Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: OXWjoxEWIYUN12DpJkKfDDtUvrITzUURKU4trVNerTY=
Subject key identifier: E9:7D:71:FF:90:39:B2:CE:B6:C6:30:D2:8E:6D:72:72:A0:E5:24:DF
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 01974DB2A88B56EA3A71718671BC03AEDCF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 1582
Signing time: Sun 08 Jun 2025 04:00:43 +0000
Manifest this update: Sun 08 Jun 2025 04:00:43 +0000
Manifest next update: Mon 09 Jun 2025 04:00:43 +0000
Files and hashes: 1: YZGMIvadW2xPxhoSXpNJb8SDWu8.roa (hash: jQfGmlQO1sTVXZe+wmgboQPBpNBgVW+6jbuLSLsW9ZU=)
2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: GhezGp08IV4krVfKe3ncyosjFQMOXM16rqSDWrkDagY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:a8:8b:56:ea:3a:71:71:86:71:bc:03:ae:dc:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Jun 8 04:00:43 2025 GMT
Not After : Jun 9 04:00:43 2025 GMT
Subject: CN=e97d71ff9039b2ceb6c630d28e6d7272a0e524df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:45:c3:83:b2:27:ac:11:89:b4:8a:80:56:2c:
87:f1:75:d7:aa:ef:a2:7b:1c:80:ef:11:16:8f:f5:
fc:c5:88:0a:3f:78:dd:0f:a7:f1:54:5b:36:2c:01:
50:b5:86:ae:d6:21:7b:14:21:8b:a2:49:aa:2e:00:
d4:f0:3e:78:33:1e:2f:a8:20:14:92:28:a4:b5:86:
4e:af:df:1e:d9:80:47:27:49:91:ea:99:83:b9:17:
87:54:80:46:af:9f:77:15:7a:61:a6:b6:0c:27:d6:
3e:41:8e:81:60:2e:65:5d:d6:99:fb:07:b6:b5:25:
8b:e2:75:cd:d9:a0:4c:e3:77:a5:08:e3:5d:01:aa:
fa:8c:80:22:6b:cb:ea:ed:a8:af:59:21:96:bb:24:
c1:ca:e4:92:0e:5c:16:48:1c:c5:3f:6b:b7:3c:b4:
a8:64:d9:64:70:6d:9f:eb:63:0a:17:0a:00:64:c6:
16:ab:2d:dc:e3:4e:c0:27:de:c4:f9:0c:90:ad:88:
a6:ba:e5:2b:96:6f:1f:36:46:72:6a:ab:8c:f0:dc:
c5:8c:e2:d5:78:01:0b:06:60:8b:1d:0b:ec:66:61:
df:2f:79:7f:4f:d1:59:5f:e2:eb:cc:0f:0b:fd:92:
e3:d9:2f:75:0a:d8:fe:4b:d6:27:37:58:1d:34:fa:
f5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7D:71:FF:90:39:B2:CE:B6:C6:30:D2:8E:6D:72:72:A0:E5:24:DF
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:01:e0:1b:23:bf:cf:8c:af:c4:90:79:2e:40:4e:64:7f:da:
31:8b:a0:ad:c1:d9:4c:bc:0c:88:06:f6:74:81:f2:85:1b:59:
24:5b:65:4b:66:cc:1e:24:3c:71:85:4f:46:c9:fb:06:3d:8c:
14:15:d7:96:44:ca:e1:35:35:d7:f6:4b:09:a8:e6:42:2f:67:
89:8d:7b:75:e4:de:55:0a:c7:8a:03:38:46:cc:42:62:44:ec:
cd:f9:61:69:86:a6:12:b3:b5:24:b2:95:82:41:6a:d1:44:44:
5d:68:90:99:14:c6:d0:f6:b6:07:36:ec:42:12:3a:71:f2:c0:
d6:78:89:31:c9:1e:5e:2f:04:9a:71:c1:3a:26:fe:0a:9e:b2:
20:79:6c:6b:94:54:08:0a:62:2f:50:b4:f9:df:a7:df:fa:69:
3a:14:21:85:0e:32:93:37:09:46:60:78:2c:a3:cb:b7:eb:7f:
87:ec:ab:ac:dc:89:6b:d3:e0:76:7f:19:6d:e5:bd:d8:45:31:
db:51:da:34:8f:02:9c:be:f1:83:18:8f:da:a0:61:e6:d4:d2:
18:4e:4a:ff:dc:a8:28:22:cf:64:5e:51:b6:e4:f3:96:20:f2:
eb:7a:a1:03:63:b0:aa:8f:fc:fb:0d:4b:37:c3:47:c4:24:f7:
e7:c0:f7:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:22:54 2025 by rpki-client