Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
File: odcYUzJOsGD7r8mIIzhgSZyWxTo.mft (raw, json)
Hash identifier: TxwCOdeemha6rhMrL2zo3r4Ge6yBQkfdAyUG14sxdrk=
Subject key identifier: 9D:50:FE:C7:04:33:58:75:79:10:42:3A:1B:C1:7F:EF:A2:88:C9:03
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 019746D50825627E25274DE13B6044F6C71F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
Manifest number: 125D
Signing time: Fri 06 Jun 2025 20:00:55 +0000
Manifest this update: Fri 06 Jun 2025 20:00:55 +0000
Manifest next update: Sat 07 Jun 2025 20:00:55 +0000
Files and hashes: 1: C8QSMz8GNoIQm4uSFWS26QwX4TU.roa (hash: NCS38C69vxkOze1iM8evBR20KFQKimFCiPTQOaoZSEg=)
2: XJPUj_synwIHQp7bRuj9018K67k.roa (hash: nLvY6PY+U32R2cW/5HWGZNjEV3iPA1E/ctSR2ZD+DlI=)
3: XZOzWNS9uSJXxdofEgbqQ-4LX8Q.roa (hash: +R0Sy7oAn0ABCK0E7oKA/ofkAMnGgDdtdmPnmJOjdTs=)
4: YCQuqCy9NuRyU0S6FabSa0c6NJs.roa (hash: z0MGBwlcQwzapOIPDSPyZ4kB4JdwESi59TmNtwz3tdw=)
5: gf5XFlgvC8pERwrlK5LoL2sXlHE.roa (hash: JPyHl8l/41KirDeXfkpcWORF22TQZRLVrNb1aXqrS3E=)
6: odcYUzJOsGD7r8mIIzhgSZyWxTo.crl (hash: moGEPS/LxnSQVetFZ48AJF18RWOe+RIG/wi6IaU6MNs=)
7: zQz3tWtapn8qKz4rYeWGGnS9boI.roa (hash: Oet1y32LyQ4if4pkKw3gO80qX4zMy1K2uegwxuTNvQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d5:08:25:62:7e:25:27:4d:e1:3b:60:44:f6:c7:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Jun 6 20:00:55 2025 GMT
Not After : Jun 7 20:00:55 2025 GMT
Subject: CN=9d50fec7043358757910423a1bc17fefa288c903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:73:0c:96:32:bc:51:00:b8:b6:63:7e:05:c8:
44:ed:81:7d:ff:da:ef:5b:b4:45:7a:0a:b6:18:89:
83:f0:e8:15:f3:44:f0:ee:51:d9:6c:b4:0e:be:7b:
28:c1:e8:e1:36:8e:cc:f1:47:3e:a6:02:c2:4f:aa:
22:f3:6f:d2:a1:85:bc:c9:90:60:2e:29:78:37:bb:
88:b3:55:3c:e7:0a:15:09:ca:cb:70:18:1a:ee:42:
d6:3b:cd:32:08:ed:3b:a1:5e:eb:1d:8e:c8:ac:f8:
7b:8c:a1:21:44:14:31:f9:fe:4f:b2:35:70:bc:f8:
6d:c9:db:23:77:ff:41:aa:de:26:a9:47:84:3f:5a:
45:bd:fd:c7:62:a6:d5:a0:5d:f6:f2:ab:9e:75:c6:
40:bb:85:ec:a0:28:6d:34:30:4e:9d:c7:c2:20:8c:
82:97:bc:43:37:af:8c:4f:d1:d0:7e:d7:a6:64:88:
f6:28:99:41:65:24:d9:9e:dc:28:1b:1a:b7:37:9b:
92:25:49:e8:b0:74:1b:40:bf:9c:42:52:32:41:b4:
f5:88:5f:5d:38:d2:13:33:3e:a1:58:73:33:f5:9a:
cb:8c:34:c0:59:8a:95:93:ad:72:16:11:9f:07:25:
8c:77:47:31:34:3e:3d:eb:9f:13:09:4a:0f:49:52:
8f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:50:FE:C7:04:33:58:75:79:10:42:3A:1B:C1:7F:EF:A2:88:C9:03
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:41:0d:db:43:ac:d9:0d:92:13:a4:ba:55:50:30:20:df:00:
70:ca:7c:a0:47:d0:71:9f:42:b3:11:2a:fb:0a:20:0b:cb:0d:
86:09:10:22:17:12:9b:43:8d:72:f2:49:b5:4f:49:c2:12:3e:
bc:28:b1:3a:79:e5:7f:8d:56:ad:70:72:ea:4b:d5:91:70:de:
75:1b:28:6c:6e:b4:d4:a4:f2:7d:82:92:19:f3:3a:58:a9:e3:
da:ea:aa:d1:e7:30:64:6e:b3:17:63:ea:03:9d:8d:67:96:dc:
03:7e:b7:cb:d9:94:6d:24:30:7d:b2:f0:c4:c0:a2:f3:ac:bd:
c3:32:a2:67:f7:7b:7f:bd:b8:20:d0:0c:21:de:1f:64:2b:75:
d7:a6:94:65:5c:44:01:63:46:d4:b7:73:b5:86:e2:74:60:aa:
65:36:4f:6c:93:b9:7c:fb:4f:4a:24:35:ef:2c:63:5c:9b:91:
2f:7c:21:e9:d1:4c:81:b2:2e:4a:3b:2d:2a:b2:ae:9d:27:be:
d4:ca:0a:4b:70:1a:0c:bf:94:11:47:98:a3:ab:2c:c7:41:08:
af:98:fd:b4:8c:bd:ee:57:25:85:62:00:fc:7c:83:6d:8a:37:
0a:31:11:cf:da:0b:a2:c6:00:13:2c:12:4c:ab:5b:89:ed:c6:
ba:58:76:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:16:32 2025 by rpki-client