Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
File: OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft (raw, json)
Hash identifier: aGJS52IlhbSuicxwNz7jgaR1FFtStvIsTHchuvlVGy0=
Subject key identifier: 67:27:4A:0D:DE:2B:D2:9F:D9:F8:B7:99:57:45:42:0B:14:1D:F4:41
Authority key identifier: 38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D
Certificate issuer: /CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d
Certificate serial: 019746301E29F716B7A0A46FBDF542B074BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
Manifest number: 1217
Signing time: Fri 06 Jun 2025 17:00:47 +0000
Manifest this update: Fri 06 Jun 2025 17:00:47 +0000
Manifest next update: Sat 07 Jun 2025 17:00:47 +0000
Files and hashes: 1: OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl (hash: rjIFBl9ekkKAU8TtY0YN48+Qr1amBu9Yqp3g16p9i9I=)
2: PQhWLSkGUa_VMVGVuYBQSUZ_P_A.roa (hash: 3kRwsyvbLLbFqSNU/EJCsmBYkp3oO56TR7kGsRhAuv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:1e:29:f7:16:b7:a0:a4:6f:bd:f5:42:b0:74:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d
Validity
Not Before: Jun 6 17:00:47 2025 GMT
Not After : Jun 7 17:00:47 2025 GMT
Subject: CN=67274a0dde2bd29fd9f8b7995745420b141df441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:43:95:50:08:ef:c5:da:5e:80:0d:bc:36:15:
f1:4a:b2:6a:ac:51:e4:ae:92:c7:c9:c6:b9:13:e1:
88:a5:9c:f4:75:c5:01:f1:00:91:11:06:f4:8c:9c:
08:d6:50:e2:75:1b:a6:3f:ad:c5:ef:de:45:34:1f:
9e:2a:97:d2:c4:dc:37:06:c8:8e:e9:b3:9e:f9:27:
3c:b9:cf:ee:8d:df:36:be:22:11:df:cd:e3:b6:6d:
44:64:b3:b8:83:8c:7a:51:f4:fc:71:39:03:f1:2b:
fd:35:69:9b:f8:e1:75:62:89:9f:31:96:97:eb:f9:
c6:55:58:0f:91:b2:09:67:9e:c9:d5:ca:52:be:b3:
18:4f:b5:da:36:26:9b:29:cf:0f:58:5b:75:e4:8d:
b8:66:67:ec:e8:fe:8c:cf:12:01:8f:03:49:8a:25:
c7:7c:41:9e:ac:75:63:3c:02:3c:e5:9c:b9:24:b7:
ca:77:a5:aa:ac:a7:37:a7:64:68:ef:79:1a:83:7f:
38:31:26:c1:bc:ca:15:12:bb:4f:86:98:35:24:17:
1b:ae:6a:e1:e0:ec:61:80:a0:b0:db:ac:c9:41:1d:
95:62:90:4e:0e:f7:1f:8c:63:e3:b1:ec:96:92:6f:
ee:00:c4:61:2e:73:96:ec:88:13:7f:8a:f6:16:60:
17:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:27:4A:0D:DE:2B:D2:9F:D9:F8:B7:99:57:45:42:0B:14:1D:F4:41
X509v3 Authority Key Identifier:
keyid:38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:79:69:c9:26:bb:84:b4:a8:e3:b2:84:9f:c5:01:d5:3e:ed:
7d:b4:5e:e5:ad:43:f6:73:43:8a:db:4b:50:04:38:c5:ef:f9:
eb:64:38:04:32:b4:ab:6b:49:4e:6e:31:32:ca:a2:d4:05:dc:
ee:10:8f:3c:b2:b5:2b:89:ba:37:0c:f7:79:be:3c:2c:71:74:
93:a2:f8:3c:07:43:f7:46:f1:36:7d:e5:25:5d:44:c5:25:93:
b9:5f:39:70:0a:3a:d6:23:fc:84:dc:72:9a:fd:f4:91:f1:eb:
bd:86:9e:2d:e5:a2:91:54:c9:6c:67:0c:ff:eb:e7:13:4e:d7:
36:19:c9:b2:fb:26:ab:35:3f:19:6e:85:2b:2f:34:53:08:56:
6b:6f:5e:33:21:57:0b:cc:34:f1:f7:33:38:2e:e9:cf:b7:b1:
fa:13:8b:dd:71:63:81:ad:84:23:61:22:d8:a9:84:50:d7:2b:
45:3c:74:c3:78:62:cb:fe:0a:52:d2:69:e1:9b:2c:c4:03:1c:
f1:4e:54:8f:a0:be:f0:55:39:f0:62:52:f1:a3:76:4a:6c:78:
e7:90:60:6e:52:5a:fd:a9:2e:b3:a7:3e:08:fa:88:42:e8:49:
6e:ac:6d:7b:f4:d1:10:e1:43:e7:b5:ba:59:5f:61:b4:67:c0:
a4:9c:13:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:44:45 2025 by rpki-client