Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: bnmD0CIJ66I6DKOOjne97vCrCOsSQSlCIcTCWSvcbQc=
Subject key identifier: BE:DC:EA:44:0F:7F:F9:DC:9A:78:3E:15:76:98:F5:C1:19:9F:5B:89
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 01976A05DD0022D7B12D9C39D202D525E5BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 0E51
Signing time: Fri 13 Jun 2025 16:00:58 +0000
Manifest this update: Fri 13 Jun 2025 16:00:58 +0000
Manifest next update: Sat 14 Jun 2025 16:00:58 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: 1u38i+NaI+vPQNU8j45DE1ulZNq6T5RiKbMJ4xbOxeI=)
2: T24Mb-6KOyII9Zj4ApmqBzXBKxg.roa (hash: l/FPlArXvYmwy1iwUTLkf9bdXt1EQpVFOKjPM76DwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:dd:00:22:d7:b1:2d:9c:39:d2:02:d5:25:e5:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Jun 13 16:00:58 2025 GMT
Not After : Jun 14 16:00:58 2025 GMT
Subject: CN=bedcea440f7ff9dc9a783e157698f5c1199f5b89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1e:60:4f:08:c3:64:fa:43:f6:e6:8a:dc:08:
ca:d6:9f:68:ca:27:42:b4:56:cc:3a:6c:aa:62:42:
7e:85:6d:40:dc:fe:18:5e:cb:54:b7:e1:4a:8e:f2:
36:b3:39:98:80:d4:c6:21:34:85:cb:78:82:51:79:
b9:fe:89:f9:de:f7:b0:32:8d:43:c7:ba:3c:27:cd:
0d:48:9e:7d:47:0b:e1:8b:ac:05:c6:c5:58:f7:8a:
63:a7:04:1b:64:1b:8d:b3:79:07:2a:51:04:20:6f:
d2:b7:1f:d7:c5:73:52:01:14:f3:45:97:fd:86:65:
4a:39:85:6f:b4:05:83:66:df:fa:cc:a8:14:29:92:
ff:97:75:26:2e:10:da:fe:7d:8c:09:73:41:de:4a:
ec:5c:13:7f:47:b5:0d:34:f9:45:1b:67:cc:b1:05:
10:ea:88:5b:8c:5a:77:ae:15:59:81:aa:74:ed:21:
db:29:e5:a5:0a:df:a5:0e:de:04:24:f9:b8:6d:a9:
a1:06:fa:04:ca:d3:f5:c0:43:a4:3e:7e:61:30:9e:
49:77:24:9c:7c:fb:e6:a4:54:28:65:1c:45:b4:9e:
8d:7d:aa:bf:fb:1a:c5:ba:44:1f:f7:ba:e8:58:c9:
6f:fb:24:bd:25:fe:96:f3:60:d2:29:c4:d4:6d:f2:
52:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DC:EA:44:0F:7F:F9:DC:9A:78:3E:15:76:98:F5:C1:19:9F:5B:89
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:fb:ab:c2:ee:ac:c1:77:e2:30:af:85:14:61:f1:a9:21:68:
f7:74:d2:84:c8:cc:79:f9:16:97:39:3a:90:7e:87:5f:c0:29:
58:3f:e1:a4:28:3b:a6:87:36:63:44:86:43:4e:8b:8b:4a:ea:
7c:95:f8:a2:60:c9:2c:f8:20:37:45:91:56:88:ff:45:a5:fe:
57:81:c7:a7:39:ca:c7:0b:b0:83:8b:26:21:08:d8:5e:9e:ba:
04:e2:54:50:44:44:e7:69:79:de:ca:c7:6d:4c:6f:73:b7:b0:
0d:00:30:77:a8:93:79:c2:54:7f:db:0f:7c:9f:ba:0e:b9:1d:
96:26:67:6a:f5:b5:61:04:fe:78:33:cf:1e:ea:f5:30:3d:3e:
6b:9d:40:5f:31:6d:45:d2:7b:8c:72:17:77:45:b9:53:67:f7:
c6:30:f9:e6:b2:0e:22:6b:65:a6:30:ba:3b:ff:42:96:a1:a0:
3f:60:75:ee:df:cd:2c:76:68:a0:71:18:8a:91:82:63:fa:43:
00:c1:a9:21:2d:c3:69:bf:77:a1:a8:b6:ed:a8:9a:7c:d5:88:
05:f1:70:fc:cd:de:b6:3a:4f:d1:52:70:cb:f7:22:40:25:72:
57:a3:6f:3c:87:e5:df:a2:d0:a3:f1:b1:b1:b0:37:2b:95:bf:
24:ab:3c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:25:50 2025 by rpki-client