Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
File: Ojz5kZosgUbJb1oUsVdFm3lLai4.mft (raw, json)
Hash identifier: omXDII4qHQHjUfPaaj6JmrMK5gf9TX8BHgIjOCsqFXE=
Subject key identifier: EF:12:F2:DC:1B:24:C8:89:EE:32:B4:E8:EA:F9:1E:DE:C3:AB:1E:03
Authority key identifier: 3A:3C:F9:91:9A:2C:81:46:C9:6F:5A:14:B1:57:45:9B:79:4B:6A:2E
Certificate issuer: /CN=3a3cf9919a2c8146c96f5a14b157459b794b6a2e
Certificate serial: 0197469E24DDFC866DF2D91229011E035996
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
Manifest number: 157B
Signing time: Fri 06 Jun 2025 19:00:58 +0000
Manifest this update: Fri 06 Jun 2025 19:00:58 +0000
Manifest next update: Sat 07 Jun 2025 19:00:58 +0000
Files and hashes: 1: Ojz5kZosgUbJb1oUsVdFm3lLai4.crl (hash: aBRB6gNDwpyNa8qiR+h/gYvNZjYJ7Fjtq+2+0y/idqQ=)
2: jm4B5paf_GVr-GpkHFsecVdl0nk.roa (hash: l8vtbC+hCoUUJ+YOCg7b9XUWVs7njLshIKLeOlHSZao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:24:dd:fc:86:6d:f2:d9:12:29:01:1e:03:59:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a3cf9919a2c8146c96f5a14b157459b794b6a2e
Validity
Not Before: Jun 6 19:00:58 2025 GMT
Not After : Jun 7 19:00:58 2025 GMT
Subject: CN=ef12f2dc1b24c889ee32b4e8eaf91edec3ab1e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:79:71:a3:bd:d7:9c:75:aa:09:b4:a4:1b:e0:
7d:94:c9:27:61:e9:ca:93:b9:f3:dd:02:c5:84:28:
51:3a:34:41:5d:03:00:b6:98:04:e4:e3:f7:02:e0:
b8:e9:e9:cc:41:6c:df:6d:b9:ef:26:c7:36:f7:c0:
5a:9d:c4:70:33:35:a8:d7:25:0a:e5:17:d2:42:49:
f9:85:ea:71:a0:4d:bf:86:24:2a:f6:88:d1:d0:b3:
95:62:70:d5:83:f9:d3:68:78:c4:9c:b0:9f:a8:26:
c8:5a:f7:6a:e4:7e:88:0d:f2:06:7d:68:13:9a:b9:
0a:2e:18:8c:49:d1:75:6a:8f:c0:b3:5f:d4:00:e0:
3e:24:fa:30:f5:d9:1b:0e:16:df:03:e6:0a:5f:f0:
c0:1e:38:4f:08:85:98:64:e2:d6:86:0b:7c:57:e5:
f0:03:35:f6:08:95:7a:56:c9:64:bb:66:39:45:ab:
8f:a6:db:b9:5d:68:42:5d:66:88:89:c8:77:01:17:
30:ef:27:30:34:a3:78:50:39:db:f0:da:35:94:59:
b4:f1:91:c5:52:17:14:51:c0:d9:50:a4:d4:cf:e9:
dd:f1:f2:24:80:e1:30:e3:e4:ab:1c:4e:c7:07:65:
54:1c:89:39:af:95:c6:54:82:18:0c:a3:d3:4c:f7:
37:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:12:F2:DC:1B:24:C8:89:EE:32:B4:E8:EA:F9:1E:DE:C3:AB:1E:03
X509v3 Authority Key Identifier:
keyid:3A:3C:F9:91:9A:2C:81:46:C9:6F:5A:14:B1:57:45:9B:79:4B:6A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ojz5kZosgUbJb1oUsVdFm3lLai4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ea49a-cf67-466a-ab5c-70cbf5149a5a/1/Ojz5kZosgUbJb1oUsVdFm3lLai4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:8d:e9:af:b8:dd:99:47:36:66:3f:71:71:a8:1b:70:cd:05:
67:3d:79:36:95:ca:bf:94:5f:56:d5:c9:e9:07:82:0a:fd:39:
6c:ea:4f:d2:7c:e9:ec:34:ff:d9:bb:96:0e:02:d1:55:e8:98:
80:0e:5a:cd:ef:13:79:58:8e:e6:17:b6:6e:9d:f9:4c:5c:cb:
22:5a:66:b3:ad:3b:5c:b1:3d:6b:43:5f:44:1a:a6:f9:80:50:
37:a5:4e:1b:2a:1e:9d:41:04:b3:cd:1b:a5:52:f2:6a:f4:56:
52:95:b9:a7:26:2a:1e:37:74:d0:f8:e6:28:5d:d9:0a:61:5d:
e7:37:3f:73:86:af:8f:31:a2:58:ed:b0:ab:05:af:53:d8:e7:
aa:13:31:d2:16:e0:b3:fe:16:eb:af:3a:92:89:ab:97:10:5a:
28:22:2d:f0:1f:44:2a:e8:04:17:4b:9c:82:7d:3d:1d:52:68:
ea:dd:de:14:e3:65:48:17:db:37:ad:ac:3f:c9:df:bf:f9:64:
4c:c7:e5:7f:5c:e7:ca:43:b6:bb:a1:d7:d0:c3:d4:43:31:29:
92:7c:d6:8a:99:3e:9f:71:e5:14:9e:ba:68:57:62:7c:cf:54:
af:c8:de:9c:1a:85:0f:89:e4:68:20:00:20:a9:4f:5e:1e:86:
31:93:cb:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 02:24:37 2025 by rpki-client