Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
File: OUKesL2HA74uXwrMwoG_IhYEsM4.mft (raw, json)
Hash identifier: 0JRAF//hgjvCzVQNAydzXXmWCzcxtEzadGabFVKE1Ck=
Subject key identifier: 55:27:B3:84:05:41:60:96:D3:55:95:96:86:79:45:01:86:18:3A:BE
Authority key identifier: 39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
Certificate issuer: /CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Certificate serial: 01974AB145843E0ADCD5177B2691132FF41E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
Manifest number: 0699
Signing time: Sat 07 Jun 2025 14:00:20 +0000
Manifest this update: Sat 07 Jun 2025 14:00:20 +0000
Manifest next update: Sun 08 Jun 2025 14:00:20 +0000
Files and hashes: 1: AspvYduc_Jb9y8GXYBDLcC-_8EE.roa (hash: ensOUkmx91RQ9/R5jlP5oQpNE74zuacX+6PWKXjdOOE=)
2: OUKesL2HA74uXwrMwoG_IhYEsM4.crl (hash: LqKcP0Z7EXnajEnRwvyhAxgfvyvPKtQjtacnbo6HnsE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:45:84:3e:0a:dc:d5:17:7b:26:91:13:2f:f4:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39429eb0bd8703be2e5f0accc281bf221604b0ce
Validity
Not Before: Jun 7 14:00:20 2025 GMT
Not After : Jun 8 14:00:20 2025 GMT
Subject: CN=5527b38405416096d35595968679450186183abe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7a:8a:71:93:7c:8d:33:d4:6d:4f:89:a2:aa:
c0:38:4b:d2:ae:d9:43:87:b2:61:57:72:e2:6a:0e:
e4:7f:cc:c8:00:15:d6:80:1b:32:74:c9:9e:2c:8c:
f6:87:66:82:3d:3e:8d:c7:0e:ad:65:a7:5f:9b:80:
b1:7b:b3:75:1a:9d:c0:ce:82:32:7f:69:de:e5:1d:
5c:79:99:55:e3:44:c8:f3:5f:1b:8a:2e:cd:1c:45:
78:f4:bc:3f:d2:7e:d3:97:b4:6e:ae:8d:99:0c:b3:
56:6d:d2:95:c4:67:2c:67:9f:98:9a:e2:16:1a:43:
69:ae:f2:55:af:f9:3e:d2:fc:15:11:dc:a0:a3:18:
d4:2b:5c:12:26:36:4e:35:4c:a6:a7:4d:88:9a:f5:
29:ac:21:5e:23:49:f3:4d:eb:88:34:33:19:1b:59:
27:0c:12:a2:bc:c1:27:04:31:da:6c:ca:a9:80:33:
32:c9:6b:0b:92:b4:76:ca:ed:ac:a7:1c:dc:e2:f4:
82:d9:06:5a:7a:be:f0:3d:81:75:b0:57:26:89:06:
d9:57:4e:50:d7:08:c9:76:6b:7f:17:ef:ce:df:15:
83:fe:f9:9a:88:dd:66:f7:21:6d:83:aa:eb:69:ee:
e0:be:b8:76:d6:5b:57:b3:5e:fe:a2:a4:06:b8:a3:
e5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:27:B3:84:05:41:60:96:D3:55:95:96:86:79:45:01:86:18:3A:BE
X509v3 Authority Key Identifier:
keyid:39:42:9E:B0:BD:87:03:BE:2E:5F:0A:CC:C2:81:BF:22:16:04:B0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OUKesL2HA74uXwrMwoG_IhYEsM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/01eafc-d65a-4a77-ba73-f2c48faf7f3d/1/OUKesL2HA74uXwrMwoG_IhYEsM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:89:39:d8:7d:50:d1:15:de:a3:73:a9:5e:ef:36:12:9b:72:
4f:61:c4:51:b7:25:44:0e:3e:35:18:85:e8:c2:42:02:54:26:
98:2a:43:d2:f9:c1:66:63:a0:96:95:22:a5:e7:67:d5:13:c6:
e1:bd:e7:dd:70:19:45:2b:f5:45:fc:0b:74:21:de:7d:a7:a3:
99:8b:45:91:0b:54:8d:a2:7a:0c:85:82:56:26:44:b7:f9:26:
3b:20:5e:d9:a4:1b:a9:d2:e2:32:75:62:c2:9a:b1:7c:a5:98:
05:f1:fc:78:69:a8:de:bb:53:21:da:5f:d3:d5:cf:ae:33:bc:
8e:bb:84:1d:d6:f9:e9:e1:6d:76:3f:79:fd:51:70:10:5a:c8:
d8:a4:09:00:30:99:1a:71:09:c3:68:2b:c3:23:31:ca:0b:1b:
1b:ac:c1:29:a7:b8:34:8d:67:ef:ad:e0:f9:68:fd:b2:d7:c0:
b7:57:e7:2b:a4:1d:17:99:0f:0d:9f:0d:98:3e:90:fa:f1:cd:
d1:12:75:50:f3:3a:91:a9:a5:e3:c1:ee:bc:c1:c9:2c:ee:f4:
99:ae:0d:71:8e:b2:2e:fb:7d:83:79:c1:68:9c:37:db:fb:65:
08:5f:29:be:85:4c:86:9a:91:d0:89:20:6b:a2:f0:1a:a8:ef:
fe:12:bf:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:02:39 2025 by rpki-client