Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft
File: OoLcXHHOpyxlsCahJnifOIZXC6Y.mft (raw, json)
Hash identifier: VH+nXj5EWla6nzxiAfhWrAg5eCm+Y+HWs+8I1M4398Y=
Subject key identifier: 54:6D:93:33:E1:50:70:89:04:D7:7D:94:C9:CC:BB:3F:69:5E:99:4C
Authority key identifier: 3A:82:DC:5C:71:CE:A7:2C:65:B0:26:A1:26:78:9F:38:86:57:0B:A6
Certificate issuer: /CN=3a82dc5c71cea72c65b026a126789f3886570ba6
Certificate serial: 0197C9F1EDBB1062BE52A1DE1F35C5F62F6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft
Manifest number: 15BC
Signing time: Wed 02 Jul 2025 07:02:44 +0000
Manifest this update: Wed 02 Jul 2025 07:02:44 +0000
Manifest next update: Thu 03 Jul 2025 07:02:44 +0000
Files and hashes: 1: OoLcXHHOpyxlsCahJnifOIZXC6Y.crl (hash: FrWIlSf+4C/9VqLLM9YQfPuhUFOnfszHVfgX7HkBI7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 07:02:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:f1:ed:bb:10:62:be:52:a1:de:1f:35:c5:f6:2f:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a82dc5c71cea72c65b026a126789f3886570ba6
Validity
Not Before: Jul 2 07:02:44 2025 GMT
Not After : Jul 3 07:02:44 2025 GMT
Subject: CN=546d9333e150708904d77d94c9ccbb3f695e994c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1c:9f:b1:0b:8a:84:ce:b4:ea:fe:a0:78:2f:
48:04:fe:87:49:24:e7:0b:a0:6a:88:5f:26:ab:4a:
64:13:c6:ae:9b:01:ac:9b:d4:d7:1a:66:8c:6d:cf:
a0:92:cc:4e:b4:83:1e:a4:68:d5:1f:8a:1a:06:63:
ba:f2:86:10:ee:d8:00:eb:0a:01:06:76:43:bc:b8:
e8:07:d3:c0:66:62:0f:33:bd:3e:80:d3:9e:24:20:
63:ec:c7:7f:14:92:54:aa:18:16:56:a3:b2:9b:35:
3d:3c:42:85:d1:5e:bf:ad:3a:ae:47:c7:88:7c:d4:
ed:55:b2:83:71:2a:41:02:aa:7b:8d:81:2f:75:f5:
af:f6:a5:09:be:67:a6:77:0f:74:b6:2b:58:5d:3e:
a8:17:8c:2a:38:eb:2d:df:b3:0f:12:4b:93:12:20:
14:2e:41:5e:97:ab:a4:ca:ad:7e:d1:f5:f7:0f:f9:
d9:8d:37:d0:ef:cd:05:0f:44:f3:ac:8b:35:06:49:
b2:66:68:f5:08:a7:00:b0:df:91:8f:f5:e8:55:40:
69:56:6d:70:2b:d3:b9:80:4d:31:5f:a4:65:88:08:
c9:fb:50:df:d5:2a:af:ae:50:68:69:0e:38:45:f2:
b7:35:3e:b9:e0:57:53:c8:4c:0c:f9:07:55:1f:ed:
23:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:6D:93:33:E1:50:70:89:04:D7:7D:94:C9:CC:BB:3F:69:5E:99:4C
X509v3 Authority Key Identifier:
keyid:3A:82:DC:5C:71:CE:A7:2C:65:B0:26:A1:26:78:9F:38:86:57:0B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:eb:b7:95:43:84:c1:d7:db:75:1e:57:0a:24:d2:37:40:c4:
6a:77:38:62:55:84:47:58:e1:b1:e2:27:19:86:59:21:8f:83:
72:40:f0:bd:d0:33:5e:7e:2e:29:ff:49:b0:5d:10:50:40:7d:
c5:c5:96:e4:0e:7d:b4:99:04:e9:f0:d2:23:45:0a:64:f4:73:
c4:c7:31:12:34:82:bc:22:6b:14:da:f3:da:6d:29:e8:a5:0d:
e2:d5:b1:f9:64:81:24:8c:c3:6a:1f:d8:9b:b3:90:18:5a:51:
e3:d2:42:20:37:4f:e8:ec:2c:44:c4:36:0c:07:21:79:13:13:
f3:6f:c6:10:c5:bc:4b:37:39:4a:6f:34:63:54:79:1b:5b:fd:
55:ab:36:a9:38:d4:24:da:d8:f1:21:d1:d1:0e:02:ad:1d:3b:
d8:ad:53:aa:b3:78:2a:22:4a:46:07:6a:1b:be:73:ab:53:6a:
82:d3:ba:e5:78:65:5d:67:cc:1b:bb:3f:3c:1a:cc:b0:f6:f9:
be:a8:21:c2:d4:20:b1:22:e1:93:79:48:e1:95:85:4f:42:cc:
af:19:bc:03:56:c2:ef:ee:6d:b6:55:91:47:7f:9d:df:00:56:
e1:71:77:f6:86:40:4e:60:b2:4b:12:78:df:62:2c:42:78:e8:
e5:89:2b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 14:13:00 2025 by rpki-client