Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
File: OQW37By46JWiW9SsZ7wxZmFdi2I.mft (raw, json)
Hash identifier: 6UMM7NcNJo0f85u/mnoiY2yXDvih5a2TloW3tYPkGCs=
Subject key identifier: A8:F7:E2:36:FB:55:5A:1B:05:B4:DF:69:F5:90:CC:9F:13:0A:00:D1
Authority key identifier: 39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
Certificate issuer: /CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Certificate serial: 01977D1E4AE27A79CA616281A32C8CAB5F61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
Manifest number: 067B
Signing time: Tue 17 Jun 2025 09:00:26 +0000
Manifest this update: Tue 17 Jun 2025 09:00:26 +0000
Manifest next update: Wed 18 Jun 2025 09:00:26 +0000
Files and hashes: 1: GzEFY4FMaNIn9ALjdEIyqJJseSE.roa (hash: A0TZx6QvZikNrmKwA+Q10TiJHkrQxZ4XZGZdjheoj80=)
2: OQW37By46JWiW9SsZ7wxZmFdi2I.crl (hash: eRBbLBYFPB/hVMC1OYRCDvwbWpyU9AVggz3Tl67WdgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:1e:4a:e2:7a:79:ca:61:62:81:a3:2c:8c:ab:5f:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3905b7ec1cb8e895a25bd4ac67bc3166615d8b62
Validity
Not Before: Jun 17 09:00:26 2025 GMT
Not After : Jun 18 09:00:26 2025 GMT
Subject: CN=a8f7e236fb555a1b05b4df69f590cc9f130a00d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:be:90:50:be:46:3e:40:99:a1:82:66:96:a4:
5a:0b:34:76:d7:74:a9:b7:47:c5:59:bd:1a:17:06:
ef:c9:16:6b:fd:59:5b:95:44:cc:34:e1:7d:13:4c:
23:df:33:d6:cf:dc:cb:90:c1:e0:35:ed:36:ae:b6:
25:10:5e:01:5e:8f:6a:6d:70:6f:9d:bb:28:52:49:
51:45:32:ba:d5:bb:c8:e0:d7:40:6f:42:4e:28:13:
12:52:d3:43:de:f8:42:aa:d7:d7:99:9f:16:13:65:
4d:db:7b:56:8a:ae:8d:73:ab:9f:08:97:e9:1a:19:
c2:55:4a:0c:1a:b7:b2:76:d3:ba:d6:38:e3:52:06:
3b:c0:35:95:15:b9:1b:59:e2:a3:b8:64:e5:f1:a5:
d9:bb:17:ac:3f:d5:89:7b:9a:ba:8f:77:13:31:a1:
4d:b3:6e:af:4e:e9:e8:73:7f:66:3c:28:dd:55:28:
3d:3f:f8:7e:b5:59:3b:f9:de:4e:c7:a8:15:67:9c:
8d:8d:87:db:1d:09:16:04:32:90:e8:c7:ce:fa:d5:
b0:40:0e:97:e5:f7:95:0e:26:ce:f4:6f:65:6f:f8:
c3:74:2a:43:ed:ff:2b:0d:5f:6a:ff:c2:64:7d:1b:
e2:87:13:be:2d:e5:ab:f2:37:98:91:f2:4e:a3:2a:
e2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F7:E2:36:FB:55:5A:1B:05:B4:DF:69:F5:90:CC:9F:13:0A:00:D1
X509v3 Authority Key Identifier:
keyid:39:05:B7:EC:1C:B8:E8:95:A2:5B:D4:AC:67:BC:31:66:61:5D:8B:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQW37By46JWiW9SsZ7wxZmFdi2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/4e6b43-13d7-4d3b-92ed-d9aebe43ef42/1/OQW37By46JWiW9SsZ7wxZmFdi2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:fc:bc:45:85:0b:fb:5d:34:d7:d6:9a:4e:98:7a:c5:00:db:
65:23:ef:77:61:c2:27:8d:64:0a:50:35:49:a3:28:35:4f:b9:
7f:fa:16:2f:8a:ff:6b:dd:0e:71:24:0d:b4:8c:52:2c:66:1c:
56:45:43:32:7d:5d:44:25:93:bb:63:59:17:22:13:ce:5d:90:
2e:05:a9:c8:d5:65:db:af:99:25:96:0d:3d:f9:46:b1:0d:51:
7c:f0:e7:e7:9d:b5:86:61:a5:60:1e:f4:ab:03:08:21:1b:5a:
26:6b:0b:1d:43:59:af:fd:04:38:fe:4b:0b:af:aa:76:b3:2e:
a8:8a:9e:47:50:1d:84:7b:db:79:95:18:30:ef:cd:fa:cc:55:
88:ed:78:04:f2:e5:f1:49:c5:f9:a6:5b:47:64:63:ee:a0:05:
70:d8:7a:13:3b:40:ee:ae:26:a5:a7:68:2a:77:7b:e2:ca:99:
e6:27:94:d5:75:bb:3e:bd:32:11:48:9a:e6:09:fc:e8:cf:ad:
2f:0a:a1:ac:69:61:3b:af:7c:2d:86:65:f3:ec:3f:a1:dd:ac:
e4:c7:03:77:3a:d8:df:80:7f:d6:cf:af:cc:57:0d:e5:a2:4e:
cd:5d:26:a4:70:44:99:a5:96:b5:cb:bf:93:92:14:73:fe:db:
18:6c:5c:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 18:04:11 2025 by rpki-client