Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
File: O2BOwM_ulmxBmzptXwgrVjwYaL0.mft (raw, json)
Hash identifier: LH2XOCZiK9a1m1YfSTNTKd99X5eKsMSBDX8Clteh9xw=
Subject key identifier: E3:59:9A:E7:C4:28:CA:13:17:06:60:91:70:D8:8A:A1:0A:54:78:40
Authority key identifier: 3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
Certificate issuer: /CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Certificate serial: 019752D8C3962FA9ED4965F9FF91A159BBCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
Manifest number: 092E
Signing time: Mon 09 Jun 2025 04:00:26 +0000
Manifest this update: Mon 09 Jun 2025 04:00:26 +0000
Manifest next update: Tue 10 Jun 2025 04:00:26 +0000
Files and hashes: 1: O2BOwM_ulmxBmzptXwgrVjwYaL0.crl (hash: bMVcgrKdI55Gz4zOcUg19RnI35aphUK7g58W0N0aGog=)
2: Uekfh-0K2vRcuzrLz8uBXFaOroQ.roa (hash: QN8HhWjjJPearCTxHxonyEJ2yJIbW9sXZXyp6RMDaE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:d8:c3:96:2f:a9:ed:49:65:f9:ff:91:a1:59:bb:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b604ec0cfee966c419b3a6d5f082b563c1868bd
Validity
Not Before: Jun 9 04:00:26 2025 GMT
Not After : Jun 10 04:00:26 2025 GMT
Subject: CN=e3599ae7c428ca131706609170d88aa10a547840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:58:93:22:d0:36:44:29:34:56:8a:95:7d:0d:
4e:e6:13:9c:2b:c7:40:9a:d1:84:64:c3:5e:ad:e7:
c6:a4:27:f8:dd:db:24:35:2e:32:53:61:c5:6b:66:
a6:35:52:d0:d4:c4:a3:38:e7:94:f5:5f:51:e8:10:
16:d6:cc:78:0d:40:84:1d:ab:4a:91:e7:cf:bf:37:
e0:c4:07:cb:b9:19:73:bc:1c:57:3f:b3:af:d6:59:
6a:ad:d6:ac:bc:83:03:f5:ce:ae:c8:35:bf:54:80:
3c:62:68:c8:0b:3a:1e:e4:b9:b5:db:42:75:31:12:
d3:56:db:97:26:cc:7a:a6:60:1a:f3:40:50:22:85:
4a:a5:9a:d5:9a:d3:da:7a:db:1e:28:5b:05:46:00:
eb:8a:ac:32:87:27:a1:32:23:50:67:5b:6e:d8:ac:
25:62:b1:4a:c2:b4:c0:08:f5:ec:2e:76:a6:af:f0:
8d:f8:ea:0c:b8:81:70:08:05:5a:1d:aa:20:d6:74:
cf:14:d7:b3:5f:a4:38:d3:bb:09:4c:be:62:21:53:
ef:03:b1:b9:e1:fc:a2:d2:f8:bf:6a:0e:91:98:f3:
34:46:2b:cc:4a:2e:35:8d:6a:f0:44:56:d8:4a:98:
fc:5f:b8:23:44:db:12:5c:53:9a:b2:a6:3e:78:31:
ff:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:59:9A:E7:C4:28:CA:13:17:06:60:91:70:D8:8A:A1:0A:54:78:40
X509v3 Authority Key Identifier:
keyid:3B:60:4E:C0:CF:EE:96:6C:41:9B:3A:6D:5F:08:2B:56:3C:18:68:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2BOwM_ulmxBmzptXwgrVjwYaL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/3f5ea4-1868-4a0b-9218-87e9f21b418b/1/O2BOwM_ulmxBmzptXwgrVjwYaL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:79:0e:3f:7f:1a:4f:5a:3b:42:0d:ee:9b:fb:3e:db:7b:96:
a1:51:11:45:f4:e7:69:84:d0:15:23:9a:24:91:43:3a:c0:35:
73:b4:72:cc:ee:8a:80:9f:17:a6:ce:99:fd:78:f9:5f:68:89:
d4:1c:a9:c2:df:4c:ff:29:23:f2:40:36:59:52:90:be:c2:32:
47:d3:24:c1:0a:46:cc:2b:7f:95:b9:aa:34:c4:ab:9b:c7:6d:
79:1c:75:32:33:19:07:18:dd:df:86:da:a4:c0:f3:20:b0:3c:
19:64:d1:54:85:57:99:c3:ae:cc:9c:e6:cd:a9:3c:ae:57:d2:
44:6d:88:70:88:d4:4c:3c:ca:be:8f:7a:f9:e4:49:ac:9f:70:
9e:1a:76:7d:0e:50:5e:e2:8c:21:e2:37:6b:a0:2f:30:b3:7a:
ba:b8:1f:d0:52:6e:2e:ba:5b:dc:9c:8c:b1:50:f6:be:e3:ce:
4f:11:95:01:69:ee:a5:72:cc:9c:5c:a0:68:8a:f1:dd:f8:3b:
21:76:9f:bd:d5:35:8f:01:7f:09:4d:e6:52:cd:94:4a:31:1e:
64:f5:fd:47:ab:3a:b3:ab:94:29:ef:84:23:65:c7:de:c9:3b:
7f:35:36:29:6f:25:b8:62:68:c7:94:48:a5:c9:15:9d:94:81:
ba:3d:7a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 14:27:07 2025 by rpki-client