Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft
File: O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft (raw, json)
Hash identifier: RiC7XO8LMBBFAEUr64tj+hyFgFSX4/wkMrFOwc1xrWs=
Subject key identifier: 85:14:5A:B0:68:58:48:04:18:8A:58:FC:2E:D1:66:23:BE:72:07:FB
Authority key identifier: 3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B
Certificate issuer: /CN=3bfa6636fe6440acf293b75705a7a1dcada8420b
Certificate serial: 01976E50A6138C1809C32B22F78504EDD573
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft
Manifest number: 1597
Signing time: Sat 14 Jun 2025 12:01:08 +0000
Manifest this update: Sat 14 Jun 2025 12:01:08 +0000
Manifest next update: Sun 15 Jun 2025 12:01:08 +0000
Files and hashes: 1: 9BmVkWHqnPagXm5os2wnNWK9INk.roa (hash: 8RngoNykTFTJnIq5oyzFYRTf3TP7cyLKV5cry6M5mgE=)
2: O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl (hash: ks1FrtI0OY5LSnWGuPGR0Sco97Gmox+ZrN9DSLQUPzM=)
3: UceenS0AW37r9tIac-IPww_60R8.roa (hash: V8RGgQn1l8C/6JS3VLbt67ThWSSYzYF+1zDXdf2gvmc=)
4: XMfgeWsouW7zDItYh1JZ2jjj45k.roa (hash: vbzvSSJRPNTDibm8O4OpKJZcb0gn8EqIPSb4vf2O1YQ=)
5: bfaBM6FlZYXa4nbuYDgVUb-kZ3Q.roa (hash: xgsMr2NauAKQSxWJwA/kjcmJfb7a4hHGqMdZNQtzfIo=)
6: ect9rt1iTOwU4l499MLwvhBDleI.roa (hash: uzI2RBjcPd1qUaeOmN2JzrZzLgn4U0x7LpGFh6u7YtQ=)
7: k4SuTTWtdBVQ_LKZQ1KA6lDONew.roa (hash: wlxEmhfh10lsvP/Vr0aaNNA3fnG6+QPuVB7G+98rWuk=)
8: n15MEYNvv2pMvnP0JWDh9ke-rMw.roa (hash: a5c2NX6rzpDN08ss2QyMsYiZjq6GT9uV8kCAFrcH1WA=)
9: wb50_D1ewkMOUFxLDz2rdaS7yFE.roa (hash: oMtAJWBhFmyN0NJmKrxaTP7Y/Gbn/GmAXozjV5Dt6I8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:50:a6:13:8c:18:09:c3:2b:22:f7:85:04:ed:d5:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bfa6636fe6440acf293b75705a7a1dcada8420b
Validity
Not Before: Jun 14 12:01:08 2025 GMT
Not After : Jun 15 12:01:08 2025 GMT
Subject: CN=85145ab068584804188a58fc2ed16623be7207fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a4:6e:90:52:69:6b:e8:95:37:0a:c2:5c:e3:
12:62:7b:77:48:9d:61:f9:d7:5c:62:61:2d:23:a0:
8d:88:c9:11:66:04:6c:3d:2c:ed:e6:23:54:6d:cc:
6b:2d:a8:1f:a0:8b:f1:95:73:f0:1b:1f:40:ec:a9:
9c:f0:98:be:d1:3c:77:fe:70:a2:bd:04:bf:3e:33:
f0:9e:a8:cf:d3:6c:64:2e:86:ef:eb:eb:1d:62:ee:
e9:ed:2d:42:ab:7a:fa:18:cf:ba:44:78:39:3b:b4:
38:d2:cb:85:0f:1f:da:d3:63:00:7c:c7:35:59:4b:
97:69:19:0e:ea:7c:c7:b4:97:81:8d:ee:58:01:9c:
04:79:ed:18:57:9d:2c:d5:bd:1d:8a:42:32:92:a9:
d2:96:c3:96:f0:27:51:d2:1c:f3:f5:be:46:f8:97:
70:79:76:1a:7a:8f:ec:f2:f7:fe:ee:5c:88:2a:fc:
ce:ed:3e:b0:ca:fb:4f:fb:bb:a1:dd:90:11:3d:68:
de:9d:1d:32:4d:e2:a0:fd:9b:b5:3d:24:ca:36:a5:
7d:91:23:4e:d6:da:95:1f:05:c2:d8:fd:49:a2:2e:
e2:3d:b0:54:df:08:93:86:e3:3d:59:35:8a:89:96:
ae:49:4b:0e:ef:3e:70:ed:95:b9:00:c8:53:ad:cc:
88:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:14:5A:B0:68:58:48:04:18:8A:58:FC:2E:D1:66:23:BE:72:07:FB
X509v3 Authority Key Identifier:
keyid:3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:15:9b:92:a9:fa:78:1a:25:80:ec:8b:98:b7:3a:8e:86:2d:
d7:8c:90:1f:d6:b9:f1:95:cb:52:f7:6e:1f:b7:f5:bd:2f:d7:
58:12:c8:52:78:d6:e3:32:bc:1f:bc:26:0a:44:32:ce:7c:93:
9b:9a:ef:f5:49:b1:cc:17:f6:e1:ef:ef:d1:4d:51:14:a1:ff:
1b:68:d8:54:d4:52:07:b4:5d:03:a5:b6:00:43:6f:9b:fd:21:
ac:06:57:30:f9:75:7e:e8:2e:38:3b:8d:bd:14:c4:ca:46:1b:
65:bb:65:48:d4:56:b6:72:8f:bd:1a:34:d2:bf:e3:86:f1:59:
08:f9:57:93:bd:e1:bb:e6:f6:32:69:23:fb:51:c7:37:77:05:
92:6e:6a:cb:27:4d:93:c4:c2:a8:30:8b:b0:cc:33:66:08:d4:
03:2e:1d:6b:43:9c:ef:5a:b9:f2:12:62:03:ab:39:81:8d:06:
0b:76:53:d5:6c:d2:b4:1f:5a:7c:17:90:1e:96:9e:ad:1f:82:
14:e3:5d:c8:dc:2a:03:7d:00:72:e5:da:2f:0b:36:0c:4b:d4:
36:30:81:59:96:ac:34:76:dc:ea:f7:c3:c6:bc:57:2f:46:ff:
f9:bb:d5:01:5b:48:a7:1c:3e:f5:bf:19:a8:33:35:f0:ff:a5:
3b:c2:0d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 21:57:08 2025 by rpki-client