Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
File: OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json)
Hash identifier: hNvkk3AzodewmxWhs9cacvT2jGPkktpUgbVHTxhCcLs=
Subject key identifier: BF:27:90:BC:AD:CE:48:F6:74:B4:C3:25:E9:C0:EB:88:2B:16:DF:36
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial: 019749314E9AC17C6763EEAC21940662888C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
Manifest number: 1510
Signing time: Sat 07 Jun 2025 07:00:57 +0000
Manifest this update: Sat 07 Jun 2025 07:00:57 +0000
Manifest next update: Sun 08 Jun 2025 07:00:57 +0000
Files and hashes: 1: C_zGKKe9EmjFWVKBb9utgZ7LvBo.roa (hash: DBtQlC6QblgPpVW+sAN+YH267kvW3kiRyXFujtkor/8=)
2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: vFKhCde/rnQVqDR70rim+nP0BPi1VCW61mmtHKurMoQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:4e:9a:c1:7c:67:63:ee:ac:21:94:06:62:88:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Validity
Not Before: Jun 7 07:00:57 2025 GMT
Not After : Jun 8 07:00:57 2025 GMT
Subject: CN=bf2790bcadce48f674b4c325e9c0eb882b16df36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ac:c5:e0:23:fb:bc:5f:ad:27:7d:4e:0d:40:
1f:11:3f:b4:5e:2e:1f:46:3d:e0:7e:31:da:b2:89:
be:20:4e:7b:37:b8:72:03:46:66:6d:76:75:aa:dd:
79:e6:0a:bd:ef:b9:19:b5:42:36:e7:1e:80:49:82:
ae:ac:fb:53:dd:4f:95:6b:e1:76:e9:b7:8c:02:ae:
ab:ee:93:c3:f0:a1:b8:c9:55:82:61:b6:3a:e5:83:
52:48:7f:5e:fc:d1:47:db:1c:10:82:19:ca:b1:92:
c7:76:0f:ae:a5:d7:a2:8d:61:4d:e0:c3:9b:ad:51:
05:74:76:a1:26:13:ff:8d:27:d6:92:00:02:95:bf:
ee:92:31:4e:88:09:4d:96:44:04:6d:a8:bd:5b:3a:
59:89:24:de:5e:68:fa:53:03:57:49:90:09:97:ba:
ac:52:37:39:5b:42:44:74:e0:f8:ad:60:13:43:5f:
b0:53:c1:95:be:3d:48:23:c5:b7:31:f4:9d:f9:30:
a3:95:ff:47:13:79:8d:82:1b:86:a5:fa:4b:4e:f1:
62:6b:9b:63:66:46:3c:11:7c:ce:6f:e7:e1:6b:dc:
0c:99:1d:37:13:3c:b5:97:94:50:bd:60:27:90:3e:
ea:38:38:16:d7:8a:2e:05:c4:27:0e:9e:b1:a2:b0:
0f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:27:90:BC:AD:CE:48:F6:74:B4:C3:25:E9:C0:EB:88:2B:16:DF:36
X509v3 Authority Key Identifier:
keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:b8:9a:60:f2:d0:82:0a:66:2b:92:b2:90:8d:76:47:eb:bd:
43:82:bb:21:91:84:57:36:8e:65:1c:0b:0f:2f:c3:27:63:0e:
90:d6:e6:1e:e9:86:d1:0d:8b:f3:91:67:2a:35:3e:64:5d:e0:
fe:37:95:b8:83:4c:90:81:45:63:dd:a7:32:f0:13:7d:0a:70:
de:ef:78:87:13:e7:80:b7:66:a5:c6:ac:89:70:58:c6:fe:d6:
8b:f3:18:7b:f1:36:07:71:97:8c:95:94:9a:34:88:54:ac:e5:
d5:61:bb:a3:e3:7f:5b:17:0d:68:83:09:f5:08:2e:90:be:5f:
49:e1:c0:e6:8f:81:ed:c7:16:a1:46:89:a7:f6:4a:14:5e:a5:
89:9b:7b:3a:76:77:1a:99:e7:24:51:d0:55:51:9c:40:a6:6a:
49:c9:64:c1:93:01:b0:4e:3b:0e:8b:31:60:14:99:a7:5e:f7:
b4:f2:ca:6b:32:06:e7:68:b4:6f:54:91:ba:33:22:93:7c:32:
56:8e:52:dc:e0:a1:0a:5a:c7:fe:98:23:ae:e9:9f:15:e1:79:
e4:01:d8:a8:53:5e:d2:c7:ee:60:bf:2f:dd:ee:78:ef:04:95:
4f:b6:0c:8b:04:f3:ab:e0:20:32:50:91:02:8f:31:52:06:93:
94:af:40:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:42:32 2025 by rpki-client