Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
File: oKFURB35Yj7rWhlhONIb71gktEE.mft (raw, json)
Hash identifier: L8wRsA+6rEH3lwFY4HwijwCvghdJmQ5GKAT9OVCoroI=
Subject key identifier: 71:6D:E1:33:C6:08:6B:78:5A:78:00:C8:A4:A3:3D:C1:20:F7:9B:EA
Authority key identifier: A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
Certificate issuer: /CN=a0a154441df9623eeb5a196138d21bef5824b441
Certificate serial: 0197507C7A2A7A8AB0A44BC8304F1E3FEAE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
Manifest number: 1587
Signing time: Sun 08 Jun 2025 17:00:24 +0000
Manifest this update: Sun 08 Jun 2025 17:00:24 +0000
Manifest next update: Mon 09 Jun 2025 17:00:24 +0000
Files and hashes: 1: cqMIZbZG_XjFMjyio64LoSb9JEM.roa (hash: xBYH5ZrjKUuPI62l0z0GQBA4FW4u95fkTkxgETr+i9Q=)
2: oKFURB35Yj7rWhlhONIb71gktEE.crl (hash: msbmlRKlr06BUkELbM++oPv+eQmab2vntjknv7zixvg=)
3: wlqxE5iuLQB304PN7hVNM4_5h14.roa (hash: xdHQ2e13Tky6CrFmxy2+w5Er25IzDfQGHtx/iyo+wSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:7c:7a:2a:7a:8a:b0:a4:4b:c8:30:4f:1e:3f:ea:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a154441df9623eeb5a196138d21bef5824b441
Validity
Not Before: Jun 8 17:00:24 2025 GMT
Not After : Jun 9 17:00:24 2025 GMT
Subject: CN=716de133c6086b785a7800c8a4a33dc120f79bea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:44:d4:e4:e5:07:10:ff:06:00:59:a9:1b:b4:
47:c2:53:5e:b6:c1:74:38:b1:e2:6e:bb:4f:d2:b0:
5b:b4:28:5b:36:12:4f:db:36:0a:70:76:26:5f:4c:
1b:a1:08:ca:94:7b:e9:20:e7:f2:e5:2f:6a:ff:de:
9e:ac:3e:9d:82:9a:55:36:d4:45:4e:a2:74:f8:85:
1a:e6:a4:ba:ee:8e:6c:78:71:0b:aa:4d:ae:67:b9:
1b:90:c9:d1:6d:c0:62:36:cc:2f:38:d3:25:60:54:
be:56:4e:c3:6f:54:50:6b:e8:b3:5f:0d:8a:a8:1e:
25:08:87:04:57:bd:c2:45:2b:8a:b0:2d:39:e4:09:
b9:05:1f:02:1e:3e:a5:c3:08:18:ec:9f:ba:d3:0a:
80:99:01:e7:47:89:72:33:c5:02:44:0f:56:43:8c:
f0:1d:ab:ee:bf:d0:b5:d6:8b:c5:f9:66:9f:13:e3:
d9:00:46:37:93:2c:8a:03:59:f6:2f:b6:03:67:98:
8b:c2:d1:1b:66:2f:cd:74:ab:d7:ce:3e:6b:e7:af:
24:19:0d:e8:2e:cc:cb:3c:11:24:9c:2b:92:0b:a1:
9d:9d:4d:d0:a6:0a:25:f8:45:7f:a1:fe:66:de:3b:
82:14:82:b8:2d:f0:a7:64:81:ed:4f:1d:fc:31:e6:
94:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:6D:E1:33:C6:08:6B:78:5A:78:00:C8:A4:A3:3D:C1:20:F7:9B:EA
X509v3 Authority Key Identifier:
keyid:A0:A1:54:44:1D:F9:62:3E:EB:5A:19:61:38:D2:1B:EF:58:24:B4:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKFURB35Yj7rWhlhONIb71gktEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/5b3d6d-e6f1-47ad-b52b-9d943671a8a3/1/oKFURB35Yj7rWhlhONIb71gktEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:fc:6f:0e:b3:dc:d4:e3:06:d3:39:1a:31:1a:42:bd:36:63:
83:c0:66:b0:2b:20:cd:0c:71:13:8a:a0:a1:b5:e1:f7:ce:95:
2f:b6:b5:4d:8a:d5:63:64:b6:99:00:54:c0:3a:f2:ce:7d:49:
98:7f:bd:a8:24:c0:23:0a:6a:30:92:bd:88:1a:f4:2a:bc:56:
bb:b4:a2:77:56:9e:b5:c0:05:0f:23:e5:72:b1:21:0b:9b:47:
f1:fb:3c:f9:5c:39:4a:94:a3:2d:36:62:39:3b:59:35:4c:cf:
37:8a:19:ee:a7:09:fa:f2:95:c0:ea:3f:ae:2d:db:3d:37:ec:
91:22:6d:0b:0b:12:fe:1f:6e:89:12:08:21:96:f9:e5:2e:69:
d6:d2:84:80:78:36:87:30:91:db:f0:a9:96:a4:6c:4c:4f:5a:
f8:09:50:95:7c:13:59:54:c9:e9:4f:a2:5b:2a:34:da:e0:37:
2b:69:a3:05:05:4b:c2:ef:8e:c9:e5:85:2d:f9:7c:eb:98:97:
67:af:87:9f:84:ad:a1:f3:2e:e8:06:50:6a:7f:39:8d:d5:e8:
a1:4d:55:e2:95:2e:59:bc:f4:b5:91:8e:1d:e2:75:b9:50:e0:
c6:79:af:53:79:56:02:97:b2:8d:0d:18:61:26:90:d9:f3:c2:
06:56:82:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 19:20:18 2025 by rpki-client