
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json)
Hash identifier: 66yg8PBHUZ1yXMT9rfb975aDboEwl0my0ruv5nnevz4=
Subject key identifier: 73:98:F0:E0:AF:CC:B8:4A:73:B4:06:68:14:36:D3:5E:28:01:3F:43
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 01975D25C7539209F63B141A1781A185FB87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
Manifest number: 109B
Signing time: Wed 11 Jun 2025 04:00:46 +0000
Manifest this update: Wed 11 Jun 2025 04:00:46 +0000
Manifest next update: Thu 12 Jun 2025 04:00:46 +0000
Files and hashes: 1: 4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa (hash: EMh2tz4i0xV1ZX0fHy8PWh0LdLWVBXB/z2TGKHCydUo=)
2: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: QLa2UU8D9YNRoeMRM59Sf3SQYKNODmMFp7Edp/iMFQ8=)
3: lKnLzY94Z9zOTG6_1gzuoDIJ_5Y.roa (hash: veP44H4IXhWwV/CHwiAUB7r/bJ77LhyJozTjkioLQx0=)
4: rYkWvcE_3GQZ3jkaDTUiqjj986g.roa (hash: FOkCN5CJZuWhjjVzqhCAbEwhLO4+xpDqIO3h/0CpxnA=)
5: xvMwGEntPrsPSijtn7qckfPF1Lw.roa (hash: cfgqt0GeV7LUHA50FIbHHM6KEXg5Xmqps/DGbUwBUAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:25:c7:53:92:09:f6:3b:14:1a:17:81:a1:85:fb:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Jun 11 04:00:46 2025 GMT
Not After : Jun 12 04:00:46 2025 GMT
Subject: CN=7398f0e0afccb84a73b406681436d35e28013f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:97:e9:39:6d:09:31:39:09:4c:7f:82:e3:7a:
9c:01:b3:f0:f8:7a:12:a7:ca:16:5e:cb:a3:a7:63:
75:e4:4a:20:91:d4:93:9c:cc:7b:1d:66:67:6c:cf:
17:14:84:56:11:20:76:09:8d:9c:30:df:75:ab:b0:
62:4e:48:d0:cb:8f:af:1b:81:f5:c8:cd:9d:dc:28:
5d:3b:ad:09:18:64:74:b6:70:08:73:31:88:1f:5a:
24:84:82:5c:82:f9:01:cd:d0:05:3c:66:a1:69:d2:
35:a0:97:8c:0d:06:80:54:0d:d3:e3:a3:40:60:96:
ce:ba:da:19:92:bb:e1:60:84:60:7e:5a:c7:6b:07:
cc:03:27:bb:36:cb:6a:6d:03:70:90:64:03:d5:03:
24:c5:7e:bd:4b:39:dd:69:90:70:2d:57:44:37:30:
5c:fa:85:b5:51:6f:c8:9e:db:e9:cd:e4:96:64:07:
1c:98:bc:5c:9f:8e:c5:1c:b5:4d:ce:9a:38:35:46:
41:e4:64:f3:8e:f9:1a:c9:07:d7:8d:fb:c3:4c:55:
0a:e6:30:b8:25:9c:2d:b5:51:de:33:85:23:35:c3:
e7:b6:96:9e:87:ea:e4:da:19:b1:77:2e:f1:14:3b:
df:dc:1e:b9:14:c3:7e:a4:c1:6f:04:7d:06:2f:f4:
b7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:98:F0:E0:AF:CC:B8:4A:73:B4:06:68:14:36:D3:5E:28:01:3F:43
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:e5:a3:b4:a2:8e:35:47:55:b2:4f:f2:ab:5d:4b:42:73:8a:
6f:99:2d:9f:34:18:d1:60:52:53:40:b1:e7:9e:93:2e:dc:fe:
ac:a0:5a:be:87:68:a8:16:50:b9:ed:2d:94:e2:e9:6a:f0:e0:
6a:fb:44:60:26:8f:55:e5:92:dc:fa:a5:c7:d0:95:e0:2f:7c:
46:e4:1b:cf:d2:c2:9d:34:e9:eb:bf:7a:a8:84:e5:4f:02:02:
db:77:2a:2c:68:ba:c0:74:cc:d1:e7:52:33:1d:60:99:55:dc:
0e:01:02:d1:56:b5:00:3f:2f:f4:92:37:b3:f8:37:8c:94:64:
8e:28:0d:35:dd:30:c9:c7:5a:c7:15:39:e0:3e:c7:8f:a2:2a:
5c:72:85:b3:d5:37:7a:6c:cc:7e:b4:a4:7b:a7:51:2b:05:f2:
48:1e:ac:96:6d:3b:3c:52:e9:ef:c7:44:48:9c:7a:e3:ce:ab:
b2:f6:bb:75:62:f4:63:ff:3e:40:f8:e6:ee:be:22:a7:cd:b3:
83:c4:1b:93:67:e2:e5:34:f4:cc:6f:3b:e9:40:c6:ed:cf:ff:
6f:86:20:70:07:53:44:d0:26:ab:7d:0d:78:ee:80:ec:fc:64:
0b:fb:77:6b:23:36:1b:a8:2d:2b:e3:c5:44:54:2b:4b:b1:d1:
a5:67:ce:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 12:20:51 2025 by rpki-client