Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
File: O9_XYE36DriuIOkPzxMDk7ioVko.mft (raw, json)
Hash identifier: I+eqXe+01m7pXko0EDcBCqXIZFs9/AB8b4y2R0mkMYs=
Subject key identifier: A4:18:AA:E2:53:AA:48:F5:66:E3:DA:08:28:A2:0A:1B:66:F2:9B:BA
Authority key identifier: 3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
Certificate issuer: /CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Certificate serial: 01974C322EB718D176BB4FB1FB02CDEFDAAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 21:00:46 +0000
Manifest this update: Sat 07 Jun 2025 21:00:46 +0000
Manifest next update: Sun 08 Jun 2025 21:00:46 +0000
Files and hashes: 1: O9_XYE36DriuIOkPzxMDk7ioVko.crl (hash: H6EKT9jZO5C2wGzQb1W9WBjgta+1W+p39yqPOeNHVBY=)
2: m0kgiTT_WYsp23pJuD7SLX4KQwM.roa (hash: VIdUf2MaaJNNuBUU6XlHsX2gourJRTd5TApzwygVz+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:2e:b7:18:d1:76:bb:4f:b1:fb:02:cd:ef:da:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Validity
Not Before: Jun 7 21:00:46 2025 GMT
Not After : Jun 8 21:00:46 2025 GMT
Subject: CN=a418aae253aa48f566e3da0828a20a1b66f29bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e1:2c:85:cf:36:11:d7:57:5c:0a:02:ae:a2:
28:19:93:ce:73:72:51:ad:dc:e0:89:05:7b:de:c8:
2e:93:a6:f1:dc:10:9d:1f:88:88:00:f9:8a:52:aa:
f3:53:ab:b9:09:bc:8c:cf:28:e6:ca:76:25:67:ba:
a6:38:6a:85:84:f3:32:0a:f2:aa:e9:59:41:e5:04:
d2:ad:05:f2:c7:3c:88:ed:e8:bc:34:01:26:98:0f:
e9:36:f1:92:4f:b4:1f:5f:61:e5:b5:ba:7b:a2:77:
a6:4f:80:f7:2b:0e:64:af:75:e7:01:50:3c:7e:aa:
04:7b:72:c0:ad:d4:64:ed:ed:f6:43:fb:ea:96:71:
b2:d3:60:6d:0d:7c:3e:28:42:f1:78:01:f8:07:9f:
95:d9:d7:a6:dd:89:0c:bb:27:33:7f:cb:f0:91:c9:
72:2d:e6:a7:83:76:b3:87:c7:78:c7:f4:cf:37:18:
5e:2f:30:9b:3b:9c:a0:85:ca:ed:11:c2:0a:b7:8e:
a4:c5:b9:e1:ed:99:e7:12:07:8e:c2:92:60:9e:f4:
43:4b:72:c2:d8:e2:06:00:2c:4c:c4:46:d0:a9:72:
9f:8b:a4:80:6a:cd:f6:7d:7f:0c:87:28:56:06:12:
14:0b:37:03:3a:09:ce:69:d8:99:a9:f6:2f:e8:0b:
ac:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:18:AA:E2:53:AA:48:F5:66:E3:DA:08:28:A2:0A:1B:66:F2:9B:BA
X509v3 Authority Key Identifier:
keyid:3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:ba:53:c0:e0:a9:8b:29:8a:0c:91:46:a2:bc:4c:47:94:b2:
8e:e0:54:e3:06:57:58:f1:4b:29:9d:87:54:95:f7:a0:c6:e4:
d4:43:5a:a3:a4:b3:aa:1d:88:44:bf:32:45:d9:aa:5e:71:2b:
72:33:1c:d4:54:0c:64:4d:a1:ed:e4:73:c0:e3:68:40:c0:d2:
04:a7:4e:07:21:2e:25:fd:18:80:68:eb:aa:a2:fc:a4:6c:92:
aa:a3:c0:08:3f:91:57:20:69:ee:56:c8:9f:f4:f3:7d:c0:c0:
1c:c7:6a:6b:02:6c:43:ce:a7:b0:f9:99:28:52:eb:d6:b7:b9:
9b:33:e4:91:9d:5a:2c:94:8c:ee:0b:0a:98:6b:fa:e5:2f:5d:
7a:f2:7c:c8:52:79:9f:3c:6a:b8:ac:76:b3:cc:fc:0a:7c:82:
93:5d:a9:cf:8d:65:2c:ce:65:1c:55:3e:47:fb:81:f9:77:50:
b5:6f:21:c9:20:7f:74:ba:24:ca:64:96:d1:8f:34:59:79:02:
27:0d:be:01:e7:4f:f3:3d:dd:a6:0d:6f:0c:e6:ec:a6:a8:9b:
b0:a3:74:d2:22:1e:56:b2:dd:ba:db:5c:c0:58:97:49:9d:6c:
e4:ec:c2:30:18:32:a4:27:ce:76:d7:d5:11:4e:0f:fa:7c:02:
88:ef:1d:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:33:40 2025 by rpki-client