Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
File: OUjkpbK65iNUmZE9y-wE38pTHpA.mft (raw, json)
Hash identifier: isHC8nqPUeKtH3Dy3nwIKTz55A+gn/o2+nZ3kee+WGs=
Subject key identifier: 40:C1:BC:BC:82:46:E3:CA:14:A2:A1:9C:58:83:89:B1:86:85:1A:80
Authority key identifier: 39:48:E4:A5:B2:BA:E6:23:54:99:91:3D:CB:EC:04:DF:CA:53:1E:90
Certificate issuer: /CN=3948e4a5b2bae6235499913dcbec04dfca531e90
Certificate serial: 01974D0E04D4C9A55B834BDC2C248FDF0153
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
Manifest number: 1450
Signing time: Sun 08 Jun 2025 01:00:53 +0000
Manifest this update: Sun 08 Jun 2025 01:00:53 +0000
Manifest next update: Mon 09 Jun 2025 01:00:53 +0000
Files and hashes: 1: OUjkpbK65iNUmZE9y-wE38pTHpA.crl (hash: vLFcKCgPAV7gxZg3I8x4BOAQ+HcWzS/9BL2X6JF8Tdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0e:04:d4:c9:a5:5b:83:4b:dc:2c:24:8f:df:01:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3948e4a5b2bae6235499913dcbec04dfca531e90
Validity
Not Before: Jun 8 01:00:53 2025 GMT
Not After : Jun 9 01:00:53 2025 GMT
Subject: CN=40c1bcbc8246e3ca14a2a19c588389b186851a80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5a:68:83:a0:80:2c:50:13:d2:79:5f:57:01:
43:72:38:d6:84:8d:8d:a8:e8:74:56:47:58:12:b3:
d7:df:ac:0d:d3:39:ed:a2:83:2d:69:3d:52:e7:c0:
43:15:93:c9:fc:4d:53:75:ce:b2:d6:f8:16:55:79:
15:1c:ef:2d:75:d0:65:c1:b6:f3:ef:7d:b0:01:ee:
25:b5:b6:7a:d9:ac:76:78:71:1b:9b:04:f9:05:d9:
1c:a1:b1:6b:26:8a:90:de:9f:91:7c:97:9c:76:52:
a0:86:fa:a2:d6:65:00:22:66:83:92:b4:9f:31:56:
41:91:42:7b:3b:3c:c1:ff:cf:8a:ab:ad:5e:53:a4:
07:6e:a0:23:d7:bb:af:4d:fc:68:b8:ac:40:11:46:
ca:1f:70:ae:ef:a5:3f:5a:95:55:fc:88:88:80:b6:
2a:66:57:56:5b:d9:b7:d5:6b:7d:71:34:4e:73:e0:
ac:f7:ca:c6:9f:57:f5:09:86:11:5c:5b:50:5c:e4:
c5:b3:75:48:31:39:27:48:d0:a4:4c:1f:83:de:a0:
62:95:4d:a3:5a:07:69:65:af:f6:3b:15:de:81:b4:
14:b9:c0:65:1d:20:4e:73:4b:03:a5:31:77:93:d3:
b5:14:2b:33:26:3e:79:55:16:af:1b:e7:8e:22:bc:
59:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C1:BC:BC:82:46:E3:CA:14:A2:A1:9C:58:83:89:B1:86:85:1A:80
X509v3 Authority Key Identifier:
keyid:39:48:E4:A5:B2:BA:E6:23:54:99:91:3D:CB:EC:04:DF:CA:53:1E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUjkpbK65iNUmZE9y-wE38pTHpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/b1c3f3-7a40-432c-b41e-f650e507a76d/1/OUjkpbK65iNUmZE9y-wE38pTHpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:a5:65:e6:a8:8e:dd:49:fc:2a:44:7e:12:75:fb:8d:85:e3:
b9:1d:25:80:cc:f2:05:d0:79:21:6a:ef:3c:28:67:c7:e2:bb:
f8:1c:dd:e2:3f:9f:2f:82:99:eb:99:89:16:55:ef:a8:9a:6a:
18:53:4d:38:23:08:f4:1b:2f:1f:ca:01:88:49:eb:91:25:07:
93:1e:db:a2:05:47:f4:9b:3d:c9:4b:47:cb:5e:84:6e:ed:96:
d1:12:79:55:87:b6:c1:3b:5a:bd:e7:4f:c2:2e:d5:86:d0:92:
47:52:0c:1d:af:e1:e4:00:46:1d:44:4c:12:2a:52:fc:39:f4:
9f:16:ad:db:bb:10:fd:1e:ba:4c:36:da:8b:d8:94:93:d5:7c:
59:7a:6c:25:7d:7b:0b:10:9e:ff:89:4e:c5:ed:3c:5f:f8:a9:
54:9d:d4:c1:48:b8:38:ef:be:1c:b8:bd:d5:cd:b7:f9:c8:bf:
8b:3c:40:42:5b:61:bc:cb:d6:c0:79:a9:2a:be:3e:f5:50:bf:
89:76:e2:c7:61:f8:b7:dd:ab:63:88:76:96:e8:77:b4:b7:dc:
25:a6:03:40:5c:1c:3a:59:fe:72:cc:65:e9:95:e0:e6:23:19:
55:bd:9d:29:61:01:b6:e0:cf:ca:70:d3:1d:b7:a4:1a:5c:cc:
09:ba:22:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:54:02 2025 by rpki-client