Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: KivDAYGB3lz6y9ZUjVi5+i8Zx2EwBI0cdnG1nZ+dd14=
Subject key identifier: 5F:B4:F6:7B:FA:5B:20:E0:5B:31:31:99:0D:45:A1:3E:3D:FD:FD:99
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 019745C28F206EAF7F0B731827EA2750550C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 0BB7
Signing time: Fri 06 Jun 2025 15:01:07 +0000
Manifest this update: Fri 06 Jun 2025 15:01:07 +0000
Manifest next update: Sat 07 Jun 2025 15:01:07 +0000
Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: 208t19+tWVEHKqKd4e0ppN9dv8tETCnnSsZdvJiFNv8=)
2: S5-p15oe6PO1US7yiwalFk2guhA.roa (hash: RxwUj9qrcB8W+bA9U60Y3Yd+aWieeN2zZTQTfRBMSD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:c2:8f:20:6e:af:7f:0b:73:18:27:ea:27:50:55:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Jun 6 15:01:07 2025 GMT
Not After : Jun 7 15:01:07 2025 GMT
Subject: CN=5fb4f67bfa5b20e05b3131990d45a13e3dfdfd99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:16:2a:45:7c:c5:81:c2:d1:d9:8d:05:65:39:
4c:cc:20:36:51:ef:f2:82:2a:f8:c3:07:34:8f:38:
13:0c:00:97:1d:0e:89:5e:86:d9:ab:d3:ed:e5:42:
dc:69:c6:be:d9:14:0c:87:39:8e:3c:96:b3:7d:12:
c6:f7:ae:ba:55:01:82:18:7f:3c:9b:eb:7d:a5:13:
c1:35:2d:3a:4b:db:44:33:30:e4:87:ae:b0:1f:99:
db:25:b8:35:dc:e9:ea:33:95:c7:33:13:33:d6:03:
1c:c4:25:5f:c9:44:0f:63:bb:56:7e:f8:a5:b6:41:
92:4e:15:fe:dd:86:e3:4f:12:41:82:09:e6:bc:59:
66:f2:40:f0:d0:fa:34:f9:10:fb:d3:28:b2:e9:87:
69:82:ab:d2:71:43:64:f0:a7:0e:a6:a2:3f:c9:cd:
0b:ce:40:ad:54:92:ae:ab:f4:96:35:22:75:a3:cb:
a4:fe:2f:e1:9d:ea:c9:c5:af:ac:b3:6b:93:f4:c5:
74:65:45:c0:d4:d1:4f:db:e7:a1:c6:73:3b:fc:50:
cb:ef:0d:13:51:e1:f2:ae:0a:aa:f2:2c:65:2b:58:
21:20:e0:e5:14:13:83:ac:d9:20:32:af:99:59:59:
5c:9f:3f:f5:e5:ad:eb:33:35:16:40:25:e5:00:c3:
97:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B4:F6:7B:FA:5B:20:E0:5B:31:31:99:0D:45:A1:3E:3D:FD:FD:99
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:1d:2d:b3:33:7f:e4:59:0f:bc:87:41:55:c4:e6:64:b8:85:
65:57:aa:72:0c:d3:73:0b:36:5e:b3:fe:aa:72:11:08:51:cd:
f6:d9:3e:5f:b8:59:f4:1d:35:7e:c3:c1:51:e5:3c:95:8a:b8:
6d:fe:41:a5:66:07:11:39:54:9f:a8:95:3e:25:df:d4:82:0f:
68:0a:87:01:ea:e3:23:ff:24:9c:45:da:1c:40:17:14:1f:b8:
c4:26:c7:2f:f7:b0:d2:46:a6:27:56:34:a8:8b:d7:ac:ae:5d:
95:a3:a3:83:45:93:75:99:af:7f:04:95:ee:a7:ca:3c:5a:40:
78:ce:26:2a:0e:23:2f:9f:ff:b2:9d:fa:4a:bc:aa:bb:9e:ae:
6e:fb:05:96:a4:82:e5:8d:60:8c:2b:28:c1:2e:37:62:44:88:
03:e2:b7:ce:58:f5:42:26:b8:97:43:65:b8:b0:70:7e:93:e6:
15:11:84:94:12:fa:38:06:69:fb:59:e8:34:15:37:96:97:8d:
3a:2d:5e:f8:e9:20:b6:b2:34:49:de:ec:73:b3:98:83:70:3d:
08:7f:d6:3b:54:58:4e:d8:46:ea:88:91:cd:03:09:55:71:2b:
73:24:a6:22:ca:d5:93:aa:b5:68:0f:6c:1e:f6:c0:42:3e:2b:
42:e5:1a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:36:47 2025 by rpki-client