Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
File: 0KOFQs_bHubgdermsQHnu1sUxDY.mft (raw, json)
Hash identifier: yZsRUlW9pprwbQA0EUudakjFIGj8gDKAw94k7jxsba0=
Subject key identifier: F9:C7:D8:37:66:FA:00:50:A5:1D:C8:17:49:18:D8:CB:AE:3A:ED:3C
Authority key identifier: D0:A3:85:42:CF:DB:1E:E6:E0:75:EA:E6:B1:01:E7:BB:5B:14:C4:36
Certificate issuer: /CN=d0a38542cfdb1ee6e075eae6b101e7bb5b14c436
Certificate serial: 01974C68E8B0BD57A0B38697769122DBF4B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
Manifest number: 1216
Signing time: Sat 07 Jun 2025 22:00:33 +0000
Manifest this update: Sat 07 Jun 2025 22:00:33 +0000
Manifest next update: Sun 08 Jun 2025 22:00:33 +0000
Files and hashes: 1: 0KOFQs_bHubgdermsQHnu1sUxDY.crl (hash: UnvU1K5n1Ft2iqV4JDZtqkzJcIQddLGAs1g4UGSjR8w=)
2: KrQvju8wsP_1pgegWQDfP_dBbsE.roa (hash: 41ILiMyCbiBXLBStCWRCt8ZnN2evNZdt0aku7rFi6gM=)
3: MT4hr9PSkUajZkci1pWS9v2orok.roa (hash: qezGbt2cfl90iVziKgXNGmy2fO9q+dUTbPbEn9xA5FQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:68:e8:b0:bd:57:a0:b3:86:97:76:91:22:db:f4:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a38542cfdb1ee6e075eae6b101e7bb5b14c436
Validity
Not Before: Jun 7 22:00:33 2025 GMT
Not After : Jun 8 22:00:33 2025 GMT
Subject: CN=f9c7d83766fa0050a51dc8174918d8cbae3aed3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b8:e7:b6:5a:1a:a0:fa:43:d2:fe:dc:68:3b:
7b:4c:9c:01:c7:95:b2:b4:c3:e7:01:eb:ba:2d:16:
4f:c5:b7:b7:48:5e:33:dd:59:6a:d5:03:59:f1:f6:
aa:08:0a:df:42:3f:10:56:8f:1d:b1:4d:f8:97:f5:
48:0d:b3:93:0d:d3:6b:65:3c:28:7c:12:ea:1a:25:
80:c9:14:11:43:6c:bd:1a:4e:13:cd:0a:34:dd:a5:
b1:fc:ed:7e:f6:11:14:36:fa:b7:6a:08:3e:b7:cd:
ac:e9:e9:83:c6:3b:fb:1b:10:bc:44:ee:21:a2:9e:
c9:d9:6d:8c:ec:31:e4:13:b8:ac:55:dd:8f:9f:be:
2f:3b:d9:e3:68:f8:0c:f2:e4:a4:83:b5:1a:3d:ad:
be:d1:a5:58:2b:a8:93:45:e7:60:35:d3:0f:fd:4f:
6e:d8:91:2b:28:78:a8:1e:74:0a:40:33:d0:8e:ce:
57:4c:1d:1a:32:09:52:e2:c1:0f:a6:ec:be:6f:41:
61:95:8f:7f:f3:4d:b9:c8:1f:9e:77:b1:29:6d:fd:
c7:b9:f6:ee:e7:67:ee:01:34:2b:96:62:63:a0:5e:
eb:ef:57:5e:3f:2b:5c:d6:94:4b:01:49:45:d1:d4:
dd:c7:f4:c6:a9:9d:ce:dd:ea:bd:6a:af:33:43:7d:
db:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C7:D8:37:66:FA:00:50:A5:1D:C8:17:49:18:D8:CB:AE:3A:ED:3C
X509v3 Authority Key Identifier:
keyid:D0:A3:85:42:CF:DB:1E:E6:E0:75:EA:E6:B1:01:E7:BB:5B:14:C4:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KOFQs_bHubgdermsQHnu1sUxDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3f04c9-e6e1-4506-b8fa-40d1911fa7f3/1/0KOFQs_bHubgdermsQHnu1sUxDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:c2:40:e0:e4:04:9f:b2:4f:d5:91:15:c3:53:99:9f:e3:c3:
69:dc:55:1a:e9:25:08:e6:9f:1c:f5:33:58:5d:bf:07:47:5d:
b6:f8:e8:d2:f1:e9:f9:61:c0:6f:51:a3:6e:3c:7a:94:87:53:
27:d1:2d:91:0b:d0:0b:e4:3b:29:1a:23:cd:12:ce:45:b0:e6:
2c:a0:57:4d:20:05:63:fa:3d:56:92:81:04:f3:48:86:01:61:
02:41:62:c2:b9:df:9d:a6:4f:d8:2d:ac:14:80:e2:73:ba:70:
e7:c9:b7:46:45:04:f3:7f:68:c6:46:c6:06:44:15:92:e7:41:
9d:93:0f:d5:f3:4e:12:9e:de:26:8a:f0:a1:2a:3e:44:a3:3d:
b8:da:07:34:d4:8e:aa:f1:85:a6:21:ba:14:5f:26:dc:85:e0:
56:8d:d7:80:1c:01:11:b8:14:f5:23:2b:53:e1:b7:c2:c1:58:
1d:6c:70:5c:5c:cc:67:33:0d:e8:e2:fc:83:ab:14:ce:f7:15:
9b:fc:35:71:ac:52:70:5d:09:f0:79:d8:44:c0:cd:f0:c2:31:
83:17:7c:94:b0:cd:3f:47:92:c5:bf:61:62:47:7f:c7:a9:04:
67:d6:65:7d:55:62:c6:53:60:9f:a5:99:bf:d6:a8:42:5e:44:
d2:11:ff:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:26:11 2025 by rpki-client