Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
File: ORxdMzEUXsjicYdvgEIge50Ay2Q.mft (raw, json)
Hash identifier: 1W215P2N9r+I236aC+fUF0OU1op1JpgOdp9MO6ZmPDw=
Subject key identifier: EF:41:84:C4:C7:39:70:D4:8F:B5:19:60:72:C2:CB:E6:EC:21:92:36
Authority key identifier: 39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
Certificate issuer: /CN=391c5d3331145ec8e271876f8042207b9d00cb64
Certificate serial: 019771F5E59833740B0D22B6E00EB372464D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
Manifest number: 0E68
Signing time: Sun 15 Jun 2025 05:00:29 +0000
Manifest this update: Sun 15 Jun 2025 05:00:29 +0000
Manifest next update: Mon 16 Jun 2025 05:00:29 +0000
Files and hashes: 1: ORxdMzEUXsjicYdvgEIge50Ay2Q.crl (hash: aBzmnnNL8vgu4ucrGT/LdtTpPVAlaRmpA3IHEcTjRKE=)
2: OST4PzA3ppU9tim3_KfBBcrqcgQ.roa (hash: 7aAkIwPTKpTiRriNWV3feZU6/0BHu+h2F1+5PEi7g88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:f5:e5:98:33:74:0b:0d:22:b6:e0:0e:b3:72:46:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391c5d3331145ec8e271876f8042207b9d00cb64
Validity
Not Before: Jun 15 05:00:29 2025 GMT
Not After : Jun 16 05:00:29 2025 GMT
Subject: CN=ef4184c4c73970d48fb5196072c2cbe6ec219236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:56:81:7c:23:4e:8c:cf:3a:30:36:00:23:1d:
bc:63:52:d0:f9:b6:04:4f:73:f3:1f:32:c6:e2:e5:
69:f2:b0:a6:33:4f:27:6b:e0:59:87:73:8b:f1:77:
bd:be:b0:e6:a2:ff:e8:0d:0c:d7:f1:59:12:01:bd:
0b:11:5b:b9:30:6e:43:aa:cb:df:de:ab:2e:64:d1:
e1:ba:12:c0:cd:10:58:7c:0b:bd:b5:f7:9f:9c:9c:
c6:3b:ad:64:b2:ae:27:80:f5:3a:93:b4:6a:83:29:
e9:38:2c:40:27:c4:e3:d4:25:2e:4b:09:1a:1f:a6:
1f:6d:4f:50:63:5a:ef:ac:8e:f4:e7:2a:94:1b:9b:
27:46:7e:f7:a3:b3:38:41:66:1a:32:10:66:14:ed:
10:ee:d5:61:8f:a3:39:cc:7f:14:bf:15:67:cb:99:
2f:43:14:16:b1:91:08:ea:db:3e:cc:2b:e0:1f:17:
f6:1b:a9:67:51:6f:81:54:4d:8a:ac:ab:0b:6e:b6:
ff:7f:63:ef:67:4c:88:4f:1d:a9:79:89:26:aa:ec:
5b:a1:e5:28:90:83:15:93:2e:85:af:78:a9:34:ac:
d9:2a:25:75:fb:dd:2c:bc:e3:c6:09:fd:e7:51:30:
1b:0e:c8:a1:61:72:f2:ea:9c:91:31:04:49:85:49:
3d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:41:84:C4:C7:39:70:D4:8F:B5:19:60:72:C2:CB:E6:EC:21:92:36
X509v3 Authority Key Identifier:
keyid:39:1C:5D:33:31:14:5E:C8:E2:71:87:6F:80:42:20:7B:9D:00:CB:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORxdMzEUXsjicYdvgEIge50Ay2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/058624-de77-4224-b540-ca3350e760cb/1/ORxdMzEUXsjicYdvgEIge50Ay2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:26:5a:8f:40:5a:ec:3a:dc:fd:da:62:b7:0a:fe:76:61:6b:
61:59:46:f0:f4:f9:b0:20:40:a4:58:cd:7d:b9:fe:2b:4a:ad:
b9:c1:a0:d5:a9:01:87:ff:4a:21:1c:a4:88:17:f0:cc:2c:1c:
61:a2:44:75:a9:9a:69:0f:e6:06:18:72:af:54:81:03:60:59:
7c:c4:04:26:80:2f:9e:ef:07:6f:21:b9:3b:d0:63:29:e2:21:
5e:a4:87:94:2d:b8:35:79:07:d7:8a:a1:1c:ac:1e:8b:1b:d2:
67:4f:a3:c1:3a:9d:f6:98:b8:33:d2:7b:4e:88:a7:2f:67:53:
31:12:11:17:a3:47:c0:09:27:ae:36:c8:46:36:d3:7f:6d:94:
b5:6e:b4:f6:80:53:bb:87:c7:c0:b5:f6:ac:5c:e3:58:af:ab:
ae:da:1a:a6:37:af:9e:a2:80:83:55:36:0a:85:08:99:6a:59:
ff:4b:40:83:7f:d1:b9:1a:74:17:3b:cc:d0:a2:53:f4:c3:3d:
a1:d3:04:92:02:50:95:32:d6:43:6c:1a:bf:fe:04:e0:d2:6f:
58:92:8c:74:b3:8e:32:ec:74:ab:11:0d:9d:e2:fc:1c:a3:7b:
c1:6d:a5:65:62:56:e2:eb:9a:9a:be:d9:a3:b9:36:23:d6:0f:
36:98:4d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:25:47 2025 by rpki-client