Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
File: O_zNSgBCLIZfUJO4W7howrswxGk.mft (raw, json)
Hash identifier: Q7Unx8B6DeKMam2Ejf8J1EEOxeRET7w8zj/dg9tjeFc=
Subject key identifier: 4C:6D:0A:C7:1C:F6:CA:62:F0:16:7C:82:FC:7B:2F:8F:EE:6A:FB:5D
Authority key identifier: 3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69
Certificate issuer: /CN=3bfccd4a00422c865f5093b85bb868c2bb30c469
Certificate serial: 019758A3DB04E44FA91CA51CC8A0DCAC71F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
Manifest number: 1587
Signing time: Tue 10 Jun 2025 07:00:22 +0000
Manifest this update: Tue 10 Jun 2025 07:00:22 +0000
Manifest next update: Wed 11 Jun 2025 07:00:22 +0000
Files and hashes: 1: 3U1ZWgNoASiRwWRzOTs9a26_aSI.roa (hash: rfiPEMHu4Dy2ke39aiCtx6HNVMRJPDS81QuXHyTH8CQ=)
2: O_zNSgBCLIZfUJO4W7howrswxGk.crl (hash: 0PRSTgT3lRJcRITTo4qZ/8Anwsx/TBh9ksZBeGn80LU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 07:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:a3:db:04:e4:4f:a9:1c:a5:1c:c8:a0:dc:ac:71:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bfccd4a00422c865f5093b85bb868c2bb30c469
Validity
Not Before: Jun 10 07:00:22 2025 GMT
Not After : Jun 11 07:00:22 2025 GMT
Subject: CN=4c6d0ac71cf6ca62f0167c82fc7b2f8fee6afb5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8d:1f:05:28:27:5c:0e:e9:a7:84:aa:4c:cd:
3b:86:12:00:f3:16:6b:bc:c6:2d:de:05:d7:d9:df:
48:73:cd:dd:1a:b1:19:15:14:3a:a6:6f:98:a7:20:
5d:7f:54:c0:b2:dc:24:a4:d6:f8:b4:c0:10:d3:08:
7e:16:ed:a8:44:d2:55:61:5d:31:e3:fa:d1:aa:cc:
c8:58:15:73:92:34:19:58:e0:c5:3b:5f:7f:df:77:
c9:4d:98:61:ca:77:ac:3c:4a:86:46:c5:c6:1f:d3:
54:59:72:f3:d9:bf:2a:38:83:90:03:f4:bd:ad:b7:
32:93:b8:9e:bb:1d:b3:9d:b9:b7:f0:82:ad:1d:cd:
f1:3d:f1:95:ef:0b:92:17:2a:36:67:ba:86:b0:3d:
e1:a0:83:78:e7:2e:d6:86:93:c7:bc:26:04:50:1c:
69:60:1d:38:fd:1e:01:98:f7:6c:24:fa:75:53:97:
32:7d:2a:ec:ab:37:1b:70:db:3f:f9:a0:87:18:c1:
7a:29:39:1b:51:da:03:8f:06:58:aa:fc:4c:c1:7c:
ef:74:ca:49:bf:28:1e:d4:da:3c:91:f9:77:45:58:
e8:f2:fe:49:7b:e0:05:52:f9:6a:fa:d9:44:cd:8a:
3c:3c:32:39:e3:01:49:34:5b:a3:09:bf:00:1f:49:
4e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:6D:0A:C7:1C:F6:CA:62:F0:16:7C:82:FC:7B:2F:8F:EE:6A:FB:5D
X509v3 Authority Key Identifier:
keyid:3B:FC:CD:4A:00:42:2C:86:5F:50:93:B8:5B:B8:68:C2:BB:30:C4:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_zNSgBCLIZfUJO4W7howrswxGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/ba70f2-b7ac-4346-9d08-63ae0bfc169f/1/O_zNSgBCLIZfUJO4W7howrswxGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:83:88:1b:8b:74:4f:de:c1:5e:dc:11:c9:c7:21:79:b3:9e:
39:75:ac:ca:19:c1:55:a7:8f:f7:fd:15:f9:0f:d2:a3:c2:e9:
fb:b9:11:3e:54:67:e5:7a:f5:8a:fe:47:db:f5:65:51:dc:ae:
35:0e:8a:2b:49:3f:a1:4b:df:90:44:c4:92:41:ac:0e:91:83:
b1:57:bc:72:48:f3:6c:ae:0d:b5:bf:4f:4f:51:19:6d:b3:11:
24:4d:e6:3d:a4:29:08:24:c4:d9:80:41:07:b6:c8:59:7c:e6:
3a:ae:50:87:75:61:1b:1e:a7:e9:f4:79:0d:fa:06:1b:9b:63:
e7:3a:8b:46:1d:6d:d2:0e:2f:63:aa:d6:91:02:6a:7a:29:2e:
87:82:10:df:78:11:8d:f6:16:13:40:cd:70:47:e0:eb:ca:b3:
e5:a3:c7:7f:4f:02:25:ed:cb:51:36:f9:dc:33:4c:f0:60:de:
0f:cc:34:6d:72:49:22:42:18:49:0a:ba:33:87:11:03:e9:fb:
44:08:82:b6:22:99:98:7f:a8:d3:73:21:cf:b6:7a:a8:f1:75:
28:13:4a:50:b9:53:a3:a4:1b:15:fc:8c:7a:60:16:32:35:d7:
f1:62:78:26:b8:3d:5f:1d:58:66:7e:62:61:55:15:55:9a:17:
b2:63:64:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 16:05:46 2025 by rpki-client