Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
File: OQJ3OPl4_tokqdh7DLi7mqevVA0.mft (raw, json)
Hash identifier: Y6rgtXjF3RCTvI3Xp78WHFGrwxtMmvxzFEHX01sTDy4=
Subject key identifier: BB:2A:F6:10:49:21:90:86:5B:B1:56:0C:06:12:37:81:56:91:B9:3C
Authority key identifier: 39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
Certificate issuer: /CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Certificate serial: 01977753D5B7709578B6333A783346DD28D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
Manifest number: 159E
Signing time: Mon 16 Jun 2025 06:01:12 +0000
Manifest this update: Mon 16 Jun 2025 06:01:12 +0000
Manifest next update: Tue 17 Jun 2025 06:01:12 +0000
Files and hashes: 1: OQJ3OPl4_tokqdh7DLi7mqevVA0.crl (hash: Iq32SmC5LVuoLBSqBGo2guK8mNUH1Mm45lXM8Yi9Ox0=)
2: THEjTsFNcxDVZEOdq3GfXqXC4zc.roa (hash: x5CBmcScUC+Y/Wuw5WgYT+dNtpSqSEasQSVqzZJLzc4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 06:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:53:d5:b7:70:95:78:b6:33:3a:78:33:46:dd:28:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39027738f978feda24a9d87b0cb8bb9aa7af540d
Validity
Not Before: Jun 16 06:01:12 2025 GMT
Not After : Jun 17 06:01:12 2025 GMT
Subject: CN=bb2af610492190865bb1560c061237815691b93c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bd:a5:12:c6:72:bf:b7:17:49:b8:be:d7:f7:
fb:f2:85:5e:19:d6:64:d0:cc:90:79:94:92:f9:87:
ba:95:25:e2:8d:c4:c9:71:c1:91:c0:86:8f:18:6a:
cc:15:1c:f8:eb:0e:8a:1d:c4:e6:56:26:f8:b4:6c:
ae:54:57:e4:fd:3e:bd:de:2f:5a:60:98:50:7b:19:
ff:5c:cf:0e:46:45:6b:d2:c2:f0:1a:17:21:97:fc:
00:85:68:8b:53:a4:68:76:5c:69:0b:d2:f3:d0:ef:
8f:bc:b4:58:ca:e3:fe:61:57:7a:aa:e1:e9:fa:e3:
b5:ef:22:43:75:93:84:c2:38:a5:42:78:44:b0:57:
df:6c:e3:15:90:ec:fc:7a:33:a2:7b:2d:8e:1d:7d:
15:3d:cc:c5:d5:4b:55:c0:dd:8b:9f:6b:79:15:7e:
04:96:1f:8f:94:09:e8:a3:73:c8:95:b1:c4:f6:e3:
3b:24:a7:96:b2:2e:23:9e:2d:a3:76:d5:ae:d8:e2:
a8:32:d5:c4:3f:43:d7:9d:ed:09:b7:c4:22:b3:c3:
38:f3:2e:32:10:af:0f:02:b8:59:7a:b9:c9:5c:0f:
0a:13:08:43:d6:c3:a7:dc:0b:bb:95:64:60:2b:85:
a3:46:86:9e:71:be:f7:37:59:c5:34:a3:52:f2:2f:
5d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2A:F6:10:49:21:90:86:5B:B1:56:0C:06:12:37:81:56:91:B9:3C
X509v3 Authority Key Identifier:
keyid:39:02:77:38:F9:78:FE:DA:24:A9:D8:7B:0C:B8:BB:9A:A7:AF:54:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQJ3OPl4_tokqdh7DLi7mqevVA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b9117c-51c5-4af8-bbef-f5d8ab7c15f0/1/OQJ3OPl4_tokqdh7DLi7mqevVA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:10:0b:d5:5a:e8:37:e9:d8:8f:5b:cb:81:21:de:ca:b6:2a:
34:98:41:9b:39:e4:f3:e0:bf:2f:bb:24:6e:d6:1c:2c:58:db:
49:3a:3d:37:49:01:e9:e5:5d:98:cc:e1:4b:e0:15:a6:29:88:
9a:18:a3:db:81:0f:a3:e1:e0:18:39:5c:37:ba:17:6e:c4:cb:
6d:23:c4:7f:7b:20:09:02:e4:95:b2:34:6c:84:54:e4:9b:55:
04:09:67:fe:d4:2e:dc:8a:97:43:7a:f6:6c:e4:fc:f4:7b:8d:
a4:5e:53:b3:64:c5:e9:7a:5d:88:9a:12:bb:19:84:ea:cf:c2:
81:6f:4a:44:6b:e3:80:eb:79:9b:6f:45:5d:fc:30:a7:1b:13:
28:b9:bd:cb:70:4a:88:c1:c5:01:a9:b1:da:96:44:2e:c3:38:
6c:89:7e:e8:6c:24:46:74:a0:a1:b3:56:97:17:27:d6:eb:b1:
f5:1e:0f:5f:22:d2:23:ff:b2:c4:84:7c:e6:3a:23:2a:81:1e:
74:f8:b6:7e:f5:30:7b:84:a9:d2:c1:ca:56:4d:6c:19:68:43:
8f:e1:40:c2:cf:e8:40:cd:a8:a2:c0:8d:77:bd:fd:a7:27:d6:
e1:36:f2:c2:13:fc:4c:b0:9a:9d:13:af:4f:07:93:34:18:62:
e7:2c:b0:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:13:53 2025 by rpki-client