Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
File: OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json)
Hash identifier: 0sbQS9ITzrIwMWqRbdl47Op5sQQyQR9jcgBVyi/s4sc=
Subject key identifier: 24:2D:D6:5A:63:BB:99:91:8A:8B:EB:19:B8:F8:E2:01:D1:1C:21:D1
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Certificate issuer: /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial: 01976FD115DF58AE923E1DAD177BA346D799
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
Manifest number: 1524
Signing time: Sat 14 Jun 2025 19:01:02 +0000
Manifest this update: Sat 14 Jun 2025 19:01:02 +0000
Manifest next update: Sun 15 Jun 2025 19:01:02 +0000
Files and hashes: 1: C_zGKKe9EmjFWVKBb9utgZ7LvBo.roa (hash: DBtQlC6QblgPpVW+sAN+YH267kvW3kiRyXFujtkor/8=)
2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: MvJ86HcLKx6FscFrIAmFkg3+8+y06jB3oJ8paEkTzO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d1:15:df:58:ae:92:3e:1d:ad:17:7b:a3:46:d7:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Validity
Not Before: Jun 14 19:01:02 2025 GMT
Not After : Jun 15 19:01:02 2025 GMT
Subject: CN=242dd65a63bb99918a8beb19b8f8e201d11c21d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b7:d5:b7:c6:94:60:c9:39:c9:95:ca:96:6f:
d0:d4:1b:5b:69:58:ca:03:16:dd:31:f2:da:d5:9d:
ad:e2:42:12:97:99:96:9e:21:ba:88:7f:25:a1:08:
e0:b4:2b:88:07:48:40:6c:3e:b7:35:38:a2:64:8e:
c4:95:b2:81:96:25:81:74:1f:ef:b6:f3:c3:82:fa:
1f:64:6d:1f:55:bc:21:65:23:99:8e:c5:24:56:a8:
10:c7:5c:a2:69:77:85:f2:db:81:00:a7:8d:ff:37:
9e:fa:79:df:06:a0:ba:0d:32:f2:db:c9:6a:ca:c8:
60:4a:f2:0c:72:6b:91:2b:ae:36:0f:d9:6f:22:b7:
3c:e0:23:93:6c:2a:fd:9f:50:b8:2d:17:e6:51:bc:
c8:85:46:f0:f5:77:87:ec:ec:e4:a9:34:08:41:55:
fc:98:49:4b:e3:a1:a9:c6:61:df:cc:ca:94:04:d9:
6f:35:78:b3:67:34:66:bf:69:e1:17:be:0f:98:92:
3b:ad:74:0a:0d:21:51:c6:8c:f2:5c:da:6a:0e:af:
9f:32:82:93:ab:70:e9:3f:d0:b0:85:43:05:d8:18:
3a:09:c1:8f:3d:4f:4a:d3:c1:70:29:eb:0a:99:23:
bc:5f:85:3e:f5:75:22:b8:1e:05:60:07:dd:b7:f9:
fc:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:2D:D6:5A:63:BB:99:91:8A:8B:EB:19:B8:F8:E2:01:D1:1C:21:D1
X509v3 Authority Key Identifier:
keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:d1:25:88:ea:78:f7:65:24:66:ad:40:8b:bf:17:8f:86:85:
51:af:7a:43:08:d5:48:93:ad:17:d5:4c:6d:35:40:f5:dc:82:
24:e8:07:0b:6c:4d:84:66:5f:46:82:0a:75:72:3f:08:e3:fa:
b4:45:26:c8:d6:2f:7e:48:b5:9b:fe:d9:67:15:9f:04:05:69:
49:3a:71:cc:db:ed:97:45:be:ea:01:72:c5:6d:c4:ed:5d:a4:
d5:80:37:83:a1:31:3c:76:dd:0d:75:fe:f2:16:2d:30:0c:a3:
45:3b:57:7c:ee:d0:84:f2:06:26:a5:93:81:ac:9c:ff:3c:67:
f1:03:11:80:fe:ea:c2:79:18:f2:43:ca:ed:37:06:1b:84:ff:
6b:d3:a1:be:69:28:2b:7c:3a:2e:d6:56:3c:3e:a4:2c:15:6c:
e6:53:e6:9e:3d:dd:c0:b0:0b:ac:48:10:ad:fb:50:76:65:00:
92:4e:50:36:81:69:73:99:cf:3d:6a:22:e8:0b:87:21:c5:65:
0e:3b:2d:4e:7d:73:c3:30:f3:a6:5c:68:40:f7:44:27:66:6a:
1f:cb:04:d1:8e:3a:20:d5:39:58:32:f0:fd:d8:9e:5b:cf:f6:
9b:f6:5e:98:67:20:4e:b6:14:57:29:5c:1c:8e:91:e5:26:3a:
51:39:55:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:51:24 2025 by rpki-client