Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
File: O1RMoOK-GOn9dOKBMkowsOotHVI.mft (raw, json)
Hash identifier: 53OxC/6ZuwqBuzapiyrjabcjXLX/7PZ2DmQVJhIJiiE=
Subject key identifier: 77:DB:26:03:FE:9B:92:01:EF:B2:3C:C6:46:0A:AB:B6:AA:F1:51:0A
Authority key identifier: 3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
Certificate issuer: /CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Certificate serial: 01976D3E6EEC42996E5E9F39552DC23E11B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
Manifest number: 0C34
Signing time: Sat 14 Jun 2025 07:01:37 +0000
Manifest this update: Sat 14 Jun 2025 07:01:37 +0000
Manifest next update: Sun 15 Jun 2025 07:01:37 +0000
Files and hashes: 1: MdL7TM_8FI4FSNKpOGmHEkxh3Ic.roa (hash: kNSd9iF0Y8DMXrvxWEyFS2FyQT8gup1m11Nuuk6HbNM=)
2: O1RMoOK-GOn9dOKBMkowsOotHVI.crl (hash: eTN1kiN6Qs+8bGCuAuZUrWHrHnaYqjGttiMYXVl3wX8=)
3: cwI21tJzYqOr9HSPPCz6L9ZgwVI.roa (hash: XU/ushJjB+n9xmj9cQdOxUY6BAOcpjTXGMQ5mCVCcNA=)
4: nKxYgxU46C1nM-kLwKHXoqpeCuk.roa (hash: acmNPfWY5Vqfewon1zfQxYgK/f0iZyi1LFngzxJT1rE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:6e:ec:42:99:6e:5e:9f:39:55:2d:c2:3e:11:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b544ca0e2be18e9fd74e281324a30b0ea2d1d52
Validity
Not Before: Jun 14 07:01:37 2025 GMT
Not After : Jun 15 07:01:37 2025 GMT
Subject: CN=77db2603fe9b9201efb23cc6460aabb6aaf1510a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:33:4b:56:38:8b:1e:46:df:c0:d4:04:22:42:
56:62:3e:be:9e:2e:68:d1:5f:d6:1e:00:da:49:5d:
8b:2c:8c:0a:df:d7:1c:80:85:bc:ec:12:b6:60:e4:
13:81:6e:40:d0:cc:0c:4c:69:b9:8d:99:a2:ba:61:
ac:e9:32:cc:b9:1d:b7:42:64:0c:e6:f0:08:d6:ee:
03:75:a7:ee:eb:bc:6a:db:5b:38:c0:ee:12:91:c3:
a8:93:cb:97:a5:8d:c1:d5:b9:8b:af:6b:89:96:c0:
ee:fd:f0:25:2f:b7:27:cd:03:c0:f3:49:40:c2:4e:
8a:6d:03:5a:1d:1f:6f:bb:16:fa:22:8c:e3:8e:d5:
6a:4e:65:18:b3:aa:7f:71:51:02:51:22:38:e7:38:
1a:e0:59:ec:1b:7d:14:bb:55:2e:9d:e6:83:0d:94:
2e:64:45:6e:25:2f:78:b9:f4:66:2f:74:88:67:4a:
69:da:42:47:84:c4:62:a2:82:d9:9e:07:dc:e5:30:
17:32:a1:14:ec:c5:1a:78:e7:d9:5e:71:a6:22:12:
37:a4:0f:3c:86:56:dc:df:54:fc:5f:f3:fb:b8:78:
4b:af:a3:ab:0b:a8:97:df:60:14:3e:4b:59:fc:51:
65:3e:f2:2b:73:24:41:d0:05:50:72:b6:14:18:ae:
51:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DB:26:03:FE:9B:92:01:EF:B2:3C:C6:46:0A:AB:B6:AA:F1:51:0A
X509v3 Authority Key Identifier:
keyid:3B:54:4C:A0:E2:BE:18:E9:FD:74:E2:81:32:4A:30:B0:EA:2D:1D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1RMoOK-GOn9dOKBMkowsOotHVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3030bb-42c2-4e3c-859a-876a9d7629f6/1/O1RMoOK-GOn9dOKBMkowsOotHVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:6c:16:d4:a3:ff:aa:a3:b7:bc:52:26:2b:a3:6e:39:36:b7:
03:07:c1:cc:5f:85:12:0d:b6:1b:56:20:e3:b2:e8:3a:65:71:
06:bc:c3:68:88:a6:03:17:95:db:07:de:a7:ce:d7:75:a6:71:
1c:9d:d5:79:01:1b:e2:da:53:47:31:c1:bb:ee:6b:75:7a:14:
fe:b1:ad:86:5e:87:2b:d5:fa:2e:65:b3:29:2a:ac:21:08:89:
85:19:28:f7:f5:c3:16:e3:50:98:73:c3:28:48:1b:9f:46:cd:
7e:19:22:26:19:26:ec:f4:65:aa:bd:50:76:c8:e6:6a:1c:7a:
0e:43:3d:95:83:85:c9:0d:67:4b:17:f8:70:4f:21:8b:d3:ea:
c2:cf:db:e7:0c:6d:ef:43:84:37:e7:9c:e6:ad:62:e5:69:4b:
95:bd:cd:83:a9:3b:28:98:26:27:07:c5:2c:7b:fe:51:a0:d5:
63:86:af:60:fa:43:42:2c:fb:ee:6c:ad:b7:12:83:22:3e:1e:
f4:63:66:5a:27:74:17:4c:c1:bd:13:3f:c8:ba:7c:d6:40:98:
8b:8e:43:82:9d:23:17:de:15:70:b3:bc:79:9d:c0:e3:3a:54:
35:dc:65:27:cf:56:0f:cc:33:fe:d2:95:19:c2:25:6d:5b:6b:
da:a9:bb:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:33:57 2025 by rpki-client