Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
File: OXqyKGxnhx2rRXpygyl_yMaIpK8.mft (raw, json)
Hash identifier: Ybi6PgoW1Wg0sL3pqju38vXc9smRvM4aQuiN50pWnlE=
Subject key identifier: C5:9C:C3:E3:C5:72:EB:98:03:FE:7E:CD:7D:45:D6:C1:AD:32:C2:78
Authority key identifier: 39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
Certificate issuer: /CN=397ab2286c67871dab457a7283297fc8c688a4af
Certificate serial: 019752D8CBE59AB889511AEA848DDE84F3D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
Manifest number: 157E
Signing time: Mon 09 Jun 2025 04:00:29 +0000
Manifest this update: Mon 09 Jun 2025 04:00:29 +0000
Manifest next update: Tue 10 Jun 2025 04:00:29 +0000
Files and hashes: 1: OXqyKGxnhx2rRXpygyl_yMaIpK8.crl (hash: /Loy+4AsXtf1l7zd/5+7yTcBDGfPi1yAb/ta/3EXK9c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:d8:cb:e5:9a:b8:89:51:1a:ea:84:8d:de:84:f3:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397ab2286c67871dab457a7283297fc8c688a4af
Validity
Not Before: Jun 9 04:00:29 2025 GMT
Not After : Jun 10 04:00:29 2025 GMT
Subject: CN=c59cc3e3c572eb9803fe7ecd7d45d6c1ad32c278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:09:d5:a7:a9:44:b2:81:eb:98:8d:4d:be:0b:
0a:12:ab:a7:93:7d:a4:0a:b4:d9:9f:e3:21:64:2f:
67:6f:6c:19:1b:07:0d:ac:c1:44:38:9a:90:22:89:
a4:0f:6f:4e:11:7c:a5:b3:a1:38:c7:c9:04:0c:b0:
af:e7:58:6f:8f:99:d1:97:17:6e:b2:33:5c:5e:fd:
89:22:cd:82:84:59:55:e5:c7:3b:5f:b9:42:6b:22:
a1:43:ff:1a:a6:20:f3:fd:d4:2f:82:03:f4:d8:3d:
84:91:93:d3:3c:97:fc:19:1e:7d:11:ea:f0:6f:e6:
b9:45:30:f2:8c:c3:7e:13:df:aa:0f:84:19:19:19:
e7:ed:6d:2f:6c:02:6a:48:5d:53:95:b4:44:99:34:
a7:98:ec:d4:5d:f7:3c:57:14:24:5a:8e:2a:08:c4:
d9:5e:6f:03:84:1d:7c:5d:77:bc:6d:71:5f:89:b6:
76:4a:34:87:f8:c8:b1:48:7b:ab:2b:39:05:8f:ca:
8f:2e:c6:0c:19:79:d8:1c:33:e1:ec:d8:0a:04:d4:
cf:3b:7a:dd:fa:cb:8c:cc:fa:ec:6e:85:8a:ce:b7:
47:ff:59:39:d7:01:33:2b:b6:25:c4:8b:29:43:c7:
61:85:66:78:6a:e0:01:dd:c4:57:16:ce:55:b6:84:
fb:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:9C:C3:E3:C5:72:EB:98:03:FE:7E:CD:7D:45:D6:C1:AD:32:C2:78
X509v3 Authority Key Identifier:
keyid:39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:6d:b2:c2:4b:50:81:b9:9d:b8:c8:84:b0:65:29:62:ec:6c:
51:52:dc:90:95:5a:76:6d:d8:66:e0:b0:0c:e2:7b:d4:6d:33:
6e:f1:77:73:c0:7b:e1:74:93:ec:dd:52:8e:0a:bd:27:0a:cf:
15:60:01:03:31:c8:8d:c1:b5:15:a2:fd:5f:1e:d7:0a:bf:92:
ce:99:03:4e:c4:31:b4:3d:46:b8:ab:3b:07:1f:95:f8:5f:ca:
8a:81:00:ae:fa:93:e8:b8:77:2c:05:93:ed:59:6f:34:37:d0:
52:85:07:5d:44:9c:e3:5e:97:8f:10:b7:97:dc:31:a8:df:2f:
93:24:f6:d7:0b:c6:83:98:e0:c2:9b:fe:fb:9f:ba:d4:7a:fd:
b5:51:e2:90:62:75:a3:68:e3:cb:94:96:36:09:50:6d:58:a1:
3d:cd:97:7e:a9:45:a8:cd:9c:e3:4a:17:46:67:8f:28:ce:20:
f0:06:48:dc:5d:1f:c3:1c:1b:d3:4b:d9:07:f7:b8:4b:dc:95:
6d:26:ae:c1:14:b6:1b:38:b2:c8:86:65:99:bc:f8:6d:0b:2f:
ac:42:e7:51:57:2a:98:60:3d:f6:0d:af:3c:8d:f4:fa:98:e6:
0b:eb:d9:b8:16:46:84:28:47:4c:1e:c3:1b:5d:11:cd:28:e3:
e0:41:12:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 11:57:12 2025 by rpki-client