Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
File: OXMtzQw1QmFE-fAmdUF5366-iVg.mft (raw, json)
Hash identifier: VCEsyz/UbrbS5IXy7jJEFNyLF73NXfXLVivXMTcR6w8=
Subject key identifier: D9:7B:31:11:7F:95:64:95:27:40:1D:11:2E:4A:4A:2C:41:30:8A:3B
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 01974779CE60659C943B24CDE198551D882B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
Manifest number: 156C
Signing time: Fri 06 Jun 2025 23:00:54 +0000
Manifest this update: Fri 06 Jun 2025 23:00:54 +0000
Manifest next update: Sat 07 Jun 2025 23:00:54 +0000
Files and hashes: 1: EQS-D1pgF9X9JxFRgbIMqF1eIP4.roa (hash: X1oH+D4EKjN/FZ/0o/XNZpi/rX7eBTsOxnwwIoAyafs=)
2: OXMtzQw1QmFE-fAmdUF5366-iVg.crl (hash: Ee5F2Qyjy/hJHp1VIQ5S9qMnh9z9CCwtBaT8wFa+6uA=)
3: VK52xwAI-aKIKTeQlztwUDOO02E.roa (hash: C9ydrT1jO/tCG0jTbHX7J5njz1R33YyX3/MyTTWyLe8=)
4: cVloRXAZs5Oo5mzrcunH3Tc2864.roa (hash: PRZbsG5bEI+5vtvix6l8s4vQ6r0jrrNQcUM/ZaoxHsc=)
5: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (hash: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:ce:60:65:9c:94:3b:24:cd:e1:98:55:1d:88:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Jun 6 23:00:54 2025 GMT
Not After : Jun 7 23:00:54 2025 GMT
Subject: CN=d97b31117f95649527401d112e4a4a2c41308a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:77:f6:d7:93:d5:16:4b:d0:3b:ab:27:2b:3d:
5f:93:69:01:d9:b7:06:cd:89:a0:e3:21:08:96:f3:
3b:2d:54:6a:49:dd:a2:d4:9e:c7:a9:30:78:62:c2:
67:1e:8c:bf:18:ab:69:93:bf:66:62:8f:3c:8b:a6:
e2:07:28:e5:78:b2:52:27:b5:dc:7e:6d:bf:6e:25:
2a:6a:5f:53:f4:ec:ce:73:3b:60:36:5d:9f:ad:18:
9a:38:48:93:4f:73:86:c0:99:99:ee:10:90:ef:f7:
47:18:dd:9f:f0:14:dc:e3:bf:90:99:95:55:23:33:
d8:71:c1:ad:7f:89:13:70:5d:ed:1f:a8:be:be:25:
28:08:b7:54:dc:48:55:2c:d5:b7:ce:c5:cd:88:88:
01:d1:c8:37:ef:ba:cb:19:89:06:ac:d6:45:3a:07:
fd:71:15:9e:cf:f4:13:c1:e4:17:d0:5b:a2:a1:89:
5d:5f:92:ac:06:d7:d4:2e:d6:12:fe:99:24:98:2f:
5b:8f:8c:ae:bf:df:20:33:bb:b8:f5:7f:45:a9:f3:
d5:19:99:38:ff:40:a4:d7:54:9c:a9:76:cf:ed:33:
d4:4d:16:23:15:b3:84:16:ab:22:9a:04:56:fc:fd:
0d:3b:34:47:e6:9c:e7:d6:1c:f2:85:fc:f7:51:53:
52:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:7B:31:11:7F:95:64:95:27:40:1D:11:2E:4A:4A:2C:41:30:8A:3B
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:7b:9e:f8:76:09:09:33:a9:67:66:a5:c6:8f:2e:57:d4:8e:
4d:b4:fc:47:32:dd:9e:14:d0:5d:d9:41:bb:70:3c:af:c4:76:
5c:ed:0e:e7:1f:f0:89:61:03:7a:1e:2f:28:d7:11:75:2f:22:
03:51:35:bf:d9:14:dd:72:5f:1b:2b:30:51:c1:9f:99:fb:dc:
b1:d0:5c:be:e6:d3:6b:50:04:e5:fa:a5:46:63:b4:46:70:e6:
22:dd:4d:c0:bd:4f:26:f0:0c:06:5a:d1:98:ad:5e:da:8b:b1:
b3:65:9c:1c:55:76:d6:03:d8:31:d9:b5:0e:6a:16:49:4d:ec:
91:33:f7:e5:71:a3:75:93:37:62:0a:a5:77:8a:e4:44:a4:99:
00:92:10:04:df:9b:0b:0d:59:f0:1b:19:d9:89:0a:e2:16:f9:
f8:47:0d:66:31:83:f6:5d:88:82:70:31:cf:31:40:98:7e:73:
b7:c1:24:ba:1c:5f:df:00:9e:7f:9e:cf:a9:d5:59:98:5b:2d:
99:90:9d:80:65:de:aa:82:8c:46:b8:d9:d0:e6:9e:d3:b1:a5:
b6:5e:a7:e9:a4:12:42:ba:8b:a3:8d:b2:96:ea:aa:20:2f:37:
19:ed:2e:ae:70:2b:d6:f8:27:93:94:8a:74:0f:38:9d:3f:40:
d7:d1:c9:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:36:53 2025 by rpki-client