Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
File: OZETdfzEhZYSGQ6-zHrjcaAaam0.mft (raw, json)
Hash identifier: RQgdfGWboDXjswLdUBEWE8Z0kgERtzgcrwMw+Oq5TeQ=
Subject key identifier: F7:24:E4:68:80:94:AE:C9:54:B9:94:07:27:D8:18:85:71:0E:32:CB
Authority key identifier: 39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
Certificate issuer: /CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Certificate serial: 0197778A43F25C6A2F3138A1BE36B6E9FA8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
Manifest number: 0EBD
Signing time: Mon 16 Jun 2025 07:00:39 +0000
Manifest this update: Mon 16 Jun 2025 07:00:39 +0000
Manifest next update: Tue 17 Jun 2025 07:00:39 +0000
Files and hashes: 1: OZETdfzEhZYSGQ6-zHrjcaAaam0.crl (hash: h2GssFEVfbaPOU8fNGc+4AsZxps6DcocN832HP5Hygs=)
2: mV-huyQ7uf2YxiJ1JUpDypBxzhA.roa (hash: XQgQ9aC7Ey76psDYNwOwzM5lgNTkkh3rEJlv1Rte2h0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:8a:43:f2:5c:6a:2f:31:38:a1:be:36:b6:e9:fa:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Validity
Not Before: Jun 16 07:00:39 2025 GMT
Not After : Jun 17 07:00:39 2025 GMT
Subject: CN=f724e4688094aec954b9940727d81885710e32cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:38:01:b0:c9:1d:80:be:81:22:b1:93:69:c5:
dc:46:dc:3d:e7:52:83:d9:67:ce:ca:4c:fb:0d:5d:
dd:8c:bf:08:5c:2f:ae:db:4a:74:c0:2b:85:5e:48:
37:98:39:25:f6:2a:9f:fb:e4:9a:9d:41:4a:d1:ad:
c5:0a:8f:3d:64:9f:18:49:c6:fe:6d:9c:48:db:2b:
f9:ee:72:e6:58:9f:3b:f3:b6:86:0d:c8:a8:bf:f1:
a3:72:4b:ff:2d:7a:ef:11:25:54:64:4c:00:8c:f9:
cc:1d:47:5a:13:ab:9f:4a:6d:51:f8:08:f5:ad:54:
2c:20:1f:3a:a6:48:db:3b:ef:08:16:7d:35:ca:78:
16:19:8c:43:b5:ce:97:94:3f:38:c8:0e:de:5f:c1:
24:5a:5d:92:1b:29:89:11:83:23:fd:63:52:5f:54:
50:84:fb:0b:61:79:18:45:7f:d1:70:ac:9f:9b:3d:
7f:99:b2:72:e5:08:9a:f2:f9:55:dd:40:a4:35:87:
cc:92:a7:d1:11:5b:bc:94:b9:66:11:97:5c:a2:19:
d3:ed:81:cf:bf:e5:9e:f1:a7:bb:fc:90:7e:a0:33:
73:36:a9:76:08:4f:3b:9e:0f:a4:69:38:70:0e:34:
78:5c:6d:b5:c9:08:71:19:ae:4b:be:d1:ff:b5:2a:
7f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:24:E4:68:80:94:AE:C9:54:B9:94:07:27:D8:18:85:71:0E:32:CB
X509v3 Authority Key Identifier:
keyid:39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:5f:e2:d6:4b:81:ad:a6:cf:a5:54:61:98:a7:9e:d1:19:97:
1c:2e:f8:3a:81:90:4d:ef:0e:54:19:82:d8:92:62:8b:b7:61:
f3:5d:82:c8:59:8f:31:5d:58:90:26:ad:1b:f7:91:c6:cb:b9:
4e:52:08:01:9f:74:9a:a0:9e:cb:57:90:95:44:d6:60:c6:18:
1a:19:68:36:27:8e:a0:81:12:06:a5:a9:94:c9:ff:f6:73:75:
42:52:78:50:3d:ae:b2:99:20:35:71:ca:73:57:be:86:11:96:
eb:91:2e:5a:60:a1:f1:9f:02:5a:a8:fc:55:d1:78:16:71:a0:
5b:c8:07:79:4b:ca:fd:f6:35:24:1a:88:66:79:83:70:48:b1:
98:b9:7f:99:18:c0:92:12:c0:d3:8a:f7:35:29:b9:59:3b:89:
19:cd:51:2f:df:c3:34:ab:8d:ef:34:0d:1c:00:fa:c4:fe:32:
30:89:ca:f1:d2:03:e8:b9:5a:10:ea:c4:d8:9c:23:c5:00:66:
5b:3c:ad:9d:a7:21:cf:ef:64:56:db:2f:85:ae:6e:3f:e6:51:
3d:b8:25:44:43:83:e9:ab:5d:80:68:15:db:82:0d:35:21:49:
ae:60:f9:40:67:52:2d:55:9a:13:16:11:5a:bd:e5:84:ac:5d:
13:32:39:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 12:27:15 2025 by rpki-client