Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
File: OZETdfzEhZYSGQ6-zHrjcaAaam0.mft (raw, json)
Hash identifier: jV177PDca936dR1vok49KdqxabkNXlhLmjg/+BgC0ew=
Subject key identifier: 84:C7:E1:5B:9A:24:EE:B1:F0:06:EE:59:2C:CE:29:9C:F5:8F:7B:71
Authority key identifier: 39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
Certificate issuer: /CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Certificate serial: 01974742D0B2F15CE0F4C81668B43FCA9581
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
Manifest number: 0EA4
Signing time: Fri 06 Jun 2025 22:00:50 +0000
Manifest this update: Fri 06 Jun 2025 22:00:50 +0000
Manifest next update: Sat 07 Jun 2025 22:00:50 +0000
Files and hashes: 1: OZETdfzEhZYSGQ6-zHrjcaAaam0.crl (hash: hUbgUUa2WCQRQcb7mWJfUTfZEIGEUVXrW8H1wBv6fCQ=)
2: mV-huyQ7uf2YxiJ1JUpDypBxzhA.roa (hash: XQgQ9aC7Ey76psDYNwOwzM5lgNTkkh3rEJlv1Rte2h0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:d0:b2:f1:5c:e0:f4:c8:16:68:b4:3f:ca:95:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Validity
Not Before: Jun 6 22:00:50 2025 GMT
Not After : Jun 7 22:00:50 2025 GMT
Subject: CN=84c7e15b9a24eeb1f006ee592cce299cf58f7b71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a9:74:20:e1:a3:e5:8d:de:35:a9:56:66:38:
d0:55:03:ec:e9:f5:46:f4:69:4c:c3:b0:d1:78:1b:
83:c3:b1:84:fd:69:3a:ff:77:67:c3:34:c1:48:40:
a7:8c:3d:09:54:d0:44:82:03:7d:96:ee:c8:af:63:
7f:90:ea:1f:17:e3:cc:15:2a:34:75:cb:d1:d4:7d:
50:ea:14:36:1c:4e:7e:57:81:92:fe:f3:9d:bd:f8:
45:78:84:23:5b:7b:0e:be:21:0b:d7:7b:33:a3:b6:
e9:11:6a:9b:a5:f8:65:68:14:4a:fd:a5:d3:11:a0:
f7:b8:f8:ed:a9:7f:90:a6:7a:f5:04:f5:34:d0:8f:
04:43:7b:5c:b0:13:54:e2:ce:80:cd:42:88:be:ea:
42:1b:6c:7c:21:5d:3b:e0:ed:bd:5a:78:c2:c0:03:
63:8d:7c:68:11:90:d3:a6:ac:50:51:75:fb:e5:42:
72:54:1c:7c:4e:54:0e:f0:fd:10:09:76:9e:35:3b:
be:3b:b2:ad:de:8b:5d:82:ac:97:6f:75:79:2b:7b:
5e:8f:4d:c0:12:65:b0:08:d5:67:b7:d5:a0:4b:a8:
31:a3:37:67:dc:37:11:05:74:79:fa:30:79:51:5d:
18:ec:7a:ff:da:df:fc:7e:d2:27:5f:78:15:bc:1b:
9d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C7:E1:5B:9A:24:EE:B1:F0:06:EE:59:2C:CE:29:9C:F5:8F:7B:71
X509v3 Authority Key Identifier:
keyid:39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:00:b9:e2:0b:2b:d3:50:78:33:30:41:64:ac:cf:89:84:25:
6a:4e:dd:85:46:b7:02:a1:f9:2c:74:0f:e9:42:14:98:fc:a5:
b5:7e:42:a0:7a:bc:4e:64:b2:c5:c5:8d:2d:53:26:b0:00:dd:
61:6b:39:12:93:e8:34:0a:c1:a3:95:74:46:bc:c1:9b:07:0e:
94:00:c2:7d:52:27:54:c1:18:f4:80:1e:76:35:0f:61:62:f7:
c8:7d:43:fc:ba:05:b0:8e:87:dc:65:ae:5c:02:4a:0a:8b:65:
6f:f6:73:af:9c:e3:47:7d:49:59:a6:0a:5e:57:fb:5f:51:02:
5b:c9:2b:c5:ff:c4:e1:9e:b3:f4:81:0e:33:9d:67:89:ec:68:
9d:63:58:bf:d6:ca:5d:21:12:ad:38:50:04:cc:6d:a4:7d:3e:
37:d4:12:cd:18:2f:c1:ad:29:25:a4:36:e8:31:11:ca:c3:65:
e8:a5:05:f4:a0:9e:b5:6e:aa:1f:38:d9:d0:f3:db:4d:63:27:
09:bf:97:de:b0:af:ea:69:8b:35:0a:4f:67:1c:18:3e:f5:4b:
ff:d2:88:80:da:84:cb:4d:aa:08:0e:bc:79:de:78:b8:5b:24:
8a:68:8e:03:e5:dd:34:4c:05:46:a2:df:5b:59:ef:fd:e9:7f:
59:df:b3:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:12:59 2025 by rpki-client