Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
File: 0OZTSNwTyFSZx3dNFWYUwSARirU.mft (raw, json)
Hash identifier: Y36fu6WyhAUiv0P8KNewsJJ95ow/dzneljz3Od0ujpk=
Subject key identifier: 10:8F:F8:02:ED:90:81:46:22:66:B8:28:F0:A7:17:DF:3D:68:09:40
Authority key identifier: D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
Certificate issuer: /CN=d0e65348dc13c85499c7774d156614c120118ab5
Certificate serial: 0197469E5E3C8836BEC1024159B958C55411
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
Manifest number: 14D3
Signing time: Fri 06 Jun 2025 19:01:13 +0000
Manifest this update: Fri 06 Jun 2025 19:01:13 +0000
Manifest next update: Sat 07 Jun 2025 19:01:13 +0000
Files and hashes: 1: 0OZTSNwTyFSZx3dNFWYUwSARirU.crl (hash: nOppXu3+7cDoSgEXyUponu1OyITCpzFYTFEWxqyMDI4=)
2: I8hH4YeV3HM0yWrc52lfIOhYTt8.roa (hash: colmP8j9TQydvYGFc1+glmJgVJjDM5AxsV+6TerMW6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:5e:3c:88:36:be:c1:02:41:59:b9:58:c5:54:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e65348dc13c85499c7774d156614c120118ab5
Validity
Not Before: Jun 6 19:01:13 2025 GMT
Not After : Jun 7 19:01:13 2025 GMT
Subject: CN=108ff802ed9081462266b828f0a717df3d680940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c6:50:79:ba:c4:e1:17:38:ba:25:9c:2c:a3:
9e:51:90:53:aa:13:78:5e:9c:f3:a1:26:65:ce:7c:
c3:99:9b:3f:98:17:54:17:2b:d2:10:75:5a:e7:e7:
63:6f:6e:63:67:6c:02:a1:f3:47:b4:89:5c:f3:05:
6c:50:b2:f3:b3:ea:e4:a3:e9:c6:1a:b5:aa:b9:e8:
f0:f3:ed:9d:1a:f4:0f:e5:dc:01:19:5e:8a:cc:50:
50:2d:59:bf:ec:3f:f7:21:5c:63:f5:3b:34:d6:67:
93:d2:4b:26:0f:ea:2c:da:5a:69:38:e0:79:96:0c:
a1:5d:c2:a1:25:75:74:48:94:dc:f0:12:da:be:44:
79:cd:fb:04:f7:5a:0d:26:f6:7c:3b:4e:bd:7c:5e:
e1:2a:92:49:80:94:34:e2:5a:72:1a:8e:c8:b1:40:
a0:35:e2:9f:d6:a6:2c:f9:44:92:6c:63:24:ab:13:
90:ba:3e:6f:74:00:0c:a7:1c:0d:c5:ed:64:b0:b5:
71:72:cb:35:c8:e7:9c:df:5b:89:8e:2a:73:2b:32:
2e:d0:21:3e:27:fc:c6:f7:1e:f2:54:89:2a:a6:06:
3d:8e:91:0b:c2:09:0a:48:71:71:3e:01:5e:a3:25:
47:88:5d:ac:96:d0:e9:cf:cc:70:15:1d:9e:b3:f9:
51:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:8F:F8:02:ED:90:81:46:22:66:B8:28:F0:A7:17:DF:3D:68:09:40
X509v3 Authority Key Identifier:
keyid:D0:E6:53:48:DC:13:C8:54:99:C7:77:4D:15:66:14:C1:20:11:8A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OZTSNwTyFSZx3dNFWYUwSARirU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d7a4a7-07e2-48ad-ba56-0db0ec1e945c/1/0OZTSNwTyFSZx3dNFWYUwSARirU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:07:85:8d:4b:6d:20:41:c1:b1:d6:1d:56:98:3e:d4:ef:15:
ea:b7:4e:18:98:68:33:29:ff:47:ab:ab:0e:0c:f5:b9:91:bb:
31:15:70:5d:1e:59:8d:29:ec:52:e6:0e:07:aa:27:c7:f4:51:
90:55:94:31:b8:2b:ac:f8:5b:0f:99:ff:72:1e:64:db:d7:43:
e7:39:5a:16:a8:c0:68:ef:ce:7b:18:7e:15:02:5d:ec:75:c0:
59:2b:27:4a:ce:b0:44:91:df:30:96:89:aa:0b:c7:50:6f:f8:
97:e4:52:7b:e1:0a:dd:fc:2f:2d:47:42:dd:16:3d:b0:a7:00:
b8:04:fc:5a:de:96:0b:70:52:ee:c0:4d:59:78:6a:4b:d0:c9:
bf:00:bf:93:1f:86:fe:a6:6e:61:00:88:40:17:d2:13:6c:b6:
b7:c0:f8:cb:d6:6e:2a:30:e7:44:16:48:56:8c:67:de:4a:82:
ab:72:7f:d5:9e:54:a2:3d:49:5d:f5:33:27:65:18:5f:d8:b9:
2f:0e:ae:0b:ac:9b:52:e0:11:53:dc:4b:02:e2:3e:58:d7:38:
3a:99:88:25:a6:46:e0:c2:ca:8d:c4:cd:2f:a3:39:db:bd:db:
75:14:3a:e8:b1:6c:70:f6:3e:84:2a:e2:78:db:d3:5a:e6:21:
35:38:ff:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:53:29 2025 by rpki-client