Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.mft
File: OC5TMDOzzpXklyvyOC3awpPC3AE.mft (raw, json)
Hash identifier: HDZUOFSP5932bVQNTMTSwR7URppe3FnH7eI9ctBhwkc=
Subject key identifier: D1:E3:AF:CE:E4:9D:2F:09:7B:96:A7:28:2C:07:72:0A:F2:70:74:8D
Authority key identifier: 38:2E:53:30:33:B3:CE:95:E4:97:2B:F2:38:2D:DA:C2:93:C2:DC:01
Certificate issuer: /CN=382e533033b3ce95e4972bf2382ddac293c2dc01
Certificate serial: 01974E2063D7657822513FDF8AFCB2466676
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC5TMDOzzpXklyvyOC3awpPC3AE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.mft
Manifest number: 08DE
Signing time: Sun 08 Jun 2025 06:00:34 +0000
Manifest this update: Sun 08 Jun 2025 06:00:34 +0000
Manifest next update: Mon 09 Jun 2025 06:00:34 +0000
Files and hashes: 1: 5Ut0b0NCsET_SBcrRZDGmpxguZ8.roa (hash: yFP/8VV88RGdYS/1gMV2xguqReDrDsPUy9So1+AmUlY=)
2: 5govGzTOoEOkHW5AQQBeXhEslnY.roa (hash: WSesnMfx5MzV8mfpr2Kk+2TovkIoHzCJWKSulEHwHA0=)
3: OC5TMDOzzpXklyvyOC3awpPC3AE.crl (hash: /VaYhcS8SHaEB5YjNjaxqsWFNT22rCbLupVerWgYHVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC5TMDOzzpXklyvyOC3awpPC3AE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:20:63:d7:65:78:22:51:3f:df:8a:fc:b2:46:66:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382e533033b3ce95e4972bf2382ddac293c2dc01
Validity
Not Before: Jun 8 06:00:34 2025 GMT
Not After : Jun 9 06:00:34 2025 GMT
Subject: CN=d1e3afcee49d2f097b96a7282c07720af270748d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:07:e9:6b:3c:4d:07:89:d6:ed:fa:d7:62:47:
7f:40:f4:1c:4d:ae:ce:31:ff:4c:64:cb:ac:b6:5b:
29:0c:84:76:45:ff:21:f9:27:67:74:38:d6:a5:33:
38:aa:5a:51:f3:47:b7:9c:f6:8c:65:8a:2d:d6:2c:
f8:3e:00:83:ac:67:a5:83:0f:75:b8:34:60:9b:15:
c2:82:a6:b5:a8:2c:aa:a4:3a:40:45:d7:0f:8e:07:
b6:02:e5:5c:62:df:77:4c:f6:3e:ea:7f:70:61:10:
8a:00:7b:6e:d1:75:e6:90:19:33:b1:89:da:46:b9:
5a:4e:d0:da:6b:62:b0:f1:77:75:69:16:14:3b:12:
8b:df:9a:76:5b:1d:b3:da:15:13:80:70:f9:78:cc:
a6:ec:e8:f7:a9:2b:61:62:22:71:3d:52:fd:b3:8c:
77:69:ee:4d:09:d5:4c:62:be:2b:19:3f:b5:77:c6:
5e:48:25:73:9a:df:3c:ad:bb:24:75:67:8d:c5:a7:
ea:cb:95:61:9f:03:c9:60:7b:69:bb:d5:86:03:47:
33:b1:4b:37:4f:22:78:2b:f3:4c:3f:28:cf:b6:05:
48:58:94:47:ca:d7:c8:a5:a6:95:bc:10:69:9b:83:
12:57:f3:f3:90:81:19:06:7e:bd:37:c4:b8:5c:c9:
c8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E3:AF:CE:E4:9D:2F:09:7B:96:A7:28:2C:07:72:0A:F2:70:74:8D
X509v3 Authority Key Identifier:
keyid:38:2E:53:30:33:B3:CE:95:E4:97:2B:F2:38:2D:DA:C2:93:C2:DC:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC5TMDOzzpXklyvyOC3awpPC3AE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a0fae1-40ee-4191-b2d4-eaa090514b52/1/OC5TMDOzzpXklyvyOC3awpPC3AE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:06:df:05:84:0e:59:18:62:de:1e:9e:bb:01:bf:b7:ed:5f:
51:74:34:c5:88:cc:62:eb:da:b3:b0:4d:76:74:61:97:51:b0:
aa:1a:f7:3c:3b:85:b3:6c:47:2a:0c:8d:68:4e:83:67:3d:e9:
f6:41:06:a2:df:d1:5c:52:00:8b:f1:bb:d0:92:33:c3:83:41:
53:d4:0f:8c:11:eb:f1:f3:96:7d:85:9d:0c:be:a8:27:95:21:
cc:22:1e:76:09:a7:95:d6:ab:6a:72:89:01:65:54:e0:50:6e:
cb:ae:25:03:42:87:7a:bc:5f:ee:07:2c:e2:f0:35:35:38:0e:
33:88:14:1e:62:2f:31:08:98:f8:80:cf:70:b5:10:ba:e6:eb:
62:88:d4:95:03:13:07:27:5c:1a:13:24:2a:f4:70:f4:84:c6:
b2:37:4e:47:86:5c:1a:a1:cd:47:b2:d3:f3:df:cd:ac:62:f0:
3c:10:a3:70:85:a4:f6:48:a6:c6:fa:fb:fa:a9:e3:aa:d5:29:
cf:f7:e7:b4:f6:98:85:ec:b8:ea:10:fd:a4:e1:96:fb:de:6a:
30:81:2a:de:f4:79:dc:00:77:d0:4f:b3:02:ef:a3:15:95:5e:
f2:b4:90:b8:27:45:78:ad:dc:18:2d:e5:76:d9:18:c7:4c:c8:
f5:0b:1d:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:01:50 2025 by rpki-client