Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
File: OspQhYoYVv-gLpE1bxQjbnw4uFo.mft (raw, json)
Hash identifier: HXFwXCMxjhJebUsVUakmf3R+Ba8LvKg5ct59q98Iiok=
Subject key identifier: C5:AC:87:2D:6B:A8:C8:F6:96:AC:1D:E1:EF:AA:AF:B9:C6:40:64:03
Authority key identifier: 3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
Certificate issuer: /CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Certificate serial: 01975310324BEA86018D393F3C08D2DF89A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
Manifest number: 1587
Signing time: Mon 09 Jun 2025 05:00:59 +0000
Manifest this update: Mon 09 Jun 2025 05:00:59 +0000
Manifest next update: Tue 10 Jun 2025 05:00:59 +0000
Files and hashes: 1: 0i27NjvnFtlwbFJL8brWgH_dw8U.roa (hash: YML80PmXT345DJiCwX4apNsJ7UtnB8nEMX5Dpv2Ctsw=)
2: 1kY2nGT8PP1V1pxbzH8gDFZHRGw.roa (hash: pbZtP+N8idLMQTinI/aHUKYzG+cdVac5nacfjqhyPdo=)
3: OfxxmNtzJcdCBkWeVovM4im8aiY.roa (hash: WRZK3jUR3eiSqkPuuJOy87KYkFs/X19TJQecAHmPTCA=)
4: OspQhYoYVv-gLpE1bxQjbnw4uFo.crl (hash: BAlajPsNT5w3nX4oP49/xSmxBzJClKL35oti8RVWccs=)
5: ct0UdU9tbjVu5vnRCDtuTGBSo4c.roa (hash: 2wetSh/WjuBgx0H+sbj7Aow3E9vqoUt+MG+BDwetShE=)
6: pZwUUb6x4Lez1tW_jvxd_X_PyY8.roa (hash: weF+c7Ta8anbMKz4f67ACPq7m1FTdbmyMymH/ZhAy3g=)
7: vFVZ9av3BvQ-ws_7EVciDYDt6Rw.roa (hash: 1s2dWFQ6yIEmp8FiTPqLYuMVpLoqmko/eqoHIt276/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:10:32:4b:ea:86:01:8d:39:3f:3c:08:d2:df:89:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Validity
Not Before: Jun 9 05:00:59 2025 GMT
Not After : Jun 10 05:00:59 2025 GMT
Subject: CN=c5ac872d6ba8c8f696ac1de1efaaafb9c6406403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ab:8d:02:2a:fa:2e:7b:e5:9b:8e:eb:2c:7c:
5f:e4:5d:04:9d:12:9f:85:9e:16:91:21:87:d6:cb:
f6:e1:83:06:e7:0c:34:48:cd:7b:13:7d:60:96:3e:
b8:08:ca:50:99:7b:61:a0:65:1e:75:0f:ba:4d:24:
3f:87:28:45:72:d9:7d:b0:44:75:8d:35:eb:48:51:
44:20:cf:e2:bc:26:a8:b1:3a:2b:87:72:58:73:61:
0a:3e:46:05:df:24:bd:88:92:f0:4f:a7:f2:e3:59:
67:41:76:7b:1b:42:10:36:d9:4a:5e:69:10:b6:0c:
ff:be:b3:eb:5a:bd:fd:6d:ca:fb:ff:9b:65:14:53:
62:e0:8a:21:32:24:59:21:fe:4c:94:5e:0b:f4:94:
29:19:22:6d:38:5e:07:89:9b:5b:76:ad:6b:2d:ce:
08:37:21:3f:40:32:64:e8:d4:27:35:80:be:59:a4:
06:86:0f:0f:53:ef:f4:73:c8:94:c3:f3:4f:c0:02:
a9:2f:03:bd:0a:14:44:af:84:57:df:b7:b9:8f:8e:
b8:18:5e:8d:e3:ef:0e:74:28:be:bf:ac:92:85:92:
d7:4c:e9:b3:77:b9:c8:96:9f:63:74:59:06:51:76:
d0:e5:7e:54:e4:f4:81:03:9f:6d:b1:56:81:6d:21:
6b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:AC:87:2D:6B:A8:C8:F6:96:AC:1D:E1:EF:AA:AF:B9:C6:40:64:03
X509v3 Authority Key Identifier:
keyid:3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:3d:19:d9:a8:59:98:09:b8:db:8a:f6:23:1c:ed:89:9b:2b:
48:e1:c7:9a:f1:2d:9e:79:8a:58:c2:3e:f9:d9:20:15:da:21:
89:6c:fc:6f:a2:6a:dc:98:76:67:ae:03:13:80:61:6e:db:11:
b8:d8:89:75:7a:3e:4b:65:4c:94:de:9f:dd:19:06:81:57:c2:
4f:4f:1b:de:e1:d1:bb:d4:69:ad:01:5b:4a:26:5a:d0:5a:df:
d2:58:68:51:67:60:9d:68:20:29:7b:db:6b:21:b8:a3:40:cb:
4d:3a:29:1c:26:42:02:69:a5:44:37:02:01:34:e5:d5:18:52:
bf:30:25:96:b7:c5:57:5b:19:18:2d:6e:a3:74:27:32:d5:9c:
e1:60:6e:ec:0f:f3:9a:9f:1f:f7:39:70:f0:be:f5:ca:32:ee:
ae:e7:59:13:24:8f:14:b3:39:f5:e9:16:ac:d4:05:6f:02:a9:
87:6c:b3:68:82:a3:4c:0e:4e:7e:00:e0:ba:d1:ca:fe:67:5c:
97:d3:c9:00:e8:85:4f:3f:6b:52:af:16:d5:3a:2b:cb:73:39:
0b:e7:69:e8:6a:9b:56:84:1f:98:17:ed:06:59:58:e3:97:42:
35:f5:75:ff:b4:55:f1:8d:f3:91:64:29:b2:03:3c:b3:84:27:
82:97:1a:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:36:58 2025 by rpki-client