Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
File: OBXtD6YgyAGqqabxT2WW1-yXUKE.mft (raw, json)
Hash identifier: vPPjr6sT0M5FEmkagK643f/iQ0wFiJxG8yDSbU0S5Bk=
Subject key identifier: 0A:F4:B9:90:38:3B:82:B5:7D:27:D5:26:AA:90:20:15:39:72:F0:77
Authority key identifier: 38:15:ED:0F:A6:20:C8:01:AA:A9:A6:F1:4F:65:96:D7:EC:97:50:A1
Certificate issuer: /CN=3815ed0fa620c801aaa9a6f14f6596d7ec9750a1
Certificate serial: 0197545997BD079A792E0D3D8096F75B24F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
Manifest number: 1584
Signing time: Mon 09 Jun 2025 11:00:47 +0000
Manifest this update: Mon 09 Jun 2025 11:00:47 +0000
Manifest next update: Tue 10 Jun 2025 11:00:47 +0000
Files and hashes: 1: OBXtD6YgyAGqqabxT2WW1-yXUKE.crl (hash: 8fDmB2IM+iMTpy3mr2yx201pZQV8Hx2u+NLyRtQWNtU=)
2: u-w9Flj7fkevQpf-dpXISzIby2Y.roa (hash: +ftWzfsK6bMqWx5+3ThvbgDjBdiFZmrC2eI3EPi2YVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:59:97:bd:07:9a:79:2e:0d:3d:80:96:f7:5b:24:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3815ed0fa620c801aaa9a6f14f6596d7ec9750a1
Validity
Not Before: Jun 9 11:00:47 2025 GMT
Not After : Jun 10 11:00:47 2025 GMT
Subject: CN=0af4b990383b82b57d27d526aa9020153972f077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cd:fc:95:54:ef:a0:09:f2:c1:91:af:4e:57:
f7:a1:c4:36:64:2b:b5:7e:1e:bf:81:ed:ca:7c:51:
87:b7:17:d1:e2:63:f9:a2:40:17:f4:7a:42:27:50:
68:d5:e5:f4:00:84:f2:75:d4:f9:55:67:7d:81:27:
e3:a4:47:42:a1:e2:81:ee:2e:da:ca:6e:33:d1:b9:
f0:31:e2:76:a2:99:48:49:3f:c3:fb:18:96:16:65:
f2:90:31:96:ea:32:00:53:30:e6:18:52:b2:1d:38:
97:73:8b:0e:0f:80:5a:7a:b8:3e:42:1f:b5:da:a6:
af:9d:48:22:30:5d:a3:64:f1:a7:22:d0:43:7c:b2:
54:a7:a2:61:00:5d:4d:14:2c:1c:2a:26:de:e0:01:
94:87:80:ff:94:eb:6b:f2:4a:57:f9:1c:7c:a1:c0:
ae:e0:e2:4c:9f:bc:95:5f:42:37:68:20:c1:f0:36:
87:f6:96:0d:0b:b1:f1:ea:73:6b:36:76:4d:42:45:
34:c5:09:de:82:c2:4f:36:db:7e:e9:8a:1e:1e:3c:
cd:ff:df:5c:ad:75:8d:70:f1:22:5b:96:6e:c1:96:
81:09:ca:46:1e:4f:a3:07:94:98:fe:23:be:fb:23:
83:75:6b:0f:0c:3b:c6:08:be:9f:4c:e1:71:be:e4:
71:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F4:B9:90:38:3B:82:B5:7D:27:D5:26:AA:90:20:15:39:72:F0:77
X509v3 Authority Key Identifier:
keyid:38:15:ED:0F:A6:20:C8:01:AA:A9:A6:F1:4F:65:96:D7:EC:97:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBXtD6YgyAGqqabxT2WW1-yXUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/32da40-0cbf-4244-b1a4-f35a445635ca/1/OBXtD6YgyAGqqabxT2WW1-yXUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:cd:65:01:5a:42:1a:fe:18:f1:1e:e1:ea:cd:56:22:8c:b0:
ba:5b:92:f5:ff:b6:07:68:b5:ec:aa:22:05:39:9b:f7:33:ea:
34:4e:2a:2c:b0:a5:89:dc:81:1b:0e:be:11:cd:ea:16:d6:bc:
9d:16:ef:44:d5:c9:4c:24:cf:2c:bc:1c:17:c7:f9:3e:c8:85:
39:ca:bc:4e:34:1b:39:98:1c:c6:72:c5:27:75:39:5b:01:91:
6a:48:f3:3b:9a:05:57:80:d7:dd:30:04:f2:7b:58:f2:6e:d2:
65:b3:31:ac:89:dc:e2:63:53:6a:d2:b6:a7:dc:c8:d1:26:d0:
bc:de:ba:d7:1b:e5:b5:64:44:1c:cf:db:69:b0:e2:e1:ba:b9:
0e:d4:36:a9:1a:a4:90:5b:11:58:7d:bb:64:54:26:2a:37:46:
06:66:05:1d:43:40:c9:54:6e:1d:7c:94:8b:59:16:57:e8:58:
c4:b9:77:4a:ea:f6:25:b0:82:b3:90:9d:78:f0:0e:92:8b:5a:
6f:ee:87:e1:36:69:0c:bf:71:15:e3:45:30:f5:4d:47:d3:cd:
75:23:cf:4d:ed:e1:a7:26:2b:a4:42:e2:19:3e:87:ec:11:d2:
19:fb:df:5d:bc:4a:6c:d9:ef:92:50:d2:2e:2f:c7:ce:e1:ae:
fa:af:2f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 17:19:13 2025 by rpki-client