Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: t5Zn2/yr+5EXzF9IcNrB76yJflrsp+X067qdrMM87a0=
Subject key identifier: B7:5D:1D:D5:F9:EA:C8:B2:3D:1E:C3:D2:2A:37:B3:E8:07:99:E9:1E
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 0197703EE98F5C4AAA243957582B15E88CFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 0BCD
Signing time: Sat 14 Jun 2025 21:01:00 +0000
Manifest this update: Sat 14 Jun 2025 21:01:00 +0000
Manifest next update: Sun 15 Jun 2025 21:01:00 +0000
Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: AzH7SF6SNlKXYAZpASbM6+GKCct1qkNBtOX4evHGVbc=)
2: S5-p15oe6PO1US7yiwalFk2guhA.roa (hash: RxwUj9qrcB8W+bA9U60Y3Yd+aWieeN2zZTQTfRBMSD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:3e:e9:8f:5c:4a:aa:24:39:57:58:2b:15:e8:8c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Jun 14 21:01:00 2025 GMT
Not After : Jun 15 21:01:00 2025 GMT
Subject: CN=b75d1dd5f9eac8b23d1ec3d22a37b3e80799e91e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:aa:a7:7e:9c:96:55:92:e3:94:09:f3:18:69:
9e:36:30:c9:18:2a:8a:5a:71:0a:70:9a:e3:b5:36:
07:cd:ee:7c:25:b3:b5:0b:a5:f1:67:da:cf:4f:20:
d5:9f:68:ff:31:eb:6e:5f:c8:41:2a:f8:b5:e6:af:
29:a9:a2:dc:6c:33:bc:1f:a1:66:c9:ab:c4:64:9d:
ed:1c:61:95:d1:51:c0:ec:4d:3a:fa:44:4c:3a:18:
f7:7e:f0:78:af:be:8a:1c:ca:b7:6a:fc:bb:96:22:
06:19:20:3e:4a:13:57:33:bf:2a:89:5d:cb:70:71:
b2:32:45:74:81:4c:9b:2b:1a:ca:3e:61:c2:33:8e:
95:52:46:17:ae:d8:4e:65:3a:78:15:1f:16:bc:e4:
6a:31:f8:95:fc:8d:c8:da:2d:ee:2f:5e:a3:cc:e8:
ef:ef:fd:bd:10:21:bb:f9:f4:ba:a5:58:d0:6e:df:
4d:ac:e8:65:ed:f4:b7:e2:81:e1:cf:a7:18:54:63:
22:cf:a5:a2:76:58:1a:37:67:8a:00:f7:6f:33:90:
3e:b3:5e:7e:6d:da:35:61:4d:ad:c6:41:16:f9:b3:
9d:5a:8d:63:73:2e:2a:3f:00:44:13:40:32:9d:22:
58:79:67:34:ea:ef:b8:c2:bb:ef:18:9b:79:8e:69:
42:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5D:1D:D5:F9:EA:C8:B2:3D:1E:C3:D2:2A:37:B3:E8:07:99:E9:1E
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:12:da:a8:26:83:4b:67:f4:f0:f0:53:0a:f5:ab:09:a5:eb:
c1:31:22:98:7c:e4:c0:58:f6:f8:64:ed:27:62:5b:b7:ac:5e:
83:9f:70:33:2d:8d:85:e2:88:5b:f3:c1:94:3e:1b:13:a6:ff:
23:fb:15:da:72:7d:2e:f8:68:f4:3f:b1:ff:6b:e5:f9:44:e2:
83:69:d8:16:33:b2:cb:62:fa:13:02:60:a1:0c:f2:41:3e:a8:
b2:7a:ff:00:d0:63:1a:3a:d0:eb:67:a2:b6:6e:24:86:ad:9e:
31:07:e8:43:23:62:c4:b6:08:32:32:14:d9:e9:60:00:39:6d:
4c:8a:02:68:e2:13:e9:a9:72:bd:8e:d4:c9:ce:78:1b:08:e7:
91:69:63:96:3a:dd:47:b6:eb:5f:99:a0:b2:95:be:0d:5d:29:
cb:26:47:b4:ac:18:f1:45:17:04:4b:7c:1f:ae:86:cd:be:95:
a8:18:ad:95:c7:17:79:74:86:bc:c2:5e:68:ce:d7:fa:09:c2:
79:96:ac:e1:cc:a7:20:9e:48:0f:5f:be:e8:85:78:ff:84:c6:
56:3b:9d:3d:da:39:01:3e:ec:58:40:6f:47:8f:12:b2:7e:7a:
7b:ad:4a:13:1a:ba:9c:5a:4e:aa:dc:12:70:4d:a5:6c:6d:39:
b1:1c:97:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 01:08:27 2025 by rpki-client