Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json)
Hash identifier: i3G9Jq5S7WfdXQdv9fMATQFMuQ6p75HBxGMTSp97q+0=
Subject key identifier: F4:A3:CB:5B:63:CB:0F:00:97:EE:6B:BD:EA:98:D1:E0:1F:60:6B:49
Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7
Certificate serial: 01974B1F5FA47C2834DEE577DA75086CF986
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
Manifest number: 1465
Signing time: Sat 07 Jun 2025 16:00:36 +0000
Manifest this update: Sat 07 Jun 2025 16:00:36 +0000
Manifest next update: Sun 08 Jun 2025 16:00:36 +0000
Files and hashes: 1: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: snGDW21CyXZgFP4NE7uOhIGJQO1I87z4d+p4yZY3cY4=)
2: VIlea1HGjGCn_MVKwJV926-pJjE.roa (hash: A01QP610OFwth+XnetlpJQSsjmOQSdq9hALxJi5jMPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 16:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:5f:a4:7c:28:34:de:e5:77:da:75:08:6c:f9:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7
Validity
Not Before: Jun 7 16:00:36 2025 GMT
Not After : Jun 8 16:00:36 2025 GMT
Subject: CN=f4a3cb5b63cb0f0097ee6bbdea98d1e01f606b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:dc:79:88:4b:f6:52:e0:9a:85:0f:c1:a8:cd:
66:68:6b:f2:6b:06:d9:ad:d3:bd:ed:0a:77:27:6a:
48:ec:90:cc:a2:25:e8:dd:62:89:3f:a8:34:c6:65:
c7:d0:01:d0:28:8a:93:9f:82:81:06:e8:a1:fa:37:
ec:af:35:aa:fb:c2:83:9f:d3:46:1e:80:d6:21:dd:
2f:eb:0c:6b:ea:2e:e1:bc:7c:cc:a5:a6:f3:e1:fd:
b9:d6:a4:9e:03:b2:55:46:8b:9c:67:19:d3:53:3a:
95:8a:b8:08:8b:ce:85:28:da:64:1f:99:dc:6f:3c:
0f:4a:c7:cb:ab:fe:ed:38:cb:b0:c0:73:1c:b0:03:
53:65:ae:bb:4a:1a:71:a0:5f:2b:2a:d0:9d:a5:02:
ca:bb:55:5f:15:b8:52:99:da:95:6d:b2:d8:51:48:
d5:b4:a1:a4:62:d9:09:2e:c3:e8:99:2a:e6:a6:e1:
4b:66:d3:95:37:cf:e8:0a:1d:57:c2:09:12:e0:5b:
2b:e4:cc:7d:a9:c9:7e:65:b0:db:6b:9d:08:e2:85:
06:cd:f2:cd:26:23:bf:7a:75:68:8f:26:f9:e2:c1:
e1:e9:3f:b6:e7:b2:d5:0f:8b:17:b3:ae:4a:87:b9:
92:f6:4a:e0:3a:9d:b6:51:12:60:66:4b:2b:e9:bf:
bd:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A3:CB:5B:63:CB:0F:00:97:EE:6B:BD:EA:98:D1:E0:1F:60:6B:49
X509v3 Authority Key Identifier:
keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:8a:ed:e4:23:b1:83:01:8b:91:70:96:c7:3c:ba:84:fe:c1:
cf:fb:ec:98:38:af:87:fe:4b:d9:59:a4:0a:94:22:2e:97:a1:
40:61:2a:e0:8c:e6:85:6c:63:be:b3:f2:66:b9:a9:bc:2b:22:
21:d8:77:07:34:9e:6f:93:ea:ee:88:81:b6:0f:10:9e:95:60:
05:46:41:a6:79:5a:87:5c:da:c1:fc:b0:62:df:02:ba:86:ea:
93:ef:e5:a6:ed:ab:62:6e:01:f4:6e:03:9f:90:39:60:87:e1:
56:3c:96:41:a3:c9:ac:7d:15:63:66:b6:a3:4d:33:ee:55:f7:
00:4c:ef:73:ae:66:f9:3d:0d:64:88:73:7b:fc:b3:51:3e:28:
42:90:ee:60:00:51:6f:ad:69:d3:42:1b:dd:4b:e7:b7:74:bd:
7e:3b:f6:b7:4a:fa:7a:e8:e9:fa:c4:e1:37:7c:ab:3b:b7:e4:
f8:93:ca:85:79:8b:c2:a5:04:4f:18:30:b6:e1:b4:cd:2c:37:
4f:cf:2c:18:f9:d4:08:a9:f4:87:ac:a9:c3:ca:34:e7:13:bb:
09:c2:3a:c1:7e:86:d0:36:75:6d:a9:e8:26:50:fd:17:fe:71:
df:89:5e:8b:f1:83:e1:62:6f:b9:00:cc:e7:c4:67:98:d2:94:
10:34:ad:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:19:51 2025 by rpki-client