Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
File: OACZqBs0b5q8ryYFb1t3CU0c8RM.mft (raw, json)
Hash identifier: 1JmXpWw45we1C1rA9BnKoN7ik5oS3PEbtLO0vZBSofI=
Subject key identifier: 2A:F0:D2:AC:71:86:A0:38:FA:9A:2C:E0:DB:80:72:4A:A8:0A:49:A1
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 019770AC72F1D666F5593F54476FD2E73DAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
Manifest number: 1598
Signing time: Sat 14 Jun 2025 23:00:39 +0000
Manifest this update: Sat 14 Jun 2025 23:00:39 +0000
Manifest next update: Sun 15 Jun 2025 23:00:39 +0000
Files and hashes: 1: 8uKSKM8TVx970yK_aHmjajWuHlo.roa (hash: Kv8ysTx9zq+WIfK6VNPlttN4b3mr4mqd5LylYbnznig=)
2: 9pCmbwuWDKFww6JalPNjMXiQ2uc.roa (hash: crRW/IaBwcSVgY89PTYbAz61UCGYjtm5jlog0eAP9F0=)
3: DfJAzf9Q3L4tEmWPS7qqKDmlgK0.roa (hash: fuVQXP2ZqWav/yCgsPsm3fiqqB9eYt0wXu73N33zIys=)
4: F-WM6V0pDS_ngxIgpNgM_SOKzXs.roa (hash: YycRdDyGTbaVD3BQBXWfEPp9cD6S80QfheVTwZQO9zE=)
5: OACZqBs0b5q8ryYFb1t3CU0c8RM.crl (hash: twXcAWxST7b6D79KSMbOjObOFQFGNIfxk3g9fr/yL4g=)
6: Ox8NDyO7Lu2pVppSpwPpBrklgoc.roa (hash: cdngPKwKptE72CQ/axAKXaUmzgT1mhIjk6pmelzFUgg=)
7: drQvOj9TpOHRytlyOo6kxATgZOw.roa (hash: 4wVUz15BtyiS24LCP9jZgWAlCIUKAL3+afNKe8X1w18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:ac:72:f1:d6:66:f5:59:3f:54:47:6f:d2:e7:3d:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Jun 14 23:00:39 2025 GMT
Not After : Jun 15 23:00:39 2025 GMT
Subject: CN=2af0d2ac7186a038fa9a2ce0db80724aa80a49a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e5:69:a7:32:b3:89:1c:53:51:0e:58:3e:49:
86:96:b3:1a:f6:2f:a7:b8:a7:fb:ae:75:25:53:f2:
75:12:80:f3:9a:83:c7:f4:e6:c1:31:82:79:c7:a5:
f4:45:f4:9f:a9:0a:eb:48:65:f3:4d:ed:3c:eb:db:
32:0a:7c:b1:cd:46:db:5c:c3:25:79:1f:12:2e:a1:
af:8d:1b:81:77:16:3b:7b:25:87:65:80:16:c9:e9:
76:c9:c4:cb:23:0f:9c:f7:31:3d:66:a6:f9:69:87:
67:c0:2d:c9:63:5e:f5:68:0b:d7:b9:2f:8e:eb:f4:
11:64:4b:10:7a:55:53:a2:e1:3d:b8:d2:93:e5:e8:
ba:ef:17:f7:d4:49:20:22:4b:72:82:6e:ff:1f:fe:
66:46:45:7c:15:c1:7b:04:c8:f3:b6:bb:e4:a7:1c:
ed:c9:16:5f:4c:b3:c2:3b:23:02:da:ba:0e:3b:c4:
b7:b7:20:2d:a4:0f:8f:d6:12:3a:02:a6:02:9a:0c:
90:b5:99:d3:ae:ea:30:4c:ae:48:2b:b3:8c:c5:d4:
46:be:10:a9:79:10:2c:c3:0a:19:e4:12:04:26:dc:
b3:e8:56:10:08:f9:20:d6:85:17:b7:b6:c7:ba:80:
74:bc:66:53:bb:61:1f:f4:58:d3:5c:39:84:dc:98:
84:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F0:D2:AC:71:86:A0:38:FA:9A:2C:E0:DB:80:72:4A:A8:0A:49:A1
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:35:f3:11:85:3d:30:a6:4b:73:c0:b4:21:87:18:c8:e2:e2:
eb:66:22:01:66:8f:05:78:eb:44:60:52:8c:9c:95:82:22:61:
f4:df:27:fe:d6:66:f6:e0:1b:f3:08:e0:5b:5c:1f:82:7f:30:
81:f6:bd:e1:be:9f:7c:3d:7c:a3:13:b8:5f:be:40:50:c9:59:
dd:31:02:62:e1:50:2f:53:bb:02:68:bf:bc:1b:5c:96:01:51:
44:c3:11:d1:54:46:7a:19:cf:bc:36:42:9f:7c:98:c4:9a:52:
80:85:72:35:78:20:42:a7:fe:c6:c7:58:39:17:5a:42:b5:be:
16:cf:b2:92:40:92:f2:55:e0:29:0e:01:1e:a0:9d:0d:fb:7f:
cf:30:80:7d:a8:7d:3b:9a:1a:f2:3d:48:11:db:66:aa:12:10:
5e:91:14:92:0d:9a:9d:19:03:41:97:4a:21:ed:f5:00:6b:c7:
49:1b:45:6d:85:f7:b3:92:a6:d4:a0:9f:04:c1:0a:50:1d:aa:
d0:1a:ef:cf:f7:0b:b3:82:74:3a:48:76:3c:5c:c1:1c:78:cd:
f0:b3:bf:a4:2b:22:81:de:fc:39:a5:62:b9:71:38:af:d1:89:
ac:6c:2d:7c:4a:92:e2:df:d6:2f:ee:2f:83:fa:80:d6:72:27:
66:8b:ad:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 01:09:42 2025 by rpki-client