Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: EmEBs8wpuHg8cSBet7bIKUKkIfrTQINXKOzLYVAVleU=
Subject key identifier: FD:5D:4E:3A:D8:ED:71:67:30:8E:81:6F:FE:44:1C:48:B3:F5:18:8B
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 019742C122A42A8BE877C2573A5CAF21F534
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 0C1E
Signing time: Fri 06 Jun 2025 01:00:42 +0000
Manifest this update: Fri 06 Jun 2025 01:00:42 +0000
Manifest next update: Sat 07 Jun 2025 01:00:42 +0000
Files and hashes: 1: MdL7TM_8FI4FSNKpOGmHEkxh3Ic.roa (hash: kNSd9iF0Y8DMXrvxWEyFS2FyQT8gup1m11Nuuk6HbNM=)
2: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: iu7qTNRvnWpsTh7O3qmLFyTN67+6wRFtR8iYt/AAAdA=)
3: cwI21tJzYqOr9HSPPCz6L9ZgwVI.roa (hash: XU/ushJjB+n9xmj9cQdOxUY6BAOcpjTXGMQ5mCVCcNA=)
4: nKxYgxU46C1nM-kLwKHXoqpeCuk.roa (hash: acmNPfWY5Vqfewon1zfQxYgK/f0iZyi1LFngzxJT1rE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 20:42:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:42:c1:22:a4:2a:8b:e8:77:c2:57:3a:5c:af:21:f5:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: Jun 6 01:00:42 2025 GMT
Not After : Jun 7 01:00:42 2025 GMT
Subject: CN=fd5d4e3ad8ed7167308e816ffe441c48b3f5188b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:82:00:f9:3d:d8:4d:07:4b:8b:78:01:ab:b5:
c0:9b:2f:fe:37:70:de:d0:73:87:5f:21:7f:7f:f9:
0d:42:fd:89:1f:ed:83:af:c1:20:81:c9:40:6d:00:
85:55:e4:57:06:0e:37:69:3a:38:14:dd:2b:e5:5f:
ab:36:f7:ff:3a:08:ae:ca:f5:59:40:1e:05:8d:a3:
53:9d:42:bd:30:1b:6e:1b:49:b0:29:ff:e5:21:c5:
fe:0b:29:ba:b7:ae:86:da:03:5b:12:dc:0a:8b:ed:
49:40:47:dd:dd:1d:a0:06:30:f5:b5:e8:b9:c0:ef:
a3:c3:fa:32:6f:70:49:aa:cc:16:64:ff:c0:57:f4:
24:ba:9b:9c:75:24:fb:eb:82:31:7e:4c:f8:4f:06:
90:92:b5:14:5d:e9:49:f3:53:d5:ad:42:25:68:fd:
6d:a6:ac:32:4a:9b:44:12:cf:1c:11:39:e7:ae:41:
6c:0f:20:d5:65:fb:d9:ca:e3:70:f9:b6:23:a9:f4:
5d:fd:63:7e:3c:85:be:cf:81:76:de:2a:40:9a:4c:
80:af:d7:48:91:e6:4c:bc:0d:5f:a1:a7:5e:96:74:
c1:ba:db:c1:75:a4:a6:c0:21:3d:01:c9:10:0d:4d:
53:d5:77:32:55:c6:39:1d:8e:46:9a:d7:cb:01:1e:
f1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:5D:4E:3A:D8:ED:71:67:30:8E:81:6F:FE:44:1C:48:B3:F5:18:8B
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:69:33:74:98:a2:32:e6:12:d5:12:1b:ed:34:95:11:5f:c5:
5b:6c:18:5c:2e:58:dc:a1:c9:fe:7e:36:c0:de:33:a6:72:09:
41:bb:69:0e:12:87:bd:44:91:be:aa:df:61:28:f8:48:6b:83:
ce:94:c9:9d:a8:fb:30:31:b9:3c:d8:17:da:3e:35:80:34:56:
49:30:3e:5a:98:b2:c1:d4:af:b8:e0:80:4e:7d:5d:31:8b:df:
79:2a:89:d4:21:a4:a1:3e:ce:2b:4e:f8:96:c1:00:97:1e:19:
70:2b:41:00:5e:1c:05:dc:81:04:a6:ad:9a:b0:45:af:65:16:
2f:c5:54:57:35:1f:0c:78:a7:d3:dd:4b:98:85:48:2b:42:f7:
e5:a2:5f:3c:9a:26:3e:d7:9b:8c:1c:98:11:b1:4e:01:fa:c8:
85:bb:80:79:09:a7:6a:89:3b:40:bf:d5:87:b3:53:43:ce:f5:
d3:51:c0:ff:20:39:a9:09:a7:4b:ed:b2:e4:30:db:03:45:10:
05:e9:2d:cb:4c:74:6c:b0:8b:4c:cd:c1:a2:06:36:52:e8:f4:
9c:6f:7d:c5:b2:d5:8d:19:de:d4:95:70:93:ce:ae:ea:64:d3:
57:74:c6:e7:be:b4:bd:d3:0e:e0:c6:73:bf:be:7f:90:68:7a:
d5:de:6f:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 06:21:02 2025 by rpki-client