Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
File: OXbmqwhMnu7ehuKva95yFSdLlac.mft (raw, json)
Hash identifier: gMy1npCI6lPvpktDvrqmNs+UG/dsW2ot0WYmXnpnfB8=
Subject key identifier: DE:D4:54:6A:3E:38:34:7C:1C:DA:A0:BE:2F:12:2C:81:C6:0E:39:EC
Authority key identifier: 39:76:E6:AB:08:4C:9E:EE:DE:86:E2:AF:6B:DE:72:15:27:4B:95:A7
Certificate issuer: /CN=3976e6ab084c9eeede86e2af6bde7215274b95a7
Certificate serial: 01974CA023B254103809802D4655A5AC394F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 23:00:52 +0000
Manifest this update: Sat 07 Jun 2025 23:00:52 +0000
Manifest next update: Sun 08 Jun 2025 23:00:52 +0000
Files and hashes: 1: OXbmqwhMnu7ehuKva95yFSdLlac.crl (hash: 1tY6hx9nRhs7IqwBr/wanJLwLskzAoo5IH2HT4jPdBQ=)
2: bS8D5tTeBAXDkMQSy-j-MAcdPro.roa (hash: R+yA1y5Nb8S44doc/dttKyd8pVatx4WMIyAI41rpB+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:a0:23:b2:54:10:38:09:80:2d:46:55:a5:ac:39:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3976e6ab084c9eeede86e2af6bde7215274b95a7
Validity
Not Before: Jun 7 23:00:52 2025 GMT
Not After : Jun 8 23:00:52 2025 GMT
Subject: CN=ded4546a3e38347c1cdaa0be2f122c81c60e39ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c9:a6:fa:47:c4:0e:f0:23:2f:e2:28:e0:20:
7e:e5:75:80:bf:39:ae:ed:61:77:91:5f:d8:18:1b:
ea:3c:9a:e8:cf:3e:be:3b:67:ac:de:12:df:b5:d3:
5d:09:3d:f2:0f:98:d8:ca:a5:35:98:d4:c3:60:f6:
4a:e2:d1:4b:fd:52:97:38:fc:eb:73:bd:c1:1b:b0:
55:cb:2a:74:f1:b2:99:eb:00:30:a1:0d:53:54:34:
6c:f1:91:63:09:f3:21:72:5e:91:2e:6e:4b:1a:c3:
3f:e2:78:a9:2f:2e:e2:49:d5:76:1a:66:c2:29:09:
dd:75:20:55:86:46:30:14:c1:3f:4c:90:c8:c7:4b:
f0:e4:0c:60:e4:ea:1c:c7:a2:28:ba:0e:1a:9b:ba:
b4:40:f2:8b:ad:73:4e:01:88:24:7f:f2:b9:41:42:
1f:41:ea:9b:06:89:7e:7c:c1:e8:6e:8e:20:a2:9e:
b9:ca:9f:ad:fb:97:68:e0:b4:30:96:d1:20:22:11:
af:07:a1:cd:37:8c:0f:90:cb:ce:ac:79:29:04:ce:
c7:b9:5c:61:37:22:6a:96:c9:41:e3:18:0f:90:7b:
e6:b1:7d:a1:58:64:49:82:40:c6:e0:e9:d7:bd:75:
ad:72:f5:f8:2f:5a:d6:d9:30:cc:e2:04:71:10:9f:
4d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D4:54:6A:3E:38:34:7C:1C:DA:A0:BE:2F:12:2C:81:C6:0E:39:EC
X509v3 Authority Key Identifier:
keyid:39:76:E6:AB:08:4C:9E:EE:DE:86:E2:AF:6B:DE:72:15:27:4B:95:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXbmqwhMnu7ehuKva95yFSdLlac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/7029cc-d331-4606-889c-d66674cfa424/1/OXbmqwhMnu7ehuKva95yFSdLlac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:0b:63:cc:5a:b6:2d:9a:ce:f3:8b:ee:cc:02:bf:d8:5f:e8:
ef:b9:15:98:f6:3c:1d:99:3d:01:bd:7f:0b:7c:ba:96:78:ae:
0d:d9:c7:e2:77:09:db:53:b4:8d:96:be:78:67:65:d7:49:ab:
94:05:a3:e4:5e:2f:12:ab:c2:8b:55:cf:2b:ef:22:23:23:95:
7c:9b:69:06:3c:3b:17:b1:f0:e0:4c:e1:75:60:83:5a:56:83:
80:63:d8:8a:05:a8:12:1d:4e:28:bc:81:e4:e4:89:e6:fd:8a:
fd:1e:26:4f:4e:aa:c3:fb:d4:56:6d:f9:5e:b2:1b:ea:5d:f6:
cb:d2:0d:63:9d:1f:1a:de:df:b1:64:c4:b8:72:5e:31:94:3c:
57:d2:c6:fe:47:13:98:ec:cd:e2:78:c4:c1:0c:ed:66:ea:32:
8f:35:98:77:75:79:c9:a6:a2:44:8b:d7:13:8e:3d:66:33:d9:
c5:4d:8c:bb:32:04:9d:0e:6a:f7:87:38:c7:7a:24:80:dc:68:
67:f5:d0:e3:9c:51:65:d5:1d:4e:97:7c:a0:ea:71:0a:55:8e:
f0:38:e7:0b:da:68:ca:32:02:7c:b5:2a:87:2e:6c:87:b3:19:
61:60:ab:54:45:fb:dd:cd:4c:10:bc:26:f5:92:15:4e:61:f6:
67:e7:54:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:08:30 2025 by rpki-client