Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
File: OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft (raw, json)
Hash identifier: KlktBviJ/fuFmxGI7U8pHEft7C5EO1DFOErDJPkE5s4=
Subject key identifier: 62:1F:2E:BC:04:FE:3E:1E:49:A3:F0:FF:A6:29:6C:9B:6F:34:54:D8
Authority key identifier: 38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9
Certificate issuer: /CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9
Certificate serial: 0197485508266DC0901C2F40D0208AD85B1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
Manifest number: 0C5B
Signing time: Sat 07 Jun 2025 03:00:21 +0000
Manifest this update: Sat 07 Jun 2025 03:00:21 +0000
Manifest next update: Sun 08 Jun 2025 03:00:21 +0000
Files and hashes: 1: OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl (hash: 2gfuVD5tAETjlbfh9uRUWyvLjhstzMEAbizs6swmtXg=)
2: b85MZ4WinFf_UE0cBlcSvifgg7I.roa (hash: uJf/EeGTiSuFi2jO3q5f34ZIMuvCCFqx997bjLZrpdM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:08:26:6d:c0:90:1c:2f:40:d0:20:8a:d8:5b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9
Validity
Not Before: Jun 7 03:00:21 2025 GMT
Not After : Jun 8 03:00:21 2025 GMT
Subject: CN=621f2ebc04fe3e1e49a3f0ffa6296c9b6f3454d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:23:0a:cb:5e:7a:51:e9:0a:62:1e:e0:ef:b1:
2e:b3:c8:16:52:80:32:37:45:df:92:a7:95:54:43:
c3:67:3a:bf:88:11:ff:e7:bc:b6:67:3e:f9:dc:97:
64:4a:44:06:6b:98:db:c7:bf:d7:71:ef:49:3e:c7:
f1:12:54:60:bd:f9:a7:ea:19:34:ee:9e:00:b8:b7:
d6:61:c2:c6:47:52:93:a5:b0:f7:95:d9:10:4e:14:
24:84:a5:f1:e4:f4:30:9f:06:73:dd:1e:24:75:06:
f0:48:cb:6f:38:82:9e:23:ef:1d:f3:56:75:0d:ee:
55:4b:9b:f5:88:89:6c:65:42:a8:25:75:b4:74:98:
45:4d:97:cf:20:9b:f0:0d:ae:c6:61:26:88:ef:99:
d8:c8:e0:f2:1a:cc:2d:ac:15:dd:9b:32:23:fe:91:
b8:38:21:bf:43:ab:76:5b:42:5a:ce:ee:40:cb:6d:
71:9c:8e:4e:a4:6e:d5:84:05:7f:23:5f:77:89:48:
d9:9d:a4:15:10:da:59:7f:98:87:0e:34:55:a3:38:
7f:d0:d1:99:19:1c:2c:8b:62:64:96:a3:90:3e:49:
a3:f4:e3:31:f5:34:24:83:da:cc:cf:a8:2f:66:4a:
ed:b9:5d:f0:69:bf:da:eb:ec:03:14:ec:be:84:7b:
5b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1F:2E:BC:04:FE:3E:1E:49:A3:F0:FF:A6:29:6C:9B:6F:34:54:D8
X509v3 Authority Key Identifier:
keyid:38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:52:0b:13:99:2e:36:b1:3e:ad:d2:65:bf:24:5d:92:c0:e3:
55:18:99:4f:67:18:05:0b:37:c8:38:94:7b:ad:0f:91:dd:44:
6d:ca:9f:ee:72:9b:67:74:40:f5:b9:7f:fb:80:f3:f0:50:06:
cd:3b:b2:ec:9a:ce:b7:5d:62:f6:37:2c:7f:5f:92:83:6d:0c:
5a:3b:ab:09:44:3d:cc:3b:0f:5d:8d:b8:2b:73:7b:4c:ad:51:
51:64:19:f1:d6:c3:7f:4b:30:c2:75:7d:7f:2a:b8:15:2b:04:
a5:9d:a1:f3:6a:f3:a2:f2:cc:c5:fe:98:b9:49:6f:8d:5e:5f:
56:02:6c:d3:70:b4:9c:bf:0f:10:63:32:cb:fc:85:f3:96:57:
2c:a0:4a:cf:55:43:e6:49:f0:93:1c:ba:bf:3b:bd:b7:d3:22:
7a:0e:b7:9b:ce:02:17:1f:38:4a:b0:86:51:5b:60:68:93:d4:
4a:5b:a7:b2:ef:76:8c:d3:37:c6:4a:1a:1f:19:c2:09:09:fe:
02:e1:d7:ed:1a:5e:de:2b:44:81:6e:dd:a3:77:5f:69:6a:8c:
60:8a:87:49:71:f5:cd:0f:db:df:ce:5a:14:be:7d:b6:fe:05:
f0:5d:f3:6c:c4:43:bd:b4:5d:16:cb:a0:8c:35:30:a7:37:36:
99:6c:c3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:08:41 2025 by rpki-client