Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
File: OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft (raw, json)
Hash identifier: G0Ssd/Si+sssAt3hNID4TfWBc3JlB+5bHze8fDyqNRE=
Subject key identifier: 7C:B7:5D:1D:03:9F:4C:20:FB:32:F1:7B:7F:F3:4E:21:CE:7E:A5:57
Authority key identifier: 38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
Certificate issuer: /CN=3866f7385005d5be6101727388e1b3271f644de4
Certificate serial: 019746300467B1EBB27BA7133824A51323CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
Manifest number: 80
Signing time: Fri 06 Jun 2025 17:00:41 +0000
Manifest this update: Fri 06 Jun 2025 17:00:41 +0000
Manifest next update: Sat 07 Jun 2025 17:00:41 +0000
Files and hashes: 1: OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl (hash: CLuZWJW2g/Sara38OYZMyh5dhrVWiwy3F3ztKjLKKac=)
2: cvTvlJFXIrx4LNBKFN32BnQowu0.roa (hash: 2SQfqAvlePWceYDa/Gr4IqsSS7uQeMq3g8yyqM6DnK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:04:67:b1:eb:b2:7b:a7:13:38:24:a5:13:23:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3866f7385005d5be6101727388e1b3271f644de4
Validity
Not Before: Jun 6 17:00:41 2025 GMT
Not After : Jun 7 17:00:41 2025 GMT
Subject: CN=7cb75d1d039f4c20fb32f17b7ff34e21ce7ea557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:37:e4:f2:03:5a:38:f0:5c:f0:ed:2a:da:ed:
9a:15:8a:85:08:91:b2:ce:b1:22:51:49:f1:19:dc:
39:ea:a6:9e:c1:14:5d:e6:64:ec:78:55:73:28:6b:
95:61:bf:5c:06:34:14:92:ac:9b:08:12:19:b0:b0:
a4:13:58:ec:cd:a5:9c:87:e4:70:02:6e:87:72:3c:
e8:65:e1:c5:cb:cd:8e:13:e7:18:ab:d0:78:00:2d:
11:23:3a:54:c7:f6:14:4b:14:40:e9:40:6a:6b:85:
3c:e7:4e:3c:9e:13:9c:58:bb:f9:44:18:d4:d6:ab:
cc:b2:ee:d0:14:64:8a:5e:78:81:e2:b9:e5:b4:9c:
54:72:c9:54:79:32:00:d7:b8:51:cb:6e:8e:00:d1:
96:f7:e6:29:45:03:79:f3:3c:17:cd:cd:9e:46:2b:
c7:b9:40:3e:42:80:bd:3f:82:62:45:83:4c:fb:02:
a0:4f:d5:b6:4f:ee:8a:e2:f0:2a:61:36:ca:8b:5b:
25:5f:89:6d:b9:90:9a:02:09:3b:92:5d:3c:f4:c1:
98:61:4d:d1:a9:07:9c:5a:46:ee:4b:32:1d:21:d8:
c9:cc:ba:65:81:52:dd:2b:3d:04:26:02:65:27:7c:
7b:bc:fe:39:13:08:87:dd:49:10:1b:ff:19:cc:de:
18:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B7:5D:1D:03:9F:4C:20:FB:32:F1:7B:7F:F3:4E:21:CE:7E:A5:57
X509v3 Authority Key Identifier:
keyid:38:66:F7:38:50:05:D5:BE:61:01:72:73:88:E1:B3:27:1F:64:4D:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGb3OFAF1b5hAXJziOGzJx9kTeQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b06197-68d2-429e-ace5-e015bf3f33d7/1/OGb3OFAF1b5hAXJziOGzJx9kTeQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:f2:ea:fa:17:13:63:ef:08:e4:9d:4a:ac:9e:11:c8:a6:e3:
c0:d9:4c:95:1c:c4:9a:fb:54:4a:3a:a1:07:2c:22:ce:c0:e4:
d7:68:31:46:f2:8d:38:20:9b:9a:7e:42:47:4a:e6:07:96:c9:
15:35:20:32:fc:69:34:2a:50:96:45:d8:f2:20:7a:91:f3:2a:
a2:e9:13:64:6f:32:08:47:bf:b5:14:70:18:5f:e4:af:63:a8:
87:17:f9:9b:26:e4:fd:26:b7:be:42:32:61:cd:4b:d0:d4:5f:
ac:3b:34:2f:62:74:f9:e8:aa:9d:f3:c1:6c:56:99:71:9a:28:
d2:a0:c0:75:95:30:f9:46:a8:8b:63:8d:36:a5:14:64:04:8c:
74:cd:91:5c:76:1a:87:6d:1d:88:fe:da:62:1b:3e:4a:c3:ea:
5c:cb:b8:73:03:37:6c:63:05:14:15:bb:0e:63:9d:0d:03:6e:
78:e5:68:1a:ff:09:25:41:bd:a1:05:08:1a:33:f4:c8:3f:ca:
c7:63:f9:43:d1:22:01:00:c2:64:67:4c:31:c0:f2:53:f5:98:
2c:6b:f3:93:49:83:7c:0c:dc:05:37:2d:aa:9a:09:0a:39:2d:
e7:d8:4c:06:d5:cf:20:26:d8:7f:5e:89:1c:ee:92:af:31:a1:
e9:8b:8e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:14:55 2025 by rpki-client