Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
File: O3vGRy6lJXXOlb3KeCbppR-qzkk.mft (raw, json)
Hash identifier: 6PREWoHv48PGQfrFA//F+UdjdXslxXpSjezBS1d4+IY=
Subject key identifier: CD:A3:2D:7B:5F:1C:CF:D3:38:29:3E:D2:BF:82:B0:A3:8B:56:D6:8D
Authority key identifier: 3B:7B:C6:47:2E:A5:25:75:CE:95:BD:CA:78:26:E9:A5:1F:AA:CE:49
Certificate issuer: /CN=3b7bc6472ea52575ce95bdca7826e9a51faace49
Certificate serial: 01974FA0CD838EF1A3C3394A3048344FACAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
Manifest number: 70
Signing time: Sun 08 Jun 2025 13:00:27 +0000
Manifest this update: Sun 08 Jun 2025 13:00:27 +0000
Manifest next update: Mon 09 Jun 2025 13:00:27 +0000
Files and hashes: 1: 9kI0xW5MbOx76ceEc1r6lL1zLqw.roa (hash: EBfX8OboRteLfAyp7yvYOpYG1nnQo1fO08vfwQ0PAY0=)
2: O3vGRy6lJXXOlb3KeCbppR-qzkk.crl (hash: BX+NwiMU2FrQexNMEW3ivwj7L5QgqkLMZqaMxXq4tXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:a0:cd:83:8e:f1:a3:c3:39:4a:30:48:34:4f:ac:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7bc6472ea52575ce95bdca7826e9a51faace49
Validity
Not Before: Jun 8 13:00:27 2025 GMT
Not After : Jun 9 13:00:27 2025 GMT
Subject: CN=cda32d7b5f1ccfd338293ed2bf82b0a38b56d68d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:eb:e0:97:74:48:e6:02:9f:c2:61:3d:15:0f:
17:f9:79:2f:7a:ea:e0:d9:dc:81:ac:8c:cf:f9:ba:
3a:ca:c3:2f:71:98:0d:47:b0:e8:ca:2a:ae:3b:2b:
19:71:5b:9a:0d:9c:6a:ad:e8:4c:df:c7:49:32:04:
e9:54:4c:3e:7b:bd:33:d4:60:c5:13:81:53:d3:08:
3f:fd:a5:cf:21:0e:50:34:b8:0f:e3:9b:45:bd:4a:
38:03:97:cb:9a:68:05:36:04:94:5a:53:97:02:37:
bb:78:1a:34:a5:ce:0f:e4:76:c4:f4:9c:fe:13:7c:
ba:16:53:42:ba:eb:e0:49:4e:e4:1d:c3:c1:b3:c0:
f5:48:3b:ba:a8:31:cb:98:f0:32:fa:23:9d:33:b9:
34:82:0d:fa:fd:8d:4a:b6:4d:03:e2:b2:1f:4a:9c:
5c:5e:66:4f:2e:c9:f9:d0:7e:a7:5c:43:01:c3:59:
c6:65:02:0f:c2:15:7f:6d:2f:2a:ec:3c:5a:1e:fc:
4f:ab:ac:6b:94:cf:a0:65:51:f7:d8:ae:68:16:e8:
4e:3e:05:55:c5:40:18:a2:d1:48:21:c2:a1:b2:b6:
ce:88:43:8d:d9:28:8c:b5:7f:8d:1c:f9:3d:3f:75:
db:68:69:00:11:85:fe:da:44:36:72:01:17:a1:9a:
fe:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:A3:2D:7B:5F:1C:CF:D3:38:29:3E:D2:BF:82:B0:A3:8B:56:D6:8D
X509v3 Authority Key Identifier:
keyid:3B:7B:C6:47:2E:A5:25:75:CE:95:BD:CA:78:26:E9:A5:1F:AA:CE:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O3vGRy6lJXXOlb3KeCbppR-qzkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/493d29-47a9-49eb-8080-9226b3ac4e9d/1/O3vGRy6lJXXOlb3KeCbppR-qzkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:83:28:a3:28:af:15:ea:44:e8:9a:21:20:0b:5a:d6:6b:64:
32:af:6f:7c:1f:38:3a:09:a5:db:74:47:70:9c:e3:71:2d:72:
e1:e2:8f:8a:2a:ac:c3:67:1f:ff:f3:d3:7a:87:cc:3b:ef:97:
77:80:7f:0e:68:15:cb:de:39:0e:3d:55:be:16:58:44:98:4f:
aa:db:f0:07:95:b8:70:af:77:0a:51:ca:8c:12:d9:6e:d8:1d:
83:55:cf:e5:2e:f0:ae:42:40:0a:7e:70:e8:57:b8:ca:98:7e:
c3:c1:f9:d1:5a:18:cd:53:58:44:e3:a2:28:5f:92:8d:9a:6a:
34:4e:cc:56:63:a8:2a:cd:35:f4:18:c6:d4:5a:ab:fc:d2:99:
90:12:4f:e2:c9:4a:46:9f:c2:44:1a:ed:0c:f3:b4:3f:ae:05:
45:f9:f7:5e:91:1c:0b:0b:59:ee:7e:54:3c:65:3f:28:72:d4:
9e:82:d7:c0:42:00:02:5b:69:e9:98:09:cf:ec:0e:69:11:52:
a9:33:58:e0:ae:c0:da:50:cf:20:bf:dd:80:c4:e8:76:34:84:
d5:47:00:c3:27:20:96:b8:b7:a0:df:60:f8:cc:f8:a6:b4:90:
63:2a:55:ac:b5:e4:85:b3:90:8e:46:9f:75:d1:35:80:35:0b:
8b:b7:b2:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 17:16:27 2025 by rpki-client