Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
File: OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft (raw, json)
Hash identifier: 3gVbx1CfIYQ1E1R2x3q9eFKUbUBzHLQx0brqf37qsYM=
Subject key identifier: E4:26:E9:30:7E:AF:5F:61:15:77:03:7D:D3:E7:4D:34:07:1F:6A:C2
Authority key identifier: 38:52:06:AC:08:D8:40:C2:8B:F4:AC:56:89:9F:2A:28:F8:FD:CC:C5
Certificate issuer: /CN=385206ac08d840c28bf4ac56899f2a28f8fdccc5
Certificate serial: 01974779E94A404E271C9AC30D7F61CE242B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
Manifest number: 157C
Signing time: Fri 06 Jun 2025 23:01:01 +0000
Manifest this update: Fri 06 Jun 2025 23:01:01 +0000
Manifest next update: Sat 07 Jun 2025 23:01:01 +0000
Files and hashes: 1: BnrxL-Ur42kihA32O4JXiXZBN8E.roa (hash: au6tBTrdwYycWLV+cOCZ8jXfmlb22WJOhmDS5f3OYxY=)
2: OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl (hash: XwS9T1RnK7FmZaLM23DhY9nr3jHTkkxymCgaKdLLK8A=)
3: eMQhZAA1BBjlcx0eTkggms08VQo.roa (hash: xi+ujT09IBX2cdfgWniCY7aqnXMFDpXhE7QErRO6YQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:e9:4a:40:4e:27:1c:9a:c3:0d:7f:61:ce:24:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385206ac08d840c28bf4ac56899f2a28f8fdccc5
Validity
Not Before: Jun 6 23:01:01 2025 GMT
Not After : Jun 7 23:01:01 2025 GMT
Subject: CN=e426e9307eaf5f611577037dd3e74d34071f6ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7f:b4:67:c5:74:20:87:f4:dc:51:ac:48:6a:
09:5f:6c:c8:b5:3e:29:3f:e2:ba:f7:92:7d:ac:8d:
3a:50:23:dc:a3:04:d0:c4:e9:60:e7:8f:a9:da:b7:
9e:04:21:71:47:b9:bb:7e:5f:b6:5e:0f:8e:f4:eb:
2c:b5:71:a3:0c:65:73:47:b1:83:3d:92:5f:b4:92:
5e:d9:14:62:78:0b:b4:b5:0b:02:f4:1b:8e:90:86:
b5:93:46:18:f6:61:96:9b:ac:b5:1b:ab:94:44:c5:
8e:7d:bb:61:42:11:58:4b:25:31:9a:d0:49:89:79:
fc:03:69:81:b0:8c:04:ad:f4:b9:8c:eb:88:bd:03:
a3:ae:68:5a:73:19:19:8a:c7:0d:9e:3d:17:9d:f0:
01:62:79:69:3f:4e:93:a1:e9:9f:02:d3:cf:82:3d:
ae:9a:28:92:60:48:d4:54:b2:12:b9:ee:4e:26:47:
1f:49:4b:2a:e4:66:72:9e:08:d4:84:c7:06:88:a9:
51:45:20:da:c0:53:69:9d:83:09:30:7d:3b:2e:b3:
5a:b7:8c:05:08:26:4d:9b:bf:08:6b:d6:41:9d:02:
85:99:67:36:58:da:a4:f8:01:f5:47:b6:2e:8a:fc:
4f:91:c8:bf:f6:47:e2:8c:25:9d:24:34:6c:2b:72:
9d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:26:E9:30:7E:AF:5F:61:15:77:03:7D:D3:E7:4D:34:07:1F:6A:C2
X509v3 Authority Key Identifier:
keyid:38:52:06:AC:08:D8:40:C2:8B:F4:AC:56:89:9F:2A:28:F8:FD:CC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/f95969-67ef-408e-a743-e1eb79899242/1/OFIGrAjYQMKL9KxWiZ8qKPj9zMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:04:b1:c2:25:4d:f0:58:e2:68:19:42:67:45:18:05:57:41:
38:69:00:a7:52:a6:b7:e9:42:8d:74:07:59:26:e4:8d:17:23:
91:48:35:90:58:fb:03:26:71:3d:e0:b4:5d:a6:7e:4f:74:4e:
49:f4:d4:98:7f:94:d5:5d:88:24:0e:87:ff:7b:9e:13:e5:8a:
d1:5f:de:39:60:40:b4:16:bb:b5:bb:ba:2b:bc:a9:84:d7:6d:
7c:8c:7a:36:5c:77:de:89:32:8f:a7:2c:9f:94:4a:ae:66:0c:
83:14:9e:70:65:a7:78:3c:2a:78:77:03:81:50:cf:aa:b8:f6:
44:2b:5e:c0:15:58:35:f8:68:03:42:1e:01:c2:bc:c5:f7:56:
f7:5b:ca:27:d7:17:fa:ef:c4:a4:39:73:1f:93:93:2b:9e:f3:
45:e1:de:c7:10:b2:c1:3c:20:5c:b6:45:71:70:7e:c2:62:9d:
6e:0e:8d:18:e2:e2:31:b1:1f:31:fd:9e:d1:3a:29:2a:be:83:
de:c3:8b:bc:e4:bc:fc:c1:77:fb:25:e0:18:4d:05:cf:61:c2:
0e:33:c8:19:d9:93:4f:96:c2:b5:6c:07:00:66:38:ec:21:dd:
df:24:d1:10:6b:62:74:ab:9b:72:c3:7f:cb:66:0e:08:b7:59:
a7:b3:53:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:44:55 2025 by rpki-client