Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: IxBnmzmY7uc5WH3g2JoKoBMdgkyNxAeNj3xcQIFHiBA=
Subject key identifier: 08:70:5C:C6:83:EF:C8:23:8D:7D:45:7E:4D:3B:C9:F2:2E:2F:67:F7
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 01976C61C40F89300E750EB49407B2AFC4CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 0D11
Signing time: Sat 14 Jun 2025 03:00:35 +0000
Manifest this update: Sat 14 Jun 2025 03:00:35 +0000
Manifest next update: Sun 15 Jun 2025 03:00:35 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: oEdDVZocJ9BpXOW9Kldw0Xj5Uu4NICNxgxfpPiTMhpQ=)
2: m3UPJQ_Zh7wapyw5537rzzPo3os.roa (hash: EUy+4/7WXUAZtQJhe/6fh4vD4Ks9aUtYKkwAIbRuQrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:c4:0f:89:30:0e:75:0e:b4:94:07:b2:af:c4:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: Jun 14 03:00:35 2025 GMT
Not After : Jun 15 03:00:35 2025 GMT
Subject: CN=08705cc683efc8238d7d457e4d3bc9f22e2f67f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:33:06:fc:f1:fe:cc:3e:9b:8b:ac:c4:2b:41:
38:0f:1b:32:70:20:10:bb:cf:8b:89:df:3a:8d:08:
f4:98:71:2c:27:91:e1:a8:53:ba:d7:fc:dc:ee:64:
0e:e1:be:75:f0:f8:a7:bb:3c:9a:9f:70:52:6f:9e:
be:73:26:0d:ad:2c:91:35:73:b2:a4:31:85:a0:c2:
20:0a:8d:47:87:14:e3:7d:03:9c:01:97:0a:4d:c5:
75:80:91:47:7a:d5:af:1f:ff:96:63:fc:09:16:6a:
b5:93:80:f7:a9:32:35:ce:a8:c7:3a:0d:60:34:0b:
f9:1e:1b:df:f2:1c:f0:72:2d:03:07:b5:d1:25:e0:
43:ac:fe:38:d6:aa:b3:5b:c5:ab:4f:bd:9e:5c:4b:
49:13:f0:e0:55:d6:59:91:df:e2:27:e7:d7:c3:6c:
73:05:5f:46:40:5c:6b:45:56:5d:80:ff:48:a3:90:
fb:75:2f:b4:8e:d2:6b:ab:a9:5e:0f:9b:b1:6a:74:
ff:9c:38:5f:e0:f2:ce:a3:a0:20:ff:c7:d4:52:71:
01:0a:c3:99:48:f5:48:27:75:5e:54:24:c2:69:5e:
a5:ce:12:42:14:9e:f8:81:91:90:d4:fa:3a:69:bd:
1d:fc:62:48:20:13:16:14:8e:a6:39:4d:ec:84:e3:
50:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:70:5C:C6:83:EF:C8:23:8D:7D:45:7E:4D:3B:C9:F2:2E:2F:67:F7
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:c8:4b:88:fb:94:41:37:34:10:95:67:7f:d6:fd:b5:f1:e6:
d2:54:92:e8:f8:1f:08:20:53:b3:4d:2f:e1:93:da:84:d0:c2:
45:5d:3f:89:04:cd:2c:c9:b1:e6:15:14:5f:c4:0a:08:1f:61:
1b:7c:be:20:7e:5b:03:c7:b3:66:10:19:12:73:96:5d:77:a8:
2e:a5:a8:b8:cb:23:ec:2f:79:39:f1:3d:04:df:de:c8:de:e3:
7c:d4:65:cb:56:0f:f1:3f:90:e0:f0:e8:2d:f9:a3:4c:77:28:
6c:00:ee:1e:a6:26:c1:7b:86:3c:64:1f:c6:e5:92:c1:3f:38:
71:11:e7:b3:e5:99:2e:a1:0f:6c:74:61:e5:59:96:b1:1c:26:
56:92:41:4f:54:3a:88:74:21:6b:db:d6:a4:2c:5a:2b:7f:f3:
30:9c:65:0e:d6:03:b7:52:c3:c9:e5:1d:90:87:d6:ac:0c:e7:
4c:83:0b:02:50:1a:e2:00:6a:1b:1f:db:31:06:b2:5f:c9:2e:
38:f6:a0:01:ad:c6:6a:5e:3e:b8:29:12:87:9e:2d:a5:50:44:
11:54:be:ee:2a:ea:57:fc:59:f8:3f:d7:f4:77:d7:c5:5d:fa:
68:77:af:00:13:fa:69:bb:ac:37:52:e4:ce:6e:6e:e5:d7:d2:
36:f4:97:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:43:10 2025 by rpki-client