Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
File: OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft (raw, json)
Hash identifier: reQQVCbGxxBtFJhvph/PoL853mwsPuV9x3pkwWoIBHE=
Subject key identifier: 9B:8F:88:EC:3E:7C:91:7C:4B:CB:FB:41:A7:22:47:C0:0E:E5:EE:44
Authority key identifier: 38:F2:37:98:B6:73:93:E4:03:9E:3F:95:55:E2:14:D6:73:7C:13:51
Certificate issuer: /CN=38f23798b67393e4039e3f9555e214d6737c1351
Certificate serial: 0197707586AD512FA5C4DD0DB667DA3496B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
Manifest number: 1593
Signing time: Sat 14 Jun 2025 22:00:39 +0000
Manifest this update: Sat 14 Jun 2025 22:00:39 +0000
Manifest next update: Sun 15 Jun 2025 22:00:39 +0000
Files and hashes: 1: OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl (hash: cnOX7Quw8IVqeAAIPs9sV6O/j5A2VNKQu4XqTSYFuII=)
2: Vpoq5ZpSGDP-ZXCmZlKnhArAK_Q.roa (hash: 38YyvusiUhw1DBRUCOnZouY1Y0JBlQCEkMbtx6PZeK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:75:86:ad:51:2f:a5:c4:dd:0d:b6:67:da:34:96:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38f23798b67393e4039e3f9555e214d6737c1351
Validity
Not Before: Jun 14 22:00:39 2025 GMT
Not After : Jun 15 22:00:39 2025 GMT
Subject: CN=9b8f88ec3e7c917c4bcbfb41a72247c00ee5ee44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f5:02:00:29:b5:64:c9:79:17:7f:2e:af:54:
30:b2:c8:99:1c:33:62:c4:40:43:7b:37:87:94:4f:
8a:fe:77:5b:fd:9b:b9:94:f8:68:b6:eb:fc:63:43:
c2:15:ab:f7:27:ea:ea:e1:5e:79:7a:ae:6e:d6:3f:
a0:d6:8f:6b:ae:db:83:c0:bf:60:3a:be:51:32:fb:
7f:f3:10:bc:2e:e4:31:dc:c5:c6:62:c7:9f:d2:55:
6a:7f:6f:73:be:6d:d0:d0:2f:1d:5b:03:3b:93:7c:
ad:2e:8f:0d:f8:37:dc:a7:5f:fe:1f:96:82:06:36:
33:a9:31:09:4b:03:84:16:09:65:be:35:31:43:60:
16:d2:89:3a:02:4e:b4:fe:04:fc:fd:ba:b1:82:66:
85:a9:ad:32:da:ec:92:13:c5:47:82:a1:79:41:60:
07:b5:a3:a2:b8:63:1f:85:92:4c:7a:6e:7b:6e:1f:
ae:d3:76:27:7c:c8:53:38:c8:58:0a:da:d9:4b:a8:
df:8c:df:f1:a2:7f:98:40:4b:ed:0a:7b:ae:61:9d:
d4:ca:c4:f8:51:58:a1:e7:9d:ed:27:b1:c9:7e:0f:
08:03:fb:64:a5:2f:9c:24:49:73:a0:31:3c:06:4e:
99:30:7e:22:9e:69:b0:f3:00:98:7c:c3:ac:4e:44:
aa:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8F:88:EC:3E:7C:91:7C:4B:CB:FB:41:A7:22:47:C0:0E:E5:EE:44
X509v3 Authority Key Identifier:
keyid:38:F2:37:98:B6:73:93:E4:03:9E:3F:95:55:E2:14:D6:73:7C:13:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OPI3mLZzk-QDnj-VVeIU1nN8E1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/9ab4c9-0c10-4671-bdd4-730fcd0e5dca/1/OPI3mLZzk-QDnj-VVeIU1nN8E1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:60:85:6b:42:51:7a:38:36:78:08:33:63:75:a0:33:d7:36:
20:e8:1b:c3:f0:2a:2d:57:82:7e:15:3b:ce:bb:7f:91:15:70:
71:df:30:e2:37:75:82:15:a0:41:30:0e:e0:8d:10:e6:5a:43:
30:1f:28:6d:18:8f:55:bc:96:c8:05:90:37:6f:d4:5a:12:54:
25:00:a1:45:6d:11:8e:08:56:f8:1c:23:f3:2d:31:18:83:42:
44:b1:55:d7:9c:9d:ca:ff:34:b8:86:20:70:8d:51:08:b8:93:
82:7a:5b:95:38:07:4e:35:dc:7d:f2:f9:2d:19:04:cd:79:af:
1e:cb:0e:28:7c:10:a2:18:e1:54:5f:66:98:49:12:58:f4:e9:
e0:f0:ed:ba:e8:60:88:8f:13:81:3c:19:22:d7:20:09:fd:30:
ff:13:af:69:de:bd:c3:f6:fc:97:21:96:a1:46:47:0e:50:90:
0b:12:72:fa:07:78:c9:71:af:6a:f1:af:1e:f6:d3:d6:65:b3:
fc:cf:1b:9b:e3:96:67:84:db:83:3a:36:47:55:3a:c7:87:58:
ff:c9:e3:e5:43:2a:e7:9d:32:0b:1d:49:03:b0:b5:69:ef:8a:
b1:b8:fa:49:9c:b7:cb:07:ae:0d:af:26:98:e8:9d:9c:2d:59:
49:fd:a7:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:13:26 2025 by rpki-client