Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: 0CCKH3eEUsMUtlPQlNANb0J1FXffFdXpKrrpuc+tj5c=
Subject key identifier: 1A:24:49:BF:0F:0F:BA:41:CE:F9:68:7D:35:04:25:DF:CC:19:24:53
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 01976A05E848C1F7A62A567F68F6FF77111B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 0556
Signing time: Fri 13 Jun 2025 16:01:01 +0000
Manifest this update: Fri 13 Jun 2025 16:01:01 +0000
Manifest next update: Sat 14 Jun 2025 16:01:01 +0000
Files and hashes: 1: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: lIX96M54ZUwThb1tiB0ARE8ozVny0lZ0IXtn8g5I7Wc=)
2: UPULz0BbmOL6oB1Lvph6s81bIVc.roa (hash: KEGK8PJbSBsiHtUKaY1bLTWtxHt/0jD8x2QpGJMF8nk=)
3: Uw9JbudeiyQ7Eqq4TZWKYitXR5Q.roa (hash: PECjzeRoLCDiJc+fMhDdhpnjzdeMhIqjV/edQ5qJgEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:e8:48:c1:f7:a6:2a:56:7f:68:f6:ff:77:11:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: Jun 13 16:01:01 2025 GMT
Not After : Jun 14 16:01:01 2025 GMT
Subject: CN=1a2449bf0f0fba41cef9687d350425dfcc192453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:db:56:2e:95:bd:ce:76:f4:a9:4c:33:d8:00:
d3:01:c7:00:39:ca:3a:c4:b4:a4:44:34:47:f7:9f:
73:19:34:78:ac:fc:3f:e0:ba:49:7a:4b:5d:0d:45:
08:b1:e4:9e:7c:5c:b4:8c:38:aa:78:31:84:bf:79:
d0:06:fe:4d:21:7a:b5:3a:3c:44:81:d6:ad:4c:54:
1d:91:1c:9b:d3:93:04:68:4e:5d:c3:32:0f:bb:2a:
c2:79:23:76:94:80:20:5d:9a:88:d6:09:a4:88:c2:
bf:a9:8b:da:fb:a9:0f:15:4a:02:36:ac:1e:4a:5b:
48:0a:1b:85:6d:20:bd:db:40:d1:f0:eb:5b:b3:23:
21:5c:24:25:61:51:a1:2c:5d:ae:d2:4a:16:d8:e5:
f2:32:3e:38:c2:c4:a8:35:36:72:f4:4f:97:d8:0b:
e7:28:a4:ad:56:da:bb:89:97:28:8f:58:86:00:f0:
d3:bd:f7:5d:a7:6f:1f:d6:35:85:4f:be:aa:07:e4:
43:2a:ee:ec:d8:50:ee:10:a9:6b:84:32:9a:98:ed:
80:27:81:81:49:8f:62:08:1f:d6:4c:80:05:b6:71:
0f:52:7b:6d:1f:0c:c0:52:44:39:c1:b0:42:d3:5c:
b7:af:01:20:ce:76:bd:19:94:64:a8:da:cb:2d:bb:
79:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:24:49:BF:0F:0F:BA:41:CE:F9:68:7D:35:04:25:DF:CC:19:24:53
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:13:fe:05:d8:5e:1b:62:66:86:a4:50:2a:8a:2a:54:54:ed:
01:0c:61:b5:c5:85:35:56:d4:24:bb:cd:e4:17:a6:14:49:44:
6a:22:17:0d:ff:55:95:39:4f:cb:11:a8:1d:0c:6f:33:f3:ee:
af:1c:3a:f8:fb:df:cb:65:d6:9e:df:31:d3:5b:da:57:3d:bf:
2d:c8:16:21:d2:5a:4c:9f:e6:62:8e:ca:e7:3b:c5:6d:0e:22:
a8:e4:1f:4f:a4:dc:fa:f2:a0:db:98:a0:3b:f3:44:41:f3:54:
14:dd:b6:3e:f6:be:ca:79:78:0f:7d:bf:b4:79:2e:9e:dc:3e:
b1:e1:6d:f3:98:a1:37:8c:b3:1a:cc:b4:26:06:e1:bf:3f:9e:
8e:52:a1:17:4e:0f:44:03:6f:36:41:49:31:0e:2a:61:70:33:
f9:58:fc:13:47:e7:8b:48:04:3f:d3:dc:41:58:0e:5a:47:58:
12:99:c3:85:6c:67:b5:0e:f6:e8:05:98:59:50:d4:cc:32:f4:
d6:b0:53:cc:76:00:1a:8f:29:1d:83:64:b8:5a:be:fe:cb:31:
9c:fa:09:aa:db:53:46:14:74:24:af:c2:35:3f:0e:35:52:5e:
79:88:04:1e:47:57:66:03:4b:e2:c1:52:c9:ef:a4:bb:90:ea:
d2:8f:97:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:14:42 2025 by rpki-client