Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
File: oCN2bGLetRKXFVcI7MtCHIsEeAo.mft (raw, json)
Hash identifier: rVX8onYNkH5M5WPdtFuh6L+ad+c6wqk+8F7Ms/Vq3nA=
Subject key identifier: 67:11:88:40:F8:89:65:DD:14:23:45:31:6C:96:48:B4:9D:F2:15:0C
Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a
Certificate serial: 019781691F189A3A1CAAD569A5CB795AE165
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
Manifest number: 12EB
Signing time: Wed 18 Jun 2025 05:00:39 +0000
Manifest this update: Wed 18 Jun 2025 05:00:39 +0000
Manifest next update: Thu 19 Jun 2025 05:00:39 +0000
Files and hashes: 1: CHrue45DLIyJD4ONNTGJ0TL9VsA.roa (hash: u/OfuNsymZa5oGvy4EyVltbtk9eDJK5E1jdXxm1UcXE=)
2: oCN2bGLetRKXFVcI7MtCHIsEeAo.crl (hash: 0Bbiw++SQdDRsf7gvJSRCwdhX1cgq1GvYxIeeHL18MI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:81:69:1f:18:9a:3a:1c:aa:d5:69:a5:cb:79:5a:e1:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a023766c62deb51297155708eccb421c8b04780a
Validity
Not Before: Jun 18 05:00:39 2025 GMT
Not After : Jun 19 05:00:39 2025 GMT
Subject: CN=67118840f88965dd142345316c9648b49df2150c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0f:20:38:b8:d4:4b:36:6f:54:92:4e:66:6c:
b2:38:9f:06:84:7b:0b:cb:a6:8e:b8:bf:80:cb:54:
da:ac:60:af:d5:86:62:dc:08:63:05:20:7f:24:ea:
c1:af:18:97:d5:fc:71:8c:75:1a:1d:98:53:d9:09:
06:b6:29:59:bf:c8:88:81:d0:ed:65:e9:05:8c:21:
f4:b9:93:cb:b2:b2:dc:7d:e5:d9:f4:c6:71:a1:0b:
87:03:6a:58:c7:25:c9:82:52:16:fd:66:04:1d:2b:
fa:08:7e:2c:e8:e1:a7:16:9c:0e:6c:77:42:41:45:
9d:f9:4e:16:b4:56:fb:4e:52:bb:c5:83:c0:2d:f0:
27:ed:a6:91:01:47:b0:46:be:d0:b7:d5:d1:68:4c:
ad:23:bc:5d:0c:39:fb:24:33:2a:71:c2:93:4f:a6:
9b:22:63:ff:fe:33:66:ab:9c:50:43:05:96:04:5c:
be:76:d9:80:f5:4a:ca:c8:bc:0e:dd:bf:41:6f:e8:
ac:cc:51:eb:ba:57:37:e7:80:a1:d5:50:d5:a7:76:
fb:dc:32:b1:92:93:62:79:8b:e8:19:6e:2a:08:15:
fa:cb:63:c8:20:f0:98:e5:6e:64:1b:33:84:6c:a2:
f7:c1:24:1d:69:aa:c7:46:5b:96:a2:73:90:ed:e2:
09:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:11:88:40:F8:89:65:DD:14:23:45:31:6C:96:48:B4:9D:F2:15:0C
X509v3 Authority Key Identifier:
keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:39:3e:07:78:d9:8c:10:52:63:5c:12:c7:54:79:8a:bd:40:
19:8e:37:d7:34:26:f8:0f:b4:b0:fa:44:96:32:30:54:73:10:
ec:a6:73:4e:30:96:93:db:b9:c7:7d:b0:4f:2a:03:e1:22:cf:
dc:b2:e2:f1:a3:b1:8c:42:21:4b:b4:1a:36:3d:b2:db:7a:51:
6f:2d:9c:69:e7:c4:78:45:c2:b4:7d:4e:36:c7:f1:7a:f5:b6:
14:c7:f0:bf:5e:67:95:1d:f4:7b:f0:3a:b4:60:af:b4:fc:f3:
47:f4:8c:38:81:82:c1:e6:4f:8b:3a:98:81:51:10:bc:de:08:
9a:ca:d3:e1:7d:df:8c:8d:d3:0d:bc:17:b9:ed:c9:57:13:48:
f8:fd:0f:8e:90:6b:dc:96:9e:dc:96:eb:ce:b3:ba:64:ae:0a:
77:89:9c:2c:94:c6:7c:fa:08:ab:4f:5b:6f:00:dc:21:67:0e:
8c:aa:e8:0f:df:92:7d:4a:1e:61:78:d0:ae:b6:bb:0b:ee:55:
07:a7:52:05:1b:bf:7b:fc:02:0c:cc:ae:d2:37:e1:c2:5d:ab:
fb:cd:02:40:30:a9:b7:b2:13:7b:11:2f:e8:8a:9b:a4:1a:cd:
0c:9c:ea:43:6b:03:c4:08:54:f5:32:86:3c:88:f4:9a:2a:6d:
ae:c6:39:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 07:18:08 2025 by rpki-client