Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
File: O33D0CKCjk9bNr3vehiwuwz7rgk.mft (raw, json)
Hash identifier: HFlNhcPcZf+DJ4Um9Ro8wyZ22ylKWu3lHyHxme/BbN0=
Subject key identifier: C2:8B:CA:58:75:DA:5B:AE:C7:9A:EB:1F:7E:B4:09:C5:B0:D1:7B:FB
Authority key identifier: 3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
Certificate issuer: /CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Certificate serial: 019746D4CAF6070BB9244468A26E6089D7D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
Manifest number: 0D8F
Signing time: Fri 06 Jun 2025 20:00:40 +0000
Manifest this update: Fri 06 Jun 2025 20:00:40 +0000
Manifest next update: Sat 07 Jun 2025 20:00:40 +0000
Files and hashes: 1: O33D0CKCjk9bNr3vehiwuwz7rgk.crl (hash: 8PzDxLSX/eYQIJ+dT+L46mdZHK7Ebiq4W/TspGI63No=)
2: qE1MDKZGRZtaXQk1vt-cL_6WtUI.roa (hash: 3oUc3w7eQj0W70nllC5MQS//X4mPSXNpxrBOqqqOaLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:ca:f6:07:0b:b9:24:44:68:a2:6e:60:89:d7:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Validity
Not Before: Jun 6 20:00:40 2025 GMT
Not After : Jun 7 20:00:40 2025 GMT
Subject: CN=c28bca5875da5baec79aeb1f7eb409c5b0d17bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9a:07:62:d8:2a:52:0e:70:bc:9d:a4:ad:44:
a7:50:b6:49:1a:43:61:3b:24:5e:5f:b0:4d:dc:d0:
d8:ae:dc:3e:55:9a:d2:01:fe:30:7a:fc:1c:a2:51:
76:5d:c3:36:28:19:93:f0:8d:82:09:67:a2:4b:48:
37:1c:53:0b:dd:ae:3d:77:46:75:c9:50:c1:fe:a8:
ea:63:aa:18:40:8e:d1:70:39:72:71:28:44:9a:cd:
d1:9a:8d:71:f3:e3:3f:9a:a7:11:14:12:37:29:6c:
9d:ca:ac:51:91:e1:70:f4:df:b9:35:fe:56:cc:35:
4a:6f:1f:da:b1:34:89:a8:88:e9:ae:c6:47:49:dc:
91:8d:df:9a:4f:8e:fb:c5:3d:24:d2:48:0b:38:ef:
65:cc:15:e4:06:b3:85:84:75:59:d8:81:df:af:25:
6e:3c:02:4c:f5:98:18:a7:0f:45:2c:d3:9c:e0:96:
6f:30:33:36:db:93:51:52:f6:27:2f:4b:29:8f:ac:
e6:60:4c:12:d8:95:20:c7:5a:59:19:e6:4f:e2:9b:
36:ec:34:d6:bd:af:8b:4b:b9:a9:74:c3:a9:90:77:
21:b9:cf:ef:ec:b4:9b:98:10:0f:d1:69:27:04:7e:
a9:89:0b:30:33:e7:34:50:60:7d:e6:f3:23:b9:b8:
10:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:8B:CA:58:75:DA:5B:AE:C7:9A:EB:1F:7E:B4:09:C5:B0:D1:7B:FB
X509v3 Authority Key Identifier:
keyid:3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:dc:c7:db:08:5b:4d:d8:7d:fa:47:52:f8:1c:1b:68:1d:1f:
7a:fd:b4:72:e9:4e:71:97:56:68:e5:cb:2c:7f:f1:c8:3f:f6:
b0:d3:8f:d6:b8:e2:eb:7d:75:25:15:4b:2c:37:b4:20:1a:34:
03:72:44:73:37:dc:81:0f:bd:62:8d:17:52:f4:0c:4a:cd:6f:
7a:a1:9b:80:7a:9b:e6:29:1d:9c:72:2a:9b:ff:e5:5c:03:20:
f5:6c:b9:23:36:03:91:ed:b3:1b:c4:13:e3:0e:4f:d6:24:0b:
8b:f8:5b:5c:5c:02:a7:d9:1a:88:0f:c2:e6:12:3b:8c:54:0e:
c2:0c:01:89:70:67:98:aa:4d:4c:2c:78:86:07:df:42:c1:6e:
7a:17:13:0b:bc:57:40:1a:a9:fd:d7:8b:1d:f6:57:47:01:c3:
b3:3a:3d:93:c5:1c:5b:c5:fb:b3:ff:af:e2:d8:40:31:83:86:
a8:cc:36:e9:a5:ed:41:57:70:a5:38:1c:b7:9f:84:77:31:ab:
09:d4:8e:1e:79:a6:f2:fa:45:49:30:5d:57:d0:ca:81:87:32:
d5:a1:ed:eb:a4:d4:10:ec:66:94:48:6d:69:a2:d4:b1:06:50:
c4:fe:61:7c:4a:32:b9:d8:d5:c5:88:53:d7:63:46:6f:3f:67:
81:c3:54:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:16:25 2025 by rpki-client