Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
File: O849R0p3XOR3Y3FjK8GWyh9Owjs.mft (raw, json)
Hash identifier: Pgl+Eu4r+EAmXE/vKAsh1gvTsG9j3abBI8Yb7+9J910=
Subject key identifier: 30:00:B6:F7:40:26:2F:D6:DC:C7:B2:69:29:B4:E8:5B:71:E3:37:C3
Authority key identifier: 3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
Certificate issuer: /CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Certificate serial: 019787A292026B185E8A0BC41B512D60E497
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
Manifest number: 0237
Signing time: Thu 19 Jun 2025 10:01:07 +0000
Manifest this update: Thu 19 Jun 2025 10:01:07 +0000
Manifest next update: Fri 20 Jun 2025 10:01:07 +0000
Files and hashes: 1: O849R0p3XOR3Y3FjK8GWyh9Owjs.crl (hash: lXKyCNk+jTEWXdyvm1fQBw5roZpAzvAyj5emwBvdD5M=)
2: aqZglDYGnEsB53FUZu6hOgHFRNI.roa (hash: PiTo1HXxs70zjyTF54PbMNKhREuF1Fd5QySzyhgibes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 10:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:87:a2:92:02:6b:18:5e:8a:0b:c4:1b:51:2d:60:e4:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bce3d474a775ce4776371632bc196ca1f4ec23b
Validity
Not Before: Jun 19 10:01:07 2025 GMT
Not After : Jun 20 10:01:07 2025 GMT
Subject: CN=3000b6f740262fd6dcc7b26929b4e85b71e337c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:86:b4:cc:93:ef:e1:f3:06:1f:89:4a:b3:fd:
08:12:96:75:5c:b3:31:0e:52:64:11:f4:3f:c4:58:
ee:22:ae:bb:db:bd:83:28:26:55:32:bf:47:be:2f:
ff:5d:8c:a4:fc:bb:ca:22:e2:ef:50:26:5c:2e:fa:
1d:38:0e:95:33:f4:ba:35:05:73:35:03:c5:5a:2f:
b7:e6:68:5f:16:ff:cd:3c:81:6a:59:48:f0:e3:6a:
91:76:03:92:21:ba:00:1f:d9:b1:d9:ab:6b:7e:b6:
0f:be:44:67:7f:20:a6:25:1c:94:4b:2a:72:7b:1c:
a8:fb:c9:ef:16:7b:f3:18:e7:9f:ac:a3:27:12:cd:
e6:5e:0a:80:85:66:a3:f7:b7:e6:3b:8d:ff:6f:b3:
66:63:8c:b7:6f:c1:30:f9:a7:61:b0:cb:e2:bb:c0:
3c:9b:27:6c:3e:77:f5:e5:ea:2a:ce:cc:1d:0a:8a:
65:b7:d3:4e:f2:d7:80:a8:60:92:f8:55:45:7d:d4:
e8:9b:a0:e8:d2:7c:f2:8c:86:2e:e6:e5:6a:36:8c:
62:fa:f9:89:d0:02:78:16:f1:c6:5c:28:ac:85:43:
e7:d5:75:f8:10:29:f5:2c:5c:b8:a4:c9:a3:35:c9:
2b:d5:2b:7b:fc:01:74:0f:56:ad:89:4e:ad:7e:80:
ec:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:00:B6:F7:40:26:2F:D6:DC:C7:B2:69:29:B4:E8:5B:71:E3:37:C3
X509v3 Authority Key Identifier:
keyid:3B:CE:3D:47:4A:77:5C:E4:77:63:71:63:2B:C1:96:CA:1F:4E:C2:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O849R0p3XOR3Y3FjK8GWyh9Owjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/5338bd-f321-4d51-be4a-63cc6c67c995/1/O849R0p3XOR3Y3FjK8GWyh9Owjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:5c:11:91:50:04:7d:f8:16:23:eb:60:c6:a4:db:94:e7:e3:
02:71:4a:12:2a:12:09:42:8a:70:c7:9f:1d:74:ed:a9:5e:42:
4c:30:4d:73:dd:b9:12:82:21:f9:40:69:7f:46:d1:9d:54:54:
90:57:33:eb:f0:16:28:62:65:40:e6:6f:01:35:75:fe:4b:06:
5b:10:b4:f8:ea:96:7d:cf:ee:47:d4:8a:59:57:4a:57:83:65:
45:4a:d8:0a:08:ac:6f:91:ef:19:82:2b:ce:02:4a:f3:de:cb:
6d:f2:f2:8a:d4:1e:e6:2c:dd:82:b4:5c:f8:c1:8b:6e:29:97:
e3:56:96:0f:ac:0f:3a:90:8f:54:8f:2d:7a:6b:a8:c9:cd:4f:
29:ce:8a:0d:93:e7:a4:e6:f3:49:2c:ba:04:59:32:96:2a:b7:
8a:d7:aa:ce:08:d8:88:6b:ab:6a:a0:ac:7b:ae:bf:2e:aa:9f:
fc:f3:06:29:cd:44:86:5d:ac:52:f7:41:23:74:c2:43:54:14:
96:10:6e:b2:7e:4d:e0:fa:2c:32:48:c5:c3:5c:87:35:a9:7a:
46:93:65:2f:9b:e8:4e:32:fe:1b:33:66:9f:7a:68:d1:79:04:
51:52:38:cb:b3:48:7e:be:b8:0a:5f:12:db:67:c2:4e:4d:ba:
f9:0e:56:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 18:48:48 2025 by rpki-client