Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
File: OYhH9wo15xCETpu4omK-3bQLfMk.mft (raw, json)
Hash identifier: BY7o9y7EjhlLTKFg8IMuqx09tG/0i17zioEtfdysbzI=
Subject key identifier: AB:BE:27:86:AC:9F:65:7A:3E:2C:B5:FE:C3:9E:51:A0:37:74:6C:FB
Authority key identifier: 39:88:47:F7:0A:35:E7:10:84:4E:9B:B8:A2:62:BE:DD:B4:0B:7C:C9
Certificate issuer: /CN=398847f70a35e710844e9bb8a262beddb40b7cc9
Certificate serial: 019749D5926A20783863F90A6F1DC012BFCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
Manifest number: 0340
Signing time: Sat 07 Jun 2025 10:00:22 +0000
Manifest this update: Sat 07 Jun 2025 10:00:22 +0000
Manifest next update: Sun 08 Jun 2025 10:00:22 +0000
Files and hashes: 1: AKsS4j3-VaOHBWSMj23g7vx6Zz4.roa (hash: U4YaSKjxHoIRGGCP7ydVCxsh9Cu5QYl71iaS4zOmA2c=)
2: OYhH9wo15xCETpu4omK-3bQLfMk.crl (hash: Ugm5g1BbiFBtAtZzebQh7ICx+zbMVdOlbr+9//GOwhs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:92:6a:20:78:38:63:f9:0a:6f:1d:c0:12:bf:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=398847f70a35e710844e9bb8a262beddb40b7cc9
Validity
Not Before: Jun 7 10:00:22 2025 GMT
Not After : Jun 8 10:00:22 2025 GMT
Subject: CN=abbe2786ac9f657a3e2cb5fec39e51a037746cfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a0:58:ce:b4:ce:d4:62:03:02:82:b1:2e:88:
d1:b8:59:b7:69:0c:54:8b:24:ec:da:7b:4f:c2:93:
f8:9c:e2:d2:54:c1:9b:c9:f2:99:b6:9d:41:2b:b0:
25:73:1f:68:2f:72:10:11:ca:be:1c:50:b8:6c:2d:
b4:16:3a:ed:6b:a7:81:89:50:3e:ab:a0:b8:c9:58:
15:11:14:27:f3:b2:2e:52:9f:14:00:c5:16:1e:05:
62:87:7b:85:0e:45:d2:58:2c:ef:51:8e:e0:ca:da:
9a:59:97:02:db:80:f8:47:48:c2:fd:85:f0:29:d8:
6b:c2:27:39:6a:bf:cd:32:c2:94:78:f0:08:10:c0:
17:2c:34:b6:7b:97:72:62:20:ec:fd:90:8e:36:6b:
6f:3f:f4:af:07:09:22:4e:21:fc:97:95:70:40:33:
32:4e:8e:ab:c0:2f:9a:0e:2d:54:5e:1e:09:d0:d8:
72:cd:c4:96:fc:33:3c:5b:c6:a8:45:a1:df:a2:6c:
5d:af:fe:6c:fc:47:60:44:a4:68:d7:1e:d0:98:dc:
41:af:c2:cb:f9:a5:32:08:c5:d3:2a:8c:75:4e:96:
4c:6b:96:cf:7a:2a:0f:9d:92:19:2d:90:82:63:15:
ce:6e:07:a6:f1:f9:c9:2b:2b:56:eb:25:5b:1a:1b:
15:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:BE:27:86:AC:9F:65:7A:3E:2C:B5:FE:C3:9E:51:A0:37:74:6C:FB
X509v3 Authority Key Identifier:
keyid:39:88:47:F7:0A:35:E7:10:84:4E:9B:B8:A2:62:BE:DD:B4:0B:7C:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OYhH9wo15xCETpu4omK-3bQLfMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/fc7657-063e-4af7-89e6-f9fea34b6b01/1/OYhH9wo15xCETpu4omK-3bQLfMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:55:a2:7c:bc:b8:d3:7d:b8:92:47:b1:51:87:f0:4c:18:6d:
69:56:2b:c9:d8:ad:63:36:72:28:8e:d8:2b:89:8d:11:a8:0f:
05:d6:14:67:1d:b2:47:0f:f7:d3:6e:16:73:28:af:61:e0:b2:
cd:2c:b4:34:22:70:c5:e2:a8:03:a8:c5:9e:b8:c8:91:df:f6:
0d:3e:e8:91:77:f2:cf:7a:6f:e2:d7:88:f1:60:73:bf:a6:ab:
78:97:3f:1c:09:17:7f:7c:76:41:0e:59:8a:cb:b2:93:54:de:
7a:17:83:7e:26:ac:a2:9d:4d:84:69:ee:f7:08:1c:4e:5f:20:
16:25:23:5a:4f:ed:15:a1:7d:7a:13:35:d5:3e:51:57:b9:52:
0c:98:99:54:b0:d7:68:32:4c:8c:ec:ea:40:fc:6b:aa:fe:3a:
f2:87:2b:5d:b7:12:f3:d3:63:13:43:d6:98:08:f6:4b:39:0b:
b5:2d:dd:72:00:68:a9:a1:4b:d4:5c:2b:95:e5:78:6f:2f:4e:
b5:78:99:59:32:c1:79:21:41:b2:a5:00:6c:d8:63:7b:8a:2b:
2a:b6:9d:77:ed:66:b0:0c:c4:9f:ba:56:96:50:b0:26:f8:4a:
84:6a:35:12:aa:ec:13:68:cf:16:59:90:27:34:78:41:b1:44:
ad:1f:77:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:40:57 2025 by rpki-client