Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json)
Hash identifier: n1bve+hQL5THMMTdym86UcG82jAHNKt2Z8PF3jHWer0=
Subject key identifier: 93:56:B2:69:F0:9F:C7:4A:DD:45:92:8E:32:47:39:4C:81:4A:5B:71
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 01974E205504C356EB830BABA486254A4F8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
Manifest number: 10FC
Signing time: Sun 08 Jun 2025 06:00:30 +0000
Manifest this update: Sun 08 Jun 2025 06:00:30 +0000
Manifest next update: Mon 09 Jun 2025 06:00:30 +0000
Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: R+ERvpA9mBgjIvtuKiVakLsTyGtQWknkxbMhHls9K2k=)
2: hbt7WcwBqBoPW6rBuDIQ3SNZmzc.roa (hash: gFxs6hHw3FxfMImk+yNCzFI6L94MQhx1psEtxtAsjbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:20:55:04:c3:56:eb:83:0b:ab:a4:86:25:4a:4f:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: Jun 8 06:00:30 2025 GMT
Not After : Jun 9 06:00:30 2025 GMT
Subject: CN=9356b269f09fc74add45928e3247394c814a5b71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:49:24:34:7e:bf:de:1d:05:68:e5:1a:c8:54:
0d:68:a6:44:bc:0a:07:03:78:40:62:4c:d3:e2:fe:
a6:02:98:49:be:d6:e2:8a:13:b2:92:a1:e5:45:96:
23:89:36:a9:62:51:cd:e6:0c:c9:29:da:b9:ec:a9:
77:03:89:e3:8b:32:0a:e7:bf:56:ff:9d:9e:73:58:
53:49:27:c8:96:8e:d5:24:2a:73:d9:18:6e:f6:ba:
8b:55:97:d6:40:12:36:17:1b:db:6a:13:5c:a8:14:
ff:05:ea:67:af:d8:aa:ea:12:83:00:09:3c:fc:87:
32:1b:13:7d:24:63:8c:ae:48:ca:b7:31:9f:9e:13:
c8:2a:f2:a4:1e:e2:ee:72:f5:42:f2:7f:cd:ad:ca:
53:93:84:64:9d:96:10:03:4d:da:27:a9:8e:9e:cf:
19:da:6b:28:ac:96:3a:6b:e4:f5:71:b4:51:8c:fc:
55:4c:80:08:3b:49:47:f6:fb:c4:c3:12:bc:e9:83:
91:d3:6c:14:70:45:ce:1b:09:b5:29:10:8a:04:64:
b1:23:3c:99:b9:c9:30:e0:78:78:23:f3:37:88:51:
bf:36:f5:ad:3a:91:cb:d5:e6:50:54:05:90:50:14:
91:0b:5c:e6:86:fe:a6:25:6c:05:5c:a9:11:72:9c:
a9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:56:B2:69:F0:9F:C7:4A:DD:45:92:8E:32:47:39:4C:81:4A:5B:71
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:cc:30:92:ef:34:df:ac:1f:0d:30:33:f1:11:5c:5b:78:e9:
dd:df:c1:66:bc:9c:5e:4a:99:12:0d:d8:52:1c:7e:1a:4e:1b:
ae:b8:ad:fb:b0:a5:4b:e3:7c:0b:c9:fd:e0:c1:5d:9e:e9:49:
cb:36:e4:6e:7f:56:1c:66:70:b0:67:69:50:1a:75:bf:23:2a:
d8:9d:cd:23:28:79:35:e2:03:ef:d6:a8:76:46:17:4f:83:21:
54:5d:5c:32:06:3f:bf:4a:a5:b0:29:a7:da:f3:38:8a:c8:b5:
b8:c5:ea:ef:e6:c0:a1:d8:1c:a4:11:de:d1:02:ad:c1:67:32:
1f:31:b6:0e:c9:26:d8:77:42:59:65:4b:43:aa:7d:1e:d1:b6:
4c:ed:93:d4:88:5d:40:e3:74:33:25:16:09:16:7d:e7:49:eb:
1e:f5:a9:40:6f:1c:c4:e6:3a:14:d5:fc:c6:f3:96:ce:ee:d9:
28:4a:21:fa:dd:5d:85:c3:66:5c:0a:62:a4:5d:68:f0:35:af:
42:84:b8:7c:1e:ea:51:3c:d9:8b:3b:d2:7f:2d:4a:d6:11:c9:
c3:fc:e3:0f:ff:67:9d:71:20:11:2d:84:92:06:1a:77:eb:6a:
ed:db:04:4e:ba:7a:48:a2:22:ff:b4:48:f4:53:ae:0e:1f:58:
4a:5f:10:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:05:30 2025 by rpki-client