Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: xVdrXepdR+9wk8JyERN+Y7hR/0wR7fE5PmvzbDFVjUc=
Subject key identifier: 30:C2:85:E1:AE:42:60:D3:E7:C4:12:59:31:4B:4F:61:92:76:C6:2F
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 019769CE956ADCC65D3E280B28C12F88CDE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 0FF4
Signing time: Fri 13 Jun 2025 15:00:35 +0000
Manifest this update: Fri 13 Jun 2025 15:00:35 +0000
Manifest next update: Sat 14 Jun 2025 15:00:35 +0000
Files and hashes: 1: 1-Ls4q-ChZ0ZaOTjP1nQ6tqwVR7w.roa (hash: YXXZf8p+XXstJczN+ymTH8ANFDcZF/VCsvvC/wyu2tg=)
2: 3K66fkLdFIhZuPgVnT8dBkSPcIY.roa (hash: jrto9CYh3lf5yVyFB1TxobdXxUZh+GOGoL+a0rSxI8I=)
3: AF6uSBXXjV8m6D8T1L1tDnPI1pQ.roa (hash: 5ngifaMxS9mhHVtoSr7d4Aq0k4gtgdDqeUt6H7Q6K9U=)
4: GJq6jlu04Rm9wa7Cgp8cTcM0nxA.roa (hash: AENchPK3bfQJEdljclR0ie9L+vwumxV2eeigY07rGKw=)
5: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: V+0vV1TMOfxWyTIp3TMv5/S0MqYcFjv6nXJ52JcaXeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:95:6a:dc:c6:5d:3e:28:0b:28:c1:2f:88:cd:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Jun 13 15:00:35 2025 GMT
Not After : Jun 14 15:00:35 2025 GMT
Subject: CN=30c285e1ae4260d3e7c41259314b4f619276c62f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c1:1b:19:80:80:20:0a:03:99:e8:13:06:bf:
d6:97:06:35:2d:d6:a3:a6:5f:8e:7f:4a:4e:2a:e3:
e0:05:5e:5b:88:78:3e:30:c5:f0:2b:9b:fc:29:5c:
31:9e:14:97:21:5b:a0:e1:6c:d4:da:1e:4d:a7:ba:
64:31:7d:95:f4:d0:05:e6:d3:5f:3d:1f:18:6b:18:
64:51:d8:3e:72:0e:b1:5e:19:97:84:ff:8e:16:b5:
6f:ca:38:cc:ca:8a:fa:94:e0:5b:18:19:2e:a1:87:
cc:8a:3c:a5:82:db:17:8d:39:ad:b4:ae:26:c4:37:
65:b5:1b:9d:72:7a:b2:15:cc:a8:39:7b:3a:dd:70:
85:a0:2f:a2:60:68:b3:ff:8f:20:04:c5:75:ff:4b:
1a:5d:9d:5e:88:80:25:be:84:4c:bc:91:2d:ff:27:
b6:c7:1e:e7:7e:45:8b:c4:5d:c8:42:68:25:86:cd:
06:37:d4:2a:be:83:e7:fe:1f:9d:2f:56:0e:fb:cc:
f7:28:51:f1:c3:19:5a:be:b5:ca:f1:22:2a:a2:4b:
87:31:dd:4a:62:3d:ac:77:a9:74:73:5c:55:21:0f:
45:98:fd:42:15:9a:8d:d0:88:0d:17:a1:33:bd:48:
15:66:e6:15:34:36:15:6d:fc:e4:8b:a4:b1:20:9d:
9b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C2:85:E1:AE:42:60:D3:E7:C4:12:59:31:4B:4F:61:92:76:C6:2F
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:03:b0:18:3a:ad:64:a2:3a:8a:b3:71:a7:be:7a:7c:8f:2d:
f0:d9:3c:74:90:ce:34:c1:dd:1e:b3:1f:22:b5:9d:bb:88:f1:
39:40:72:84:c4:91:54:7a:b9:66:95:76:e1:32:09:ee:5a:70:
d9:66:93:aa:82:4d:95:b1:b3:b4:26:e1:fe:87:ea:74:47:0a:
b2:52:1c:ca:b8:22:f4:b4:ce:d8:09:9c:d6:71:af:8e:27:ef:
ec:79:35:ff:51:1f:a4:05:2c:c4:be:e1:fd:7a:7c:3a:a9:f1:
34:cf:65:8e:15:7a:26:8f:77:f5:60:e6:00:6c:dd:43:cc:7b:
b1:86:20:dc:06:2d:32:2d:ef:07:81:fc:9b:e1:4a:ae:58:27:
be:29:f4:e4:67:3f:91:32:58:84:07:9d:4a:fd:1d:6a:6f:4c:
61:e9:f4:1a:f0:c9:de:90:75:b7:63:fd:3a:0a:63:ec:28:67:
1f:80:65:63:cf:0d:0d:24:5a:83:e8:78:ec:e4:3c:43:50:7c:
8d:72:90:78:b0:bc:6e:cd:87:12:e5:02:18:3c:cd:1c:15:fa:
ba:ca:fa:c4:9e:b0:b4:00:16:21:8b:2f:b0:59:ba:cd:70:04:
9d:de:37:96:5b:a6:24:46:09:28:87:48:ac:4d:ea:d2:1f:69:
94:52:c9:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:40:58 2025 by rpki-client