Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
File: O95jhoTGRf7dYA7TxQzfMQsRbT4.mft (raw, json)
Hash identifier: omqieJYVLqX2s5hmsA/yyOptfcaMF5af4FWO2UzZM6A=
Subject key identifier: 9E:E2:D6:0A:B6:31:CB:C3:68:C2:82:3A:B3:B3:3C:81:5F:59:B0:0A
Authority key identifier: 3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
Certificate issuer: /CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Certificate serial: 0197496857A9C54F34B54A5EFA6BD2E0678A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
Manifest number: 1099
Signing time: Sat 07 Jun 2025 08:01:04 +0000
Manifest this update: Sat 07 Jun 2025 08:01:04 +0000
Manifest next update: Sun 08 Jun 2025 08:01:04 +0000
Files and hashes: 1: AmLrnFBBUwarj708-brt5mXEs6c.roa (hash: rrDod4wiM6+h8On16PiqN3FEJpayPPTDmJ6oUSkO4ZE=)
2: O95jhoTGRf7dYA7TxQzfMQsRbT4.crl (hash: /bhf7NseALA1QmjSGQtg2+s6/TPsK/gC1tePO1odqZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:57:a9:c5:4f:34:b5:4a:5e:fa:6b:d2:e0:67:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Validity
Not Before: Jun 7 08:01:04 2025 GMT
Not After : Jun 8 08:01:04 2025 GMT
Subject: CN=9ee2d60ab631cbc368c2823ab3b33c815f59b00a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6d:6b:83:f7:73:45:af:dc:38:a8:e0:2b:86:
3a:ba:36:c4:88:ee:cf:6c:d5:3c:02:68:46:c6:ad:
db:61:73:15:3d:aa:52:60:c3:b9:93:12:9d:98:cd:
dd:e2:b9:1f:10:4d:33:1d:16:ff:be:a7:15:8f:20:
92:7a:83:18:09:ee:0e:9f:35:8e:f8:b6:21:f1:06:
29:e3:c7:19:c2:a2:2c:e6:af:aa:72:dd:e8:11:5b:
93:70:58:54:06:94:48:f9:c3:51:4a:00:f3:90:7f:
39:ad:18:59:a5:5e:f6:a5:b2:45:aa:a6:0b:7a:8b:
75:a7:ea:8e:ef:43:a1:95:33:e9:67:5a:a1:49:dd:
9a:c4:c4:9f:7c:2f:63:28:14:f5:86:d5:d8:40:1b:
96:4f:b5:21:da:d4:4a:aa:33:45:f4:29:57:7c:96:
73:ea:1f:94:37:bb:74:9a:38:e0:bd:ca:f6:c5:fc:
fe:91:ba:6a:54:ac:81:60:f1:9b:09:0e:07:fe:c7:
d7:b5:54:3a:ec:50:af:76:d1:a7:61:f5:ee:99:bd:
fd:07:43:f2:88:6c:8b:a9:7c:af:8b:20:a5:4e:52:
18:f7:d6:75:ee:ec:50:87:d1:01:90:2b:a7:70:38:
32:12:3c:46:2d:01:9d:c3:46:02:ca:a3:9d:1a:d7:
2e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:E2:D6:0A:B6:31:CB:C3:68:C2:82:3A:B3:B3:3C:81:5F:59:B0:0A
X509v3 Authority Key Identifier:
keyid:3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:e1:5e:65:57:55:42:68:72:e8:c4:94:55:82:de:e6:8b:dc:
f1:b6:59:f5:6e:56:a6:89:6c:32:ad:eb:0e:0a:22:40:fd:32:
84:f0:1e:cf:93:72:ec:95:00:e9:57:5a:b2:82:2d:70:ab:6b:
7f:63:ce:c3:37:f5:67:ef:61:24:57:34:9b:c8:b4:6a:80:ca:
e3:15:e0:57:b2:f1:d8:a7:a6:1d:81:2b:d6:ba:d2:18:7a:d1:
c3:45:92:a9:66:5e:ed:23:d1:59:d9:18:d0:87:11:0f:86:e5:
74:b8:49:a1:5f:67:7a:cb:b9:33:8e:88:d3:15:23:7d:f9:f8:
03:c9:88:71:b6:d5:61:b8:a7:53:3c:1b:b3:38:3e:4f:74:2a:
7a:cb:89:55:35:68:0b:38:b7:99:04:4f:98:de:01:bd:a0:fe:
bc:30:b9:b4:43:a7:ce:82:e6:8b:1f:b4:94:64:6a:4f:49:cd:
74:a4:c3:79:f2:7f:a4:8f:10:b7:29:c9:13:0f:4f:e2:b1:97:
85:a0:61:70:f8:d9:ff:0d:1d:cb:5b:85:5f:c2:e7:6a:90:95:
b3:0d:fd:71:51:6b:c4:0b:38:f7:1a:dd:d5:f0:15:d0:97:46:
fe:39:c7:19:6b:3b:67:fe:76:3f:66:c7:70:af:c7:cf:d5:3b:
ad:01:18:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:10:39 2025 by rpki-client