Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
File: OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft (raw, json)
Hash identifier: Pdq3E1usr5yvHGgImi0Pikl4cS69qLr72rLYsFfqHFU=
Subject key identifier: B8:BC:50:82:BE:B6:AC:16:6B:89:92:3C:FE:F3:33:7A:50:1D:4E:68
Authority key identifier: 39:D4:3C:26:46:88:19:C0:7B:19:25:11:5F:E4:92:1F:84:20:3D:16
Certificate issuer: /CN=39d43c26468819c07b1925115fe4921f84203d16
Certificate serial: 01974A7B8675422A72E2CD4F572EF755CBE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 13:01:38 +0000
Manifest this update: Sat 07 Jun 2025 13:01:38 +0000
Manifest next update: Sun 08 Jun 2025 13:01:38 +0000
Files and hashes: 1: HJiUdFRcnCCA97tz7GIyzHp366Y.roa (hash: yKaY+45Vcb3qR17Dz+EuLvkK0krevHkZZEA1gt2KjQg=)
2: OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl (hash: dItD5w4dfOI0novXQPyucIOUFW9kniJlw9dSFSPnhak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:86:75:42:2a:72:e2:cd:4f:57:2e:f7:55:cb:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39d43c26468819c07b1925115fe4921f84203d16
Validity
Not Before: Jun 7 13:01:38 2025 GMT
Not After : Jun 8 13:01:38 2025 GMT
Subject: CN=b8bc5082beb6ac166b89923cfef3337a501d4e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f2:45:20:b9:ec:c3:aa:cb:a1:c9:46:26:d0:
79:e1:b2:c8:64:3b:70:d4:0c:c1:de:d7:ea:ac:4a:
fd:db:d9:fc:75:7e:d7:61:27:78:ae:4f:ae:46:24:
a3:6e:26:ae:c5:fe:d5:af:b5:a7:32:d4:e8:b7:f8:
00:36:06:7a:f6:2f:1a:c6:11:e1:ce:76:02:e6:1a:
f7:2c:4f:ec:c2:2d:32:98:99:93:08:9e:72:04:7e:
11:13:94:5e:e9:15:8f:28:72:4f:72:b4:b9:c0:42:
ae:a1:5e:d7:c1:4e:ec:fa:d0:3e:cf:b9:b3:ba:df:
20:19:fd:be:c5:58:a3:26:ea:89:0c:36:89:1a:99:
b5:2c:03:6f:e6:e6:5c:24:06:68:18:35:10:4a:67:
2d:ab:5d:9e:c2:45:81:fc:da:6f:57:4c:22:7b:e1:
17:0c:32:d1:6d:2e:84:7e:67:af:65:e3:86:96:da:
96:91:ba:0a:4d:de:a8:d0:04:3b:3e:5b:02:aa:6a:
46:f6:91:96:e0:ce:c3:58:9f:eb:f4:c8:b4:15:c1:
64:7e:c6:85:fe:71:51:80:ff:0d:06:43:c8:b3:61:
1c:05:18:83:d2:0d:ad:13:69:fd:e7:ba:46:ac:41:
4e:39:95:f5:8a:68:b4:cc:ac:82:0d:6c:b6:4a:e0:
9a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:BC:50:82:BE:B6:AC:16:6B:89:92:3C:FE:F3:33:7A:50:1D:4E:68
X509v3 Authority Key Identifier:
keyid:39:D4:3C:26:46:88:19:C0:7B:19:25:11:5F:E4:92:1F:84:20:3D:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OdQ8JkaIGcB7GSURX-SSH4QgPRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/affc01-a58f-4f70-a404-abf0ea07efaf/1/OdQ8JkaIGcB7GSURX-SSH4QgPRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:90:31:78:ea:82:2c:c4:5f:bf:72:a2:78:59:89:8a:fb:9c:
0a:db:30:7a:30:a8:38:f7:4c:f2:9e:36:29:e9:97:10:a7:05:
ac:3d:8a:59:fd:96:1c:9c:16:55:0d:a3:02:99:57:02:31:e9:
03:4f:55:fe:ee:31:83:71:fd:38:64:b2:c8:f1:74:fd:a8:27:
b6:71:a8:c6:32:2e:a9:6b:51:0a:59:cd:39:57:ca:95:43:c4:
73:87:71:69:01:1c:be:57:f3:fa:7e:c3:e5:46:58:3d:4f:15:
dc:bf:e4:55:a7:31:c2:38:8f:ce:75:6c:03:27:22:e7:97:72:
be:31:b5:7d:a5:16:2c:5b:12:aa:78:cb:2e:3e:d2:65:bb:84:
7a:8d:95:5d:79:8d:0f:cd:b9:42:f8:d9:4f:d8:4d:aa:d3:eb:
e7:8b:10:27:0c:f8:73:ce:63:01:27:92:ed:a8:8c:1c:0f:ed:
3a:1e:ac:2b:e2:a0:b4:b6:2b:ce:80:08:1b:a6:54:58:68:f6:
7b:21:8d:0e:4f:9a:3b:ba:fa:a3:6c:00:1a:54:58:f5:6e:24:
68:9b:fd:d1:75:a3:41:27:9b:00:70:8c:da:ab:f3:09:3d:35:
84:fd:1f:8e:28:37:19:57:d5:fb:62:e7:16:bc:bb:76:78:e6:
51:11:4e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:30:05 2025 by rpki-client