Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json)
Hash identifier: ojBnNPEmC7J6Wb0Ka+Sw4YCSZGkdtMgtyt2aSIKbKzE=
Subject key identifier: BE:0E:68:8B:D3:17:EC:24:55:F1:9D:62:B1:06:07:9E:BB:E5:E3:4F
Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Certificate serial: 0197470B754DDC04D037967B73DC88E2669E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
Manifest number: 0507
Signing time: Fri 06 Jun 2025 21:00:22 +0000
Manifest this update: Fri 06 Jun 2025 21:00:22 +0000
Manifest next update: Sat 07 Jun 2025 21:00:22 +0000
Files and hashes: 1: 4Knn2Ld5egn1camg9bhppId4Qlo.roa (hash: A8w1HB94c5M9H4eQOiI6lWSCTjnLMlfowVXvZM3dO6s=)
2: 5bwrov9Q4TKzJTBo9upY3XK0THU.roa (hash: TYWC6rWZltrX891RQlcpPW39DIbNZYI93ECjvUJPd18=)
3: S_FCvdfbH_ZK63a0stUMhU8oaw8.roa (hash: eXZV7SJ3ck6L3XgOeiX3iX+u0/ekcILrG+TMmUo1bYY=)
4: UXFnULRGQ9zt1V-SkMYjnZH0aX8.roa (hash: hvtnqOC4PJ7xkfHCQl1PdGQcbPT0pkEqxG9iEFd/GZI=)
5: gOWYAyjzxIKRFcUZmXLFPZZQLAE.roa (hash: uorrOksjaGfolUbfcHF+KBKk6xKRTaR+l4ir2v0cUaI=)
6: g_ElxkrC5OfOyHZzsFQIM1AuuFQ.roa (hash: s9+zwcgiFmScc9IvVxtLII47fLB+BQdFtBCLqfaDxwU=)
7: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: Xtdfjq2qk9urr2EGt3B+JdeHFVi+iYPPk7cFETyPhjg=)
8: zvXh2JmULYTuuJGfZa88vbAc7K8.roa (hash: XQvzCYYY2c/DWeWDz/HVl73sGmFpwXBX4BVFr0eF6dM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:75:4d:dc:04:d0:37:96:7b:73:dc:88:e2:66:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7
Validity
Not Before: Jun 6 21:00:22 2025 GMT
Not After : Jun 7 21:00:22 2025 GMT
Subject: CN=be0e688bd317ec2455f19d62b106079ebbe5e34f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:70:55:c2:ad:e2:3e:3a:34:dd:5f:bd:d6:e4:
15:9b:9c:fa:9e:6e:fd:c3:44:d6:35:8b:d6:00:1f:
24:38:d4:3b:22:f1:0a:43:31:db:d3:e7:40:73:2b:
48:b1:8e:79:8e:34:b3:88:91:9c:57:2d:cf:5c:00:
96:30:ab:04:f4:30:a8:fa:31:34:26:de:e5:9f:bd:
b1:87:83:f2:c4:f0:c2:98:ca:61:23:6b:ba:3c:05:
06:e6:74:56:f7:ec:48:71:aa:4d:6a:c0:37:4d:68:
37:2d:04:b0:5b:bb:70:5d:92:5e:d1:93:49:b8:ad:
fa:3b:3d:7a:f0:f3:05:db:92:a0:31:75:0a:01:07:
f7:d8:ba:67:5f:74:d5:4d:f7:d2:89:15:60:ad:9d:
dc:ec:26:f4:67:73:64:2f:3d:1a:a7:65:4b:50:2f:
90:69:b2:3a:c7:e5:be:c1:75:0c:9c:1e:fc:fd:3d:
ef:9f:09:6e:57:5d:54:18:d6:16:1f:5b:b6:26:38:
65:c5:ce:4c:4a:6b:d9:fe:42:8f:30:34:77:3f:5c:
0b:80:85:9d:c0:c0:78:fb:7b:84:27:a3:ab:cf:06:
39:ac:b5:53:e3:1f:d6:3d:dd:6c:81:83:c4:49:c7:
eb:9d:08:60:ef:e0:61:22:62:72:58:3d:a5:1e:92:
10:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:0E:68:8B:D3:17:EC:24:55:F1:9D:62:B1:06:07:9E:BB:E5:E3:4F
X509v3 Authority Key Identifier:
keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:81:d2:6b:7f:b7:9a:1c:8b:2a:e1:4c:3f:72:b0:5b:e8:35:
23:72:83:85:17:e9:8d:7b:fe:41:66:84:a5:17:b4:80:91:9e:
d5:a6:ec:00:b9:c4:e0:d5:a7:b8:b0:93:d1:ae:32:ec:97:33:
cb:d1:77:64:b7:16:2c:e2:7b:d4:ce:37:80:14:79:02:e4:f2:
99:3d:6a:0b:f7:fb:91:d8:ff:4b:06:2c:89:2d:55:bf:69:a8:
54:80:22:5e:96:dd:cc:ac:4c:fc:11:e8:e5:28:c0:3e:ab:f0:
9d:4d:e2:fb:6c:a4:45:32:f9:aa:6f:91:e3:2e:ec:aa:34:f3:
e8:1d:92:bc:db:3c:36:d7:c1:90:2c:bd:2a:01:3b:42:0b:f4:
0a:42:e5:30:df:7b:7c:e0:2d:49:bf:e9:63:af:c0:31:e3:cb:
ef:29:06:c9:48:02:af:06:3f:98:ea:d7:08:26:2e:dd:fb:72:
f4:12:a7:50:8e:94:3f:4c:09:78:9e:85:db:bf:1e:be:f8:41:
a4:85:2c:2a:c5:3d:c9:99:fc:7b:b6:ca:fa:c1:b4:bd:09:e6:
a9:25:dd:b2:78:0c:a4:c0:3d:bd:7d:32:37:81:b8:64:b2:ba:
60:87:4c:10:81:19:d8:9d:88:1a:77:da:a3:d5:7d:62:02:90:
b3:90:30:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:31:56 2025 by rpki-client