Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
File: OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json)
Hash identifier: 88ltTdnYMfNDLaG2iaJuugrDlxmtmq4LEi8UZQmyIZo=
Subject key identifier: 9C:B5:38:70:B0:04:1E:E7:05:54:74:05:1A:46:21:16:4E:1F:A7:E2
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial: 019748FA96CCB044D4EF7FD0114586AA5F68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
Manifest number: 1586
Signing time: Sat 07 Jun 2025 06:01:11 +0000
Manifest this update: Sat 07 Jun 2025 06:01:11 +0000
Manifest next update: Sun 08 Jun 2025 06:01:11 +0000
Files and hashes: 1: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: ahUS9p/Up1mla3vhTIEew+70XikC2t3cIGO+Np3j1e8=)
2: THEjTsFNcxDVZEOdq3GfXqXC4zc.roa (hash: x5CBmcScUC+Y/Wuw5WgYT+dNtpSqSEasQSVqzZJLzc4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:96:cc:b0:44:d4:ef:7f:d0:11:45:86:aa:5f:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Validity
Not Before: Jun 7 06:01:11 2025 GMT
Not After : Jun 8 06:01:11 2025 GMT
Subject: CN=9cb53870b0041ee7055474051a4621164e1fa7e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8e:c8:8e:a6:65:83:49:da:ea:e5:05:11:19:
4e:fc:2a:3a:7a:2d:0d:cd:f2:42:64:eb:b3:e0:1a:
e6:45:56:b2:d4:8e:03:e7:cc:68:37:87:d5:ea:81:
19:2d:e2:97:7e:95:06:a5:b0:10:ed:7f:8c:5f:44:
de:28:99:fa:b6:6e:8d:c4:72:f6:a6:be:1d:0c:de:
49:a8:50:5f:59:35:01:af:27:d5:29:b1:b2:eb:36:
80:c7:d8:da:ff:41:b6:51:17:ae:6e:c3:90:36:fd:
39:38:51:6e:88:30:00:86:01:8e:f8:8a:08:3e:c2:
83:a6:49:f0:79:da:68:be:de:0e:23:c8:62:1c:e2:
80:93:35:71:ac:6b:98:28:69:fe:e7:41:a2:17:70:
27:fa:3f:d6:1f:5b:50:cb:ed:d1:63:d1:68:80:88:
7f:89:d4:f1:74:a8:51:81:3c:69:0b:39:af:35:a8:
be:8b:43:da:d3:01:0b:80:12:ea:54:5f:af:c1:50:
0f:53:e0:50:8b:c6:eb:b4:d5:d4:1a:28:76:e6:32:
b5:bf:4e:dc:64:1e:12:3a:18:8f:eb:f4:24:55:27:
c0:6e:86:69:8b:84:65:17:31:85:06:71:92:d2:59:
4a:fb:7e:21:e6:2b:10:76:c1:1b:97:dd:f4:90:38:
c7:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:B5:38:70:B0:04:1E:E7:05:54:74:05:1A:46:21:16:4E:1F:A7:E2
X509v3 Authority Key Identifier:
keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:b8:20:c9:6f:a5:26:e0:06:7b:1e:1f:ea:42:d6:b6:ba:3e:
30:ec:3b:bd:9f:f8:bf:21:b2:2f:55:fe:37:5f:7c:d9:db:cf:
c7:7f:f0:6e:e1:dd:3f:07:35:f8:d1:68:f0:0d:ad:4a:34:3d:
a7:0b:a4:94:87:1c:e4:35:1a:d4:cb:eb:2f:e1:fe:01:03:ee:
4c:48:6e:90:b3:17:ae:17:05:31:83:72:e5:86:66:ee:73:37:
97:ec:34:e3:60:13:de:42:52:34:e3:b9:7f:25:99:cb:5f:7d:
18:d0:9e:7b:bf:e2:a5:f7:45:d8:44:10:9c:69:4f:f5:7e:8a:
5a:77:d5:7a:76:a8:d8:2e:2c:06:3d:d3:79:eb:0c:81:db:13:
63:a5:b8:ec:8c:56:0f:2f:7c:b8:f8:e1:3a:23:d3:4e:73:39:
20:9b:8e:7c:dd:45:ac:8b:0a:c0:69:73:e7:1c:38:be:8a:ac:
2c:c3:a0:d7:a5:69:8b:cc:a9:a3:df:31:50:aa:44:06:bf:72:
c9:39:64:40:ef:22:04:ca:b4:70:30:ab:97:a0:19:d4:b0:63:
0c:e3:bb:1b:e5:81:1f:b2:45:72:eb:a2:19:b8:ea:e3:6c:75:
d8:be:ed:89:39:7a:7f:d0:2e:75:61:1a:11:a0:01:89:dc:e9:
c4:c8:cb:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:28:29 2025 by rpki-client