Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
File: O2HIth_0q5daL2xn0LzmN5Ni4v4.mft (raw, json)
Hash identifier: 5xJ/OrZW9mXDaM/VR+eQVMTqfNzOrj7au7I39saeZbQ=
Subject key identifier: E2:E7:46:0C:56:D4:BD:09:BF:5B:43:15:75:F9:90:1C:B2:CC:B0:F4
Authority key identifier: 3B:61:C8:B6:1F:F4:AB:97:5A:2F:6C:67:D0:BC:E6:37:93:62:E2:FE
Certificate issuer: /CN=3b61c8b61ff4ab975a2f6c67d0bce6379362e2fe
Certificate serial: 0197703E8815B9ABE3988C7BC233DA4E4056
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
Manifest number: 08A5
Signing time: Sat 14 Jun 2025 21:00:35 +0000
Manifest this update: Sat 14 Jun 2025 21:00:35 +0000
Manifest next update: Sun 15 Jun 2025 21:00:35 +0000
Files and hashes: 1: O2HIth_0q5daL2xn0LzmN5Ni4v4.crl (hash: U3CRBGRJN1MxIVNSJ7N84JypPG8bCQGPqufV1gpijgo=)
2: zPHYYf64cnazRpEP2DM-tC5zi20.roa (hash: KRY5tyMHgi4pvRx1DdmJaDKEtzRxICuicXJ6HWfF+Yg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:3e:88:15:b9:ab:e3:98:8c:7b:c2:33:da:4e:40:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b61c8b61ff4ab975a2f6c67d0bce6379362e2fe
Validity
Not Before: Jun 14 21:00:35 2025 GMT
Not After : Jun 15 21:00:35 2025 GMT
Subject: CN=e2e7460c56d4bd09bf5b431575f9901cb2ccb0f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:36:63:48:c3:3d:85:d3:df:27:67:19:22:9a:
b6:cf:c2:ee:0d:6f:35:3b:fd:e2:a6:7c:f9:ba:7f:
e7:2d:ae:72:38:0b:28:20:91:56:c3:22:6d:47:93:
ae:65:78:8f:8c:70:b0:22:29:fd:24:5e:6f:2a:22:
5e:87:56:10:05:8e:f5:84:5a:37:53:20:78:2c:b5:
04:16:13:5a:af:1f:82:81:b4:aa:8c:04:df:e7:05:
78:dc:df:03:23:40:7f:bc:30:30:60:e7:4b:d4:73:
63:cd:46:60:11:21:8c:f0:5e:03:c0:e9:51:f3:5c:
ad:ea:83:2e:06:d7:fe:7c:f5:35:95:75:e9:43:b5:
5b:b4:17:76:6f:ce:1d:aa:c9:01:d4:35:a8:21:a7:
3d:7c:0f:a2:18:87:68:09:b1:d6:ab:72:ed:52:d9:
3e:b8:4f:9b:f7:a0:17:b5:5a:29:69:21:2a:b6:8e:
3f:51:07:52:50:7f:2a:00:14:c4:2d:01:94:aa:d0:
6c:e0:87:2a:82:de:62:e7:8e:e9:19:b0:d5:a5:d9:
bc:8e:7f:d2:e8:60:73:1a:3e:13:e2:ed:ca:b4:db:
a4:8f:4d:25:7b:e1:d8:da:0a:25:75:f4:a5:97:60:
7d:4a:56:3b:20:80:5e:6a:fa:91:cd:9c:35:c9:f8:
c5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E7:46:0C:56:D4:BD:09:BF:5B:43:15:75:F9:90:1C:B2:CC:B0:F4
X509v3 Authority Key Identifier:
keyid:3B:61:C8:B6:1F:F4:AB:97:5A:2F:6C:67:D0:BC:E6:37:93:62:E2:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2HIth_0q5daL2xn0LzmN5Ni4v4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fc0ed1-5666-4bb7-bb7c-7b627582fd2d/1/O2HIth_0q5daL2xn0LzmN5Ni4v4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:62:46:91:ff:ae:19:9f:51:24:60:1e:26:72:d3:e3:e8:6e:
80:32:48:b8:29:fb:68:0d:62:03:b5:43:9a:69:36:40:60:35:
42:26:de:48:5d:4b:b9:18:06:57:1b:d4:6e:a6:c7:75:18:3c:
a4:b8:56:6e:cc:c9:06:cc:5e:b8:ea:29:08:5c:ed:5b:71:6d:
e1:fa:11:1a:87:92:ea:ec:e5:ac:50:09:31:6c:fe:31:2a:7d:
f4:d8:b9:e7:2f:1d:04:37:17:00:c2:6e:1f:ff:eb:cd:9f:ed:
92:fe:d6:63:dc:e0:d4:c2:8f:7c:31:6b:35:74:c2:b7:10:e8:
ca:fd:27:a1:cf:a1:18:c3:a4:e4:85:a1:44:2a:30:b8:92:69:
8b:3e:dd:4b:77:3c:1b:de:5a:69:83:7e:fa:fc:32:f1:21:53:
73:25:cc:ba:aa:20:0b:0a:33:28:3b:44:bd:18:db:9c:9e:e7:
40:2b:76:9d:d4:b5:4f:c0:0c:a4:65:79:1b:83:9b:4b:c6:fd:
13:41:70:85:83:82:29:52:42:c6:29:d9:60:12:e2:90:ed:71:
a3:37:32:6a:a4:a9:ba:19:6a:e8:4b:20:32:21:21:35:aa:85:
5e:ba:bf:cc:f8:c7:81:41:c0:a2:ed:f2:6d:ed:e8:f2:87:60:
c1:f0:e8:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:02:52 2025 by rpki-client