Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
File: Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft (raw, json)
Hash identifier: JJi1x6e2GFb0CJBBH3SoUxZQzVk8UphOu9a1amoVsD0=
Subject key identifier: A9:D6:DB:5D:28:6C:A7:79:8D:60:FD:70:2F:53:A6:6A:0B:C2:37:4E
Authority key identifier: 3A:19:35:B3:CB:C2:52:7E:AF:16:7D:69:B2:07:8D:33:E4:C4:DA:20
Certificate issuer: /CN=3a1935b3cbc2527eaf167d69b2078d33e4c4da20
Certificate serial: 01974A0C8D21EEC7D8FFB18685D22B9AF9C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
Manifest number: 06C3
Signing time: Sat 07 Jun 2025 11:00:25 +0000
Manifest this update: Sat 07 Jun 2025 11:00:25 +0000
Manifest next update: Sun 08 Jun 2025 11:00:25 +0000
Files and hashes: 1: M82sfYNUsyqK13nZZfstvwDd7Fs.roa (hash: Pwd9phO+f2VaYBcGPbgT8icjGcqdGdD4Q6fe+fixav0=)
2: Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl (hash: 7pqucjXI0q5kW47d7VFPEMAqRf65bRUxmk7gPUrAXjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:8d:21:ee:c7:d8:ff:b1:86:85:d2:2b:9a:f9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1935b3cbc2527eaf167d69b2078d33e4c4da20
Validity
Not Before: Jun 7 11:00:25 2025 GMT
Not After : Jun 8 11:00:25 2025 GMT
Subject: CN=a9d6db5d286ca7798d60fd702f53a66a0bc2374e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:90:62:52:df:59:b0:64:9a:1a:85:ab:ff:95:
d6:68:8a:f2:b0:62:95:09:02:ea:c6:f6:fd:40:e5:
80:69:d2:bf:77:0b:12:4b:80:19:0b:65:df:ad:d7:
d5:2f:68:2a:53:c2:d2:a0:e0:ae:bb:7c:36:a2:02:
9e:f1:68:2e:ef:3b:7a:2c:81:7c:61:22:6d:4f:10:
2b:c9:c7:a5:9d:ff:1f:9a:92:e2:aa:c2:80:a3:96:
d6:91:fe:3e:c1:39:82:45:c1:ad:bb:f3:e2:13:1e:
d6:9a:7a:10:4b:7e:f1:17:d8:57:1a:b7:00:c2:b8:
a6:96:b4:65:df:38:eb:fe:ab:61:e0:4d:0d:9e:ad:
e6:ba:6f:7b:b8:c6:1f:16:5f:65:07:22:3d:5e:6b:
1f:d5:95:5b:fa:08:3b:4d:6b:d3:ff:d8:d7:04:b2:
6a:9b:7a:23:12:01:c7:d1:96:00:37:aa:6f:ae:31:
29:b8:e2:e8:8c:ac:39:08:f5:5e:20:bf:66:e7:16:
26:42:1c:e4:7d:35:ca:1a:cc:75:18:89:74:f0:0c:
00:96:95:d1:81:ee:69:8b:45:19:2e:de:0d:57:62:
a8:bb:f5:fa:1b:63:ad:4f:56:c5:3d:13:98:74:06:
3d:18:d8:04:b8:b1:ac:9d:e4:1d:d1:1b:d9:b9:49:
76:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D6:DB:5D:28:6C:A7:79:8D:60:FD:70:2F:53:A6:6A:0B:C2:37:4E
X509v3 Authority Key Identifier:
keyid:3A:19:35:B3:CB:C2:52:7E:AF:16:7D:69:B2:07:8D:33:E4:C4:DA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ohk1s8vCUn6vFn1psgeNM-TE2iA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/fffba4-2efa-465f-af96-abf837ace8e4/1/Ohk1s8vCUn6vFn1psgeNM-TE2iA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:b2:ac:fe:4a:20:41:11:e7:98:1f:a2:79:9f:4f:db:57:db:
b1:71:c5:2e:dc:cc:94:2c:05:f3:f0:8e:57:65:38:44:fb:e3:
10:9b:a7:f5:5d:d4:a3:9a:f8:fc:09:7e:6e:6b:aa:7e:53:a1:
24:15:84:85:dd:f7:8b:4b:5f:a6:0b:10:d2:fa:33:da:4d:0b:
39:5c:c1:61:44:61:28:fe:33:6c:a1:ab:19:1b:7b:5b:94:fa:
d0:45:b1:f4:d7:7e:f9:3f:99:2b:8a:fa:fc:7c:81:8d:db:68:
4f:ef:15:6c:61:c1:14:1c:b5:bb:ab:ae:94:cb:f6:54:cf:65:
ea:25:38:f7:b8:3e:a5:fa:a2:f8:46:14:1e:b8:97:64:56:a8:
b7:c2:c4:7c:ef:0a:70:c3:24:35:0e:1b:ca:20:df:ae:8f:40:
6b:93:86:60:e3:65:3c:66:ce:b9:a0:64:1c:b4:b3:0c:3e:bc:
6f:0b:43:45:fa:f0:cf:f8:b2:37:13:bb:93:a9:85:ed:e6:fc:
a8:b9:cc:b6:36:bd:b8:ee:ca:0b:28:eb:d8:be:89:26:6d:a1:
aa:12:02:99:69:92:90:f0:3e:8a:48:35:92:c3:d3:db:03:4a:
8f:9d:ec:ba:77:75:83:e5:54:b8:ee:01:20:b5:81:7d:5d:07:
d5:a4:a3:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:49:46 2025 by rpki-client