Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: 3G4EdDvFZT3VgqYA6ahd3FXMxsUwfqr05z7BVZomD0Y=
Subject key identifier: A4:5A:A9:FE:AA:36:15:D1:11:3A:CB:E8:FD:C9:A6:0D:C7:9D:B1:5E
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 01976C2B6BA48535E490E426CB94179F93F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: A4
Signing time: Sat 14 Jun 2025 02:01:14 +0000
Manifest this update: Sat 14 Jun 2025 02:01:14 +0000
Manifest next update: Sun 15 Jun 2025 02:01:14 +0000
Files and hashes: 1: GdRMKH6WdmmVubPmURRtVnS8GV8.roa (hash: gQYTKVfews/6lfRAQlloM0LgEpj91iqOXwXozcwIpNc=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: hvYI9aQgIcawIhHePNvNcUohDxK4jebIz24xqo/1SJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:6b:a4:85:35:e4:90:e4:26:cb:94:17:9f:93:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Jun 14 02:01:14 2025 GMT
Not After : Jun 15 02:01:14 2025 GMT
Subject: CN=a45aa9feaa3615d1113acbe8fdc9a60dc79db15e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5c:c6:5f:f4:9a:7e:f1:15:75:fe:2a:e5:f7:
a1:f7:9b:a7:e9:7f:03:57:4d:c0:4c:46:a6:06:76:
2a:fc:1d:cf:34:d8:dd:63:c8:eb:da:68:da:01:01:
10:59:72:f4:db:e8:b8:a7:ca:3e:8a:34:1c:c2:bb:
e7:89:27:36:1e:8d:bf:cc:30:1c:fb:7f:3e:1d:5b:
f6:d0:ac:fa:7f:fa:14:ec:6c:cc:72:75:96:0a:ec:
15:fb:c7:59:44:12:c4:f9:7d:5a:19:84:44:24:49:
04:dd:8e:03:10:65:12:30:ad:76:f0:44:8e:5b:5f:
ca:dd:58:ff:71:fa:01:5f:a1:71:23:71:64:51:07:
da:76:33:aa:46:88:7a:08:1e:fb:57:7c:8a:24:57:
22:fd:3e:96:32:d4:c0:b3:b1:1c:ed:5f:dc:74:cc:
89:c8:57:c0:a6:91:b8:18:81:45:f9:0f:99:37:20:
85:1c:0d:f8:7e:b6:22:fa:c4:31:fd:3a:00:c4:26:
4a:11:59:bc:1a:50:7d:5a:68:ab:a4:37:8a:fe:8b:
a8:c6:d7:0a:fc:f2:c3:f5:71:7b:52:dc:5b:92:0c:
be:ea:4a:4c:df:7d:01:36:08:b3:15:d8:d6:d3:6d:
fb:99:63:52:aa:33:60:44:73:91:54:d9:97:e7:54:
08:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:5A:A9:FE:AA:36:15:D1:11:3A:CB:E8:FD:C9:A6:0D:C7:9D:B1:5E
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:03:2d:da:1a:21:f8:0e:7d:76:49:02:91:7a:a3:8d:58:8a:
e4:b8:eb:31:6b:47:ce:db:02:fe:19:aa:bc:da:e4:73:2d:16:
55:4c:65:ac:e4:14:b4:2c:2f:f0:91:5f:00:f5:86:8c:8e:70:
6a:71:20:ad:b7:c4:5e:50:c1:dc:2a:9b:ea:ad:21:87:ef:3d:
98:b8:47:8d:15:ff:fd:82:76:59:7e:65:64:8d:5d:66:99:fc:
6b:dd:f3:7e:02:02:e0:8a:17:17:81:12:c2:2f:10:62:f2:c8:
6f:72:c5:3f:77:96:93:d7:ce:18:94:bf:37:44:5b:0c:a9:bb:
16:7c:7c:67:e4:6a:4d:bf:1c:76:29:18:d0:cf:59:89:6b:8b:
10:15:f0:5f:c6:83:2b:2c:f7:35:7f:41:ab:33:82:33:2a:4d:
c3:ff:0f:3e:36:cb:b7:3b:c0:3d:4f:e7:7c:f7:1b:6f:c3:d7:
18:aa:7c:98:e5:0f:6f:44:34:6e:d8:04:49:33:7c:a3:00:3a:
95:0d:18:77:84:3d:44:99:bc:c8:79:d3:2b:94:c9:0f:cb:71:
e6:44:d9:fc:33:b4:27:07:98:e8:95:4f:65:29:82:af:f8:e9:
18:28:31:55:53:b2:f7:36:6b:92:ca:30:c9:52:2f:3a:8d:93:
20:13:f6:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:57:47 2025 by rpki-client