Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
File: OJDnpFSaVx9otoja1PXO2OUpBos.mft (raw, json)
Hash identifier: ygCCJoSuXsDb6nVMUW+0puHvtnL1dI8zk0eGyl9Gsas=
Subject key identifier: 13:8E:1A:F0:AF:18:6D:4F:93:FA:18:BD:8E:EE:F4:9E:E8:A5:2E:59
Authority key identifier: 38:90:E7:A4:54:9A:57:1F:68:B6:88:DA:D4:F5:CE:D8:E5:29:06:8B
Certificate issuer: /CN=3890e7a4549a571f68b688dad4f5ced8e529068b
Certificate serial: 01974E586D4344B69C63116C324019E17971
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
Manifest number: 157F
Signing time: Sun 08 Jun 2025 07:01:47 +0000
Manifest this update: Sun 08 Jun 2025 07:01:47 +0000
Manifest next update: Mon 09 Jun 2025 07:01:47 +0000
Files and hashes: 1: OJDnpFSaVx9otoja1PXO2OUpBos.crl (hash: VXULvxP2Q1Fcg+ppil/96YKHvdB4PfOmMNKhYNAOKc0=)
2: XaY9bUiZ_CFGYXPkNboje_P8adc.roa (hash: b9+EkuxILTVWiZrAAhWN9xohV/5GiE1XVfEOgozpLGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:58:6d:43:44:b6:9c:63:11:6c:32:40:19:e1:79:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3890e7a4549a571f68b688dad4f5ced8e529068b
Validity
Not Before: Jun 8 07:01:47 2025 GMT
Not After : Jun 9 07:01:47 2025 GMT
Subject: CN=138e1af0af186d4f93fa18bd8eeef49ee8a52e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:10:d8:13:fe:0f:11:91:ed:94:db:f2:8c:a7:
5b:b0:3d:b6:c2:74:f3:fd:71:b1:e8:d3:99:32:92:
39:96:8b:55:87:e4:ec:08:94:c3:bd:76:50:eb:1e:
ac:0c:a4:a2:6d:4f:bd:28:ed:4b:da:d3:2e:a9:2c:
34:f2:0f:70:8d:33:9a:78:77:79:81:01:0b:fa:3c:
7a:15:2f:06:1d:a9:fc:a5:9f:4e:54:9c:ef:97:ca:
17:c1:2f:b4:92:18:20:de:76:6b:db:bf:e6:82:ee:
77:f4:21:2e:23:65:a4:f4:2d:5c:1e:a0:db:72:fc:
33:c6:34:3f:22:f2:59:88:a8:b4:73:a4:0c:dd:fd:
c3:b4:2d:82:ce:55:e3:50:e1:e3:5e:94:0d:23:13:
dd:e2:77:d0:99:c9:b1:47:42:fc:22:dd:1e:f3:53:
25:5e:de:20:40:6e:5f:95:d9:6b:70:1a:db:81:c5:
c8:21:0e:5b:3d:14:f6:ad:eb:19:b5:e6:8b:70:b0:
99:74:a4:02:bc:3a:ef:95:8e:e5:24:31:fe:65:2f:
67:6d:d1:6c:59:03:59:77:a1:30:b1:25:aa:3f:bb:
9b:28:6b:64:a9:b0:8e:4c:16:ce:c5:c3:10:f0:dd:
34:12:86:66:3d:3e:94:22:89:8b:e4:b2:e2:74:62:
2b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8E:1A:F0:AF:18:6D:4F:93:FA:18:BD:8E:EE:F4:9E:E8:A5:2E:59
X509v3 Authority Key Identifier:
keyid:38:90:E7:A4:54:9A:57:1F:68:B6:88:DA:D4:F5:CE:D8:E5:29:06:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OJDnpFSaVx9otoja1PXO2OUpBos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/25df4e-afc5-4c50-8de2-94812c7f449e/1/OJDnpFSaVx9otoja1PXO2OUpBos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:f8:4f:20:6c:7c:52:fa:e8:c8:d9:af:c7:fb:78:b5:ba:1f:
19:98:57:38:b7:91:40:1f:b7:16:b6:6b:df:56:ae:cf:05:eb:
2c:28:59:a3:b4:ee:c1:60:fa:d2:18:22:66:bd:bf:05:22:8f:
a5:01:bd:cc:e4:14:27:bf:c7:d1:21:46:56:8b:ea:8f:f6:51:
96:d3:30:19:9d:6a:b4:a5:ca:3e:a7:c9:24:cb:87:5c:42:32:
0b:3a:95:22:94:4b:78:a7:01:9e:5f:d6:a4:b3:77:9c:80:86:
a1:b0:2c:88:31:89:78:a0:60:a0:04:bf:50:98:5a:be:da:d5:
9b:2f:ca:1d:89:75:5a:91:64:a7:39:14:b8:d6:dd:9a:48:2e:
b9:11:21:28:f4:86:8b:44:d0:82:88:e5:47:4a:b0:36:c8:e4:
58:ae:36:80:d3:68:8a:99:74:2c:d8:4f:51:ed:62:45:d2:4b:
87:e6:1d:37:e8:46:89:17:9b:86:24:90:52:ee:98:ab:f3:a8:
97:a2:e6:24:e3:8b:9b:71:8a:84:6c:40:09:d9:4a:88:c8:9a:
d1:47:e9:01:99:ec:9a:91:44:cf:40:37:94:6d:40:ba:5c:bd:
56:3f:14:cd:c8:f8:c9:62:7a:0b:d9:46:3f:dd:61:8c:3e:04:
ca:6c:30:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:05:56 2025 by rpki-client