Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
File: OWpY9F0OyAFfoyauWP9YAzKJv50.mft (raw, json)
Hash identifier: EIAOw7NNx4LomWZuELOUlwNNgsFkXPY0wPcyHIumYcE=
Subject key identifier: E9:C2:58:12:E2:65:E9:B1:CF:37:16:EB:BA:B7:8C:01:4B:87:C7:04
Authority key identifier: 39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
Certificate issuer: /CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Certificate serial: 01976FD0B74F0DB57F9C250E883DD87797C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
Manifest number: 158D
Signing time: Sat 14 Jun 2025 19:00:38 +0000
Manifest this update: Sat 14 Jun 2025 19:00:38 +0000
Manifest next update: Sun 15 Jun 2025 19:00:38 +0000
Files and hashes: 1: OWpY9F0OyAFfoyauWP9YAzKJv50.crl (hash: u8MTKj1yV99wKh6MR9TURbwkWY5X8ehfcZRoH4h4wxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d0:b7:4f:0d:b5:7f:9c:25:0e:88:3d:d8:77:97:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Validity
Not Before: Jun 14 19:00:38 2025 GMT
Not After : Jun 15 19:00:38 2025 GMT
Subject: CN=e9c25812e265e9b1cf3716ebbab78c014b87c704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fb:9e:76:9a:48:e6:47:ca:2c:e8:a3:2a:d4:
58:0e:a7:f6:e4:f8:66:58:2b:44:ba:08:72:11:1c:
e9:cb:82:75:00:5f:a3:c8:ee:84:7f:66:1f:90:3a:
fe:c4:4d:d7:26:b1:71:0b:f9:4d:f7:71:54:3c:82:
83:34:e8:83:09:e6:f3:68:94:94:f5:52:c6:c2:0f:
75:d3:52:16:18:bb:a9:f6:31:8f:a3:02:24:39:1b:
a1:75:bf:cd:be:4f:9d:03:67:38:a8:e3:ac:d3:66:
6d:85:6a:0f:fd:d0:72:e1:f8:e4:d0:ba:72:39:77:
25:20:9b:c0:55:e4:59:cf:cf:b7:da:04:b5:8d:92:
28:b0:2b:c1:d6:38:40:9b:28:c0:e6:75:fb:30:0a:
ad:6c:be:55:b3:69:77:3c:50:04:79:0d:1e:45:6e:
0f:3e:da:3d:c6:d7:70:9d:30:f9:45:b2:4b:c2:15:
fd:4c:85:d9:4b:c3:ba:e3:cf:ed:67:e4:d0:71:19:
02:34:58:3d:46:51:32:0a:05:42:50:e0:a6:dc:2e:
c3:07:b8:83:8d:b1:e7:af:b4:a3:bc:b6:8e:ea:06:
0c:3b:f9:4a:77:83:55:87:8d:d4:f8:db:3d:35:ae:
8f:2d:0b:58:81:3b:d5:58:62:75:31:5b:9d:c7:b9:
f2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:C2:58:12:E2:65:E9:B1:CF:37:16:EB:BA:B7:8C:01:4B:87:C7:04
X509v3 Authority Key Identifier:
keyid:39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:9a:fc:19:5e:9b:47:7e:84:1d:fb:da:7a:26:83:d9:ca:24:
17:f4:f8:b2:86:72:03:34:5f:01:32:ac:34:f3:80:8e:df:8a:
c0:59:7d:4e:88:06:a9:a9:52:1f:21:9e:37:0c:f1:be:51:d7:
78:cd:44:72:ae:4b:d5:b7:e4:85:50:60:d8:a9:2e:15:3f:6f:
05:65:51:66:01:bf:4b:6c:fb:ae:ba:27:bf:2a:f4:c4:84:2c:
d0:02:c4:a2:c4:36:59:0e:19:65:f1:41:0c:a5:c6:59:d7:71:
09:98:30:b4:e0:0d:1a:56:1a:2d:f4:48:25:8e:c1:06:d6:33:
80:63:8c:bf:33:b1:3d:38:fa:32:9f:5b:85:85:a9:3c:14:fb:
77:ee:0d:d3:ac:df:ad:02:86:2a:7d:1e:25:d5:94:e2:76:ac:
11:99:2b:b6:3f:3a:e1:5d:4f:cb:fe:12:48:77:f8:60:2d:5a:
61:28:98:1a:3b:58:81:62:22:e3:e3:6b:54:63:4c:a5:d3:93:
f6:92:32:1b:82:dc:a8:5d:2d:23:1e:a9:b1:97:7b:e0:25:5b:
42:cf:f5:07:78:d2:3a:b3:2e:d2:24:c5:2b:bf:e8:64:41:c8:
21:8b:fb:9f:4f:5d:e7:f0:18:b0:bf:ad:ff:ec:3e:44:aa:38:
a9:88:e3:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:05:25 2025 by rpki-client