9:bd:
cb:12:4d:76:9d:4c:4d:18:11:c2:e3:67:9a:5f:c2:
77:be:44:58:33:fa:24:d2:78:c9:4e:a7:d3:cd:67:
6d:17:a8:62:8e:39:f2:45:14:cf:97:58:1e:3b:f0:
21:b4:6f:9d:5a:1b:47:52:08:e6:0f:9e:63:f1:36:
dd:68:64:be:02:44:55:26:27:13:dd:5d:0e:f7:71:
86:29:10:d0:8e:79:a2:fd:72:e2:87:85:ae:f5:91:
8e:aa:5d:ce:81:1b:00:6b:fb:95:92:ea:ef:c1:77:
ed:d3:41:e0:b4:be:7a:58:4c:88:37:22:a9:38:5d:
d7:a8:37:9d:e0:c2:fe:6c:95:0f:05:af:64:0b:4d:
4e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2E:60:4C:1D:BF:66:4E:A9:90:F5:2F:09:3A:01:63:48:13:D3:97
X509v3 Authority Key Identifier:
keyid:A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:28:c9:d2:b1:af:98:1d:d4:c9:63:e2:3b:a2:c9:7a:16:49:
84:c1:e5:9e:4d:fa:a7:0c:b1:85:38:e2:fe:8f:cf:2b:39:f0:
8f:53:81:0e:ce:14:7b:cc:9b:92:c1:16:6c:9e:e0:64:60:43:
ab:ca:8e:49:d6:d7:b0:ed:23:70:e3:47:cb:d7:ed:3c:5c:7a:
fb:d0:eb:75:32:0c:9b:24:2c:21:42:f5:79:99:57:23:eb:48:
a4:23:1f:13:18:8e:8c:cb:b0:38:f0:0e:ad:65:c9:6a:d7:f3:
00:a8:2a:04:64:f5:07:8f:84:db:84:89:c9:5d:42:fa:89:05:
40:20:02:d0:48:5f:29:d0:a4:63:54:81:c6:f0:1b:11:71:8c:
33:94:b2:87:06:5d:b1:7c:c7:51:8f:e1:c2:28:b3:21:e4:1a:
0a:33:f7:8d:4c:ee:dd:29:a2:20:60:30:2e:b0:92:08:af:91:
de:2f:d0:7d:2e:44:ee:80:5c:3f:cc:1e:7c:39:4d:4b:f7:f2:
1d:12:55:08:70:03:91:b3:7e:74:93:df:74:17:90:21:50:77:
6c:07:26:cb:14:bb:40:9c:1c:37:3c:62:d5:c3:7d:cc:83:99:
a3:40:ba:7c:6b:63:e8:9c:05:f1:4a:c9:ca:53:bf:1c:52:28:
a2:1e:bf:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:39:53 2025 by rpki-client