Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
File: OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft (raw, json)
Hash identifier: 8u4dVlmTjTVRTq6LO1kmpXb+CGeirY9NgS/bZhjX0ns=
Subject key identifier: 44:B9:80:3F:22:A6:37:8E:6A:AC:FE:73:A0:3E:99:5E:1C:F9:BE:49
Authority key identifier: 38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58
Certificate issuer: /CN=386ab970bfb6947597e97cefb916ec76a0c56858
Certificate serial: 0197499EF0F133C52F42AE533FE87F90CCB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 09:00:42 +0000
Manifest this update: Sat 07 Jun 2025 09:00:42 +0000
Manifest next update: Sun 08 Jun 2025 09:00:42 +0000
Files and hashes: 1: I01Lo7qwhvaLI2U54ucZ10pkExs.roa (hash: mTrGRc4f1Skt/0lHfZ3XZbVEvrQ9mBUuWZXJpIXORz4=)
2: OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl (hash: YNb5R3nI2jERQ6TbpUlcuPt5MbNjJWtdRpJ9Scp9zY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:f0:f1:33:c5:2f:42:ae:53:3f:e8:7f:90:cc:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=386ab970bfb6947597e97cefb916ec76a0c56858
Validity
Not Before: Jun 7 09:00:42 2025 GMT
Not After : Jun 8 09:00:42 2025 GMT
Subject: CN=44b9803f22a6378e6aacfe73a03e995e1cf9be49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d1:0d:d8:65:bc:bb:b6:ea:8e:d3:a0:e5:68:
7b:00:cd:ed:f6:eb:c8:f1:09:18:ae:02:98:2a:e6:
a2:62:12:91:e9:aa:58:f0:bf:0e:2b:d0:98:b8:05:
0a:84:d9:d2:61:09:e5:8d:0c:71:6e:62:8a:24:ee:
8c:2d:9c:f7:ea:5e:22:a2:c7:cb:65:f4:2a:f8:9c:
76:da:88:28:03:d2:3f:d0:1d:a8:22:95:ef:dd:1f:
32:d6:7a:62:1f:9e:ef:d1:0a:31:b7:04:5b:c0:6a:
03:93:a8:17:b4:b7:72:5e:74:ff:4e:c6:5b:b0:b1:
60:09:e7:d3:f1:93:76:72:16:90:4c:e7:ad:19:82:
7e:77:da:7f:38:ad:38:de:60:9a:2e:88:63:2a:ba:
29:5e:dc:bc:60:0b:b5:dc:41:1a:af:b1:f7:0b:63:
41:27:91:9f:12:0e:97:07:c1:a1:2c:49:1b:77:0b:
a6:0b:ef:5f:3e:d3:3c:50:b1:7c:91:d9:57:98:8f:
f4:f8:2f:5e:c3:29:9f:ce:69:61:f0:cd:3e:28:e9:
47:b9:2e:cd:6b:58:67:b7:16:af:c3:54:d4:27:4a:
29:e7:0a:2d:46:5a:6a:6d:2b:eb:ee:c7:77:e2:ce:
84:3a:28:6b:51:c5:61:5c:01:73:83:31:1d:6f:00:
f7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B9:80:3F:22:A6:37:8E:6A:AC:FE:73:A0:3E:99:5E:1C:F9:BE:49
X509v3 Authority Key Identifier:
keyid:38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:13:1a:2f:d2:c6:cd:30:6e:e6:4d:8d:4c:1f:98:ed:8d:53:
aa:ab:67:bc:3b:a8:e5:13:bf:93:e5:15:9e:a4:8c:cb:68:59:
84:bc:cc:89:ed:b5:69:a4:28:c7:d7:0a:67:e5:e7:e9:e5:18:
26:52:f1:8e:8d:d0:5b:10:79:88:08:af:b8:64:4e:88:11:25:
bb:ba:6a:d6:b1:04:a3:07:7c:d8:02:c1:15:58:27:1b:52:24:
e1:d8:d6:4b:c4:26:c7:9d:20:87:f1:c7:9f:f0:3e:1e:83:76:
d5:37:af:0e:f8:21:04:9d:3c:47:4e:b2:1e:c1:a8:57:eb:ba:
cc:ba:a6:44:c3:c1:51:5d:c9:d1:b8:8c:43:1e:a6:4a:5b:19:
d8:8a:33:14:02:c1:2b:87:1c:99:81:e4:ea:73:85:30:9e:b5:
77:c2:4c:33:9b:d2:28:db:ae:39:8f:83:5a:6d:b2:3a:40:46:
8e:a2:c4:2b:78:9f:d1:23:5a:21:d1:51:40:02:02:ba:73:d6:
a9:d6:bc:63:6d:73:76:99:fa:85:1b:20:b5:9f:50:39:0f:60:
ad:a4:be:f3:12:a6:f2:8e:90:35:63:80:9d:6b:57:07:e8:e6:
f8:16:ec:5c:5b:54:b7:2d:ea:1e:28:66:3c:57:57:98:12:a5:
4f:5d:ee:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:46:38 2025 by rpki-client