Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft
File: OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft (raw, json)
Hash identifier: re7wc4PN2J3SQPOOT2wQFj2NW/eQdnKbNN57RNRemO4=
Subject key identifier: 4B:75:B5:D1:21:73:C0:FB:3E:4D:0C:0D:92:6A:21:5A:9C:83:B3:81
Authority key identifier: 38:25:28:AB:1C:D1:B6:DC:73:C0:B0:9B:67:D3:E7:E3:58:4F:36:3D
Certificate issuer: /CN=382528ab1cd1b6dc73c0b09b67d3e7e3584f363d
Certificate serial: 01974C9FDDA7EFA42D83180A7A4AE0E299B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCUoqxzRttxzwLCbZ9Pn41hPNj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 23:00:34 +0000
Manifest this update: Sat 07 Jun 2025 23:00:34 +0000
Manifest next update: Sun 08 Jun 2025 23:00:34 +0000
Files and hashes: 1: OCUoqxzRttxzwLCbZ9Pn41hPNj0.crl (hash: n0ahckUUweQ5/FWpWuNCJOr5vh9MBIYxDtdxymsWsrY=)
2: Q4SQTvELqYETYT6vjRCA2iGLGgc.roa (hash: tzC8sef+XSgDXhot9EyLUIit2vwD1a0sRJU8Ks3S1wY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCUoqxzRttxzwLCbZ9Pn41hPNj0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:9f:dd:a7:ef:a4:2d:83:18:0a:7a:4a:e0:e2:99:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382528ab1cd1b6dc73c0b09b67d3e7e3584f363d
Validity
Not Before: Jun 7 23:00:34 2025 GMT
Not After : Jun 8 23:00:34 2025 GMT
Subject: CN=4b75b5d12173c0fb3e4d0c0d926a215a9c83b381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4e:64:42:03:44:db:b2:1c:2d:ab:d5:78:b4:
2e:5f:12:df:d4:ea:68:ae:92:20:7c:41:3a:92:30:
b3:e3:cb:59:49:f0:ea:d7:94:6f:08:96:dd:5d:83:
c9:d9:36:27:3d:87:15:04:3e:3c:7e:7d:1d:93:3e:
f9:b9:fb:d9:51:f2:c7:0a:0e:33:ad:35:a8:e8:74:
e3:2e:79:42:86:5e:f6:1e:3d:10:ea:52:2f:40:2c:
a5:4b:a6:09:fe:e8:cb:bd:85:96:ef:d9:81:f9:23:
86:fa:d9:b4:86:72:0f:eb:c5:3f:fb:c0:79:82:3d:
2b:67:df:81:32:49:a9:97:9e:96:59:b2:b5:32:a2:
54:00:4b:13:5e:1f:f6:0d:07:de:35:f5:ff:e8:a3:
42:ec:70:17:bb:a7:b8:b1:b5:91:a8:ba:9d:01:8d:
c7:89:03:c3:b2:d2:3e:40:77:f1:f7:f2:99:ac:ab:
d9:60:2d:d2:c8:93:a8:42:d5:bc:d7:c9:f5:a9:e0:
94:15:e4:c3:f8:0f:51:a9:7f:43:dc:87:bc:dd:d6:
3b:15:4a:d0:b8:03:35:1c:a3:ab:95:f2:6e:57:17:
f5:8e:9f:fb:1e:ee:69:40:75:2c:d5:fb:1c:84:17:
b0:a6:7a:f5:f1:52:e0:26:72:96:4d:c8:32:6a:23:
c6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:75:B5:D1:21:73:C0:FB:3E:4D:0C:0D:92:6A:21:5A:9C:83:B3:81
X509v3 Authority Key Identifier:
keyid:38:25:28:AB:1C:D1:B6:DC:73:C0:B0:9B:67:D3:E7:E3:58:4F:36:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCUoqxzRttxzwLCbZ9Pn41hPNj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/00816a-eedf-4190-bc33-3a02a242f444/1/OCUoqxzRttxzwLCbZ9Pn41hPNj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:0a:cf:a8:96:f1:d8:73:b0:25:0d:cd:e5:c5:a8:5a:52:3a:
bc:54:a4:e9:7b:38:a4:bd:ff:b0:5f:54:c7:f0:d3:a2:e5:9f:
8a:9e:d0:2b:63:eb:49:71:cd:72:24:83:2e:6e:ff:29:0f:8f:
9b:94:29:56:8b:5a:c6:ea:9a:9c:58:2f:9f:b6:e9:be:fa:e0:
fa:55:46:bd:9d:c5:3a:e9:a4:51:69:43:b9:db:08:91:e6:d0:
7a:78:65:e5:8c:fc:b8:b1:5b:92:b2:20:31:70:f6:1e:84:15:
c0:a5:75:1c:a7:b9:f9:21:12:c3:a1:be:9a:ae:a1:02:33:e2:
f5:ca:12:92:c9:24:bb:70:3d:e5:1d:1d:4c:66:2b:c1:2e:0e:
76:03:1b:20:47:b6:07:b8:03:14:df:0d:20:bb:30:27:16:51:
9c:13:5f:b4:18:36:8f:d9:b3:aa:1c:55:c8:18:4c:a8:55:10:
77:d6:87:de:aa:ef:9e:23:e2:63:a8:17:76:0b:a4:f8:f4:2f:
2e:96:79:01:01:2a:fd:ae:c7:2a:3f:fe:cd:60:9a:e8:13:08:
2b:40:53:9a:39:ca:af:55:a6:4c:8f:23:ec:9a:7e:4c:71:df:
37:84:f2:a8:8f:64:e1:90:d6:7f:4b:7e:af:a7:8b:0b:a5:f7:
12:58:1c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:41:59 2025 by rpki-client