Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
File: o2n7GRvuUc3HQUppYxl_hrvzE6s.mft (raw, json)
Hash identifier: RGpsDSmqbX4PCjuVu3APl+deXLSkmCrGlAPoXj+RiK4=
Subject key identifier: 1F:0B:0E:96:26:2E:9D:AA:06:0C:7B:59:B1:7E:62:49:35:8B:C3:00
Authority key identifier: A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
Certificate issuer: /CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Certificate serial: 019682B5423E045C7AF72B8AA4F76A56ABA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
Manifest number: 0F76
Signing time: Tue 29 Apr 2025 18:00:39 +0000
Manifest this update: Tue 29 Apr 2025 18:00:39 +0000
Manifest next update: Wed 30 Apr 2025 18:00:39 +0000
Files and hashes: 1: DfIfeCsjxuTLGxOswS1IRTtCtFo.roa (hash: BfLaITLvBopGuXyhXf+VexAjyd8LBGCkT8+9wJK+KLI=)
2: o2n7GRvuUc3HQUppYxl_hrvzE6s.crl (hash: plcnbsFrMYXIBu4wb+daDzgpihE/VHC+FQypXjKTUSM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 18:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:b5:42:3e:04:5c:7a:f7:2b:8a:a4:f7:6a:56:ab:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a369fb191bee51cdc7414a6963197f86bbf313ab
Validity
Not Before: Apr 29 18:00:39 2025 GMT
Not After : Apr 30 18:00:39 2025 GMT
Subject: CN=1f0b0e96262e9daa060c7b59b17e6249358bc300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:84:f4:09:eb:35:8a:e0:6c:47:4f:74:cf:f0:
87:ca:6b:e6:33:03:f1:10:e3:c2:29:94:15:57:25:
4b:61:5b:ca:ce:f7:84:85:30:55:ab:74:65:37:4a:
a8:9b:fc:9b:b6:60:60:f3:6b:27:06:81:c1:16:28:
27:14:5f:3d:97:90:79:33:f3:9d:73:f8:5f:9d:ec:
14:63:8a:e1:9c:bb:38:fd:23:29:47:5b:6b:70:c1:
ed:ea:56:53:ab:65:86:b3:8d:c1:71:91:f6:64:61:
c3:50:fd:fc:d1:7f:4b:18:de:48:ea:c0:27:c7:7b:
b4:39:8a:a2:06:fc:b9:16:ed:ad:6a:0a:67:10:f5:
31:41:4c:21:55:96:0f:d0:68:5d:25:74:8b:06:38:
01:f8:d6:95:93:99:b2:8e:23:df:4e:5c:04:49:21:
35:7d:7c:89:8c:2d:6c:d7:72:39:50:24:00:f3:2a:
b1:bf:5b:dc:c0:99:a2:11:be:94:fe:26:c9:c9:6b:
c8:24:0e:0b:33:0c:8f:55:9a:0d:c5:ff:3c:e9:0b:
2e:4d:0c:bd:5e:3e:f8:fe:5e:c5:4f:18:66:94:fe:
b2:56:dc:ef:76:eb:53:74:00:c4:19:9b:41:f7:43:
01:a0:7f:96:1f:a5:d4:4d:f0:6b:e4:6b:db:95:ae:
30:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:0B:0E:96:26:2E:9D:AA:06:0C:7B:59:B1:7E:62:49:35:8B:C3:00
X509v3 Authority Key Identifier:
keyid:A3:69:FB:19:1B:EE:51:CD:C7:41:4A:69:63:19:7F:86:BB:F3:13:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2n7GRvuUc3HQUppYxl_hrvzE6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20da60-c719-4be1-8e4f-e18052f381bb/1/o2n7GRvuUc3HQUppYxl_hrvzE6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:e9:9a:3f:88:e9:77:f9:23:e1:f6:53:a3:8f:b8:a6:f1:59:
5f:b4:7a:1a:e0:70:c3:da:46:80:ee:da:86:d3:a6:dd:ba:c5:
3d:04:5f:d1:65:59:02:93:42:cf:a8:72:62:ad:cd:5c:8a:92:
23:9b:9e:96:0d:75:ea:81:ef:75:cc:49:28:9d:2d:f2:8f:28:
a1:06:a2:12:f9:16:cb:cc:0d:8c:1c:29:bc:f4:10:78:bd:b6:
a0:cb:75:1e:cf:60:3e:fc:74:02:69:04:f1:aa:37:6c:52:42:
ff:45:5b:50:91:bd:92:58:c4:3c:59:40:56:e0:d6:de:a5:a0:
bb:15:d3:cb:a4:c0:98:65:52:9f:96:fb:27:57:cf:85:f6:d9:
93:fa:c9:31:54:bd:a4:ac:b5:a7:99:c1:f9:bd:7f:24:1e:27:
49:ee:13:5f:87:7a:39:70:ae:30:0c:11:70:03:ef:1b:bc:8f:
b9:5b:d6:67:e2:10:34:64:cd:4f:58:04:1c:d4:58:60:36:dc:
e6:da:68:20:a9:8c:cc:4f:03:5f:60:5e:41:c8:a9:92:89:06:
e7:63:8d:3e:90:ef:24:8a:9e:a2:a6:58:17:35:1c:bb:bc:da:
eb:36:72:5c:dc:1c:32:8b:4c:19:31:45:d3:9c:a8:19:85:51:
32:25:ec:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 04:52:51 2025 by rpki-client