Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
File: o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json)
Hash identifier: 5AJsX4PsT8vu+r4JZKDFvbjdPQ8txTzgXaWYSYQlL/0=
Subject key identifier: 6F:11:85:FC:5D:5F:D1:68:E7:14:E2:5D:8C:C3:F6:4C:48:5B:5C:6E
Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
Certificate issuer: /CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Certificate serial: 01978D35D53FBDA5975D07E5C998648E4588
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
Manifest number: 1000
Signing time: Fri 20 Jun 2025 12:00:04 +0000
Manifest this update: Fri 20 Jun 2025 12:00:04 +0000
Manifest next update: Sat 21 Jun 2025 12:00:04 +0000
Files and hashes: 1: DfIfeCsjxuTLGxOswS1IRTtCtFo.roa (hash: BfLaITLvBopGuXyhXf+VexAjyd8LBGCkT8+9wJK+KLI=)
2: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: dO8WBwQasHmzZklvoPD0L2YEvhqfgirlVW0W+9GQERs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Jun 2025 12:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:8d:35:d5:3f:bd:a5:97:5d:07:e5:c9:98:64:8e:45:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Validity
Not Before: Jun 20 12:00:04 2025 GMT
Not After : Jun 21 12:00:04 2025 GMT
Subject: CN=6f1185fc5d5fd168e714e25d8cc3f64c485b5c6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a1:89:c3:c4:f4:7c:17:6f:ca:ec:36:d9:cf:
14:74:60:32:8a:be:e9:3e:da:40:c7:44:2e:87:db:
65:b5:45:f9:7f:09:a3:95:a5:7a:0b:26:67:45:c2:
f6:d2:ea:56:7c:4d:e9:03:db:df:5e:b7:4f:a0:5b:
2f:20:12:c7:1d:3e:a1:c8:25:ea:cf:d5:06:2d:85:
2b:ee:cc:db:97:ec:e0:9a:b6:82:b7:99:2a:8f:02:
6b:8a:4f:f8:f5:89:13:a9:c4:90:a8:16:ae:46:44:
9b:96:f5:85:28:d7:6b:d6:35:49:82:c6:36:be:a4:
90:13:7e:62:97:32:95:cc:21:ef:ba:90:f3:3f:c5:
c0:53:c6:37:a1:49:bf:30:34:3b:cb:21:b9:a2:7a:
89:1e:9f:5e:9d:84:c2:12:a8:19:78:9d:65:57:1d:
ea:36:10:a1:2c:59:2c:77:e9:5c:a5:21:6f:b9:8b:
f7:e2:65:44:92:60:1c:ac:78:33:7c:02:da:ed:ac:
7f:00:ec:95:4f:66:88:a7:5c:91:07:52:c1:e1:1e:
b7:11:76:da:1b:d6:7e:07:70:44:12:e6:5d:f0:db:
b9:c2:3d:6f:a6:6f:a8:3c:29:48:5d:55:ce:4a:92:
ba:d6:35:9e:c4:d8:1f:2e:02:28:b7:91:f5:50:7b:
46:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:11:85:FC:5D:5F:D1:68:E7:14:E2:5D:8C:C3:F6:4C:48:5B:5C:6E
X509v3 Authority Key Identifier:
keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:cc:a2:dd:dc:c1:14:83:7a:85:22:fa:05:6c:52:73:e8:33:
08:6b:0f:9d:4a:f3:33:8a:4b:3c:ca:1b:48:ac:56:ba:ed:1c:
5f:d4:77:28:13:e6:09:41:d8:33:14:66:27:7b:2e:b9:20:7d:
db:48:dd:e3:e3:e6:10:99:8d:b8:98:8d:f0:f6:4f:27:df:a2:
ce:4c:57:66:ac:bb:8b:dc:6c:a7:58:7f:d4:e1:9e:62:4a:58:
13:6f:9e:94:99:6a:75:6e:93:78:e5:2d:7c:c5:e8:70:28:8a:
36:09:ca:96:67:4a:cb:3a:a0:bd:b8:0e:7c:30:19:e6:0f:3d:
92:70:d7:17:38:14:b2:57:65:7c:21:8d:da:b1:57:73:9c:f9:
92:04:d1:b5:f3:62:d8:d6:ac:04:ce:8a:09:b1:6a:84:19:dc:
47:83:ff:5b:f0:72:d8:af:7c:ce:55:87:f8:b9:7e:77:a4:82:
30:46:dd:20:cc:47:d5:5e:88:ce:8b:4f:49:af:00:5c:53:5e:
70:d3:7b:d7:28:f6:bd:17:98:38:5b:33:49:eb:45:e1:b7:0f:
5c:fb:9b:34:ad:f2:fb:5d:7b:39:c6:91:9b:2b:47:fc:4f:ab:
b8:38:1e:b4:b4:aa:41:8f:e3:39:ce:f1:83:1c:e4:90:60:79:
09:1a:4f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 21:46:00 2025 by rpki-client