Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
File: O33D0CKCjk9bNr3vehiwuwz7rgk.mft (raw, json)
Hash identifier: yZG20wq4b73tqhTvSv8l7AMquC/V/uyAos1RS9Hj+5c=
Subject key identifier: 41:2B:8F:1F:58:C5:46:11:83:AB:2D:06:6A:76:80:E6:EC:1C:CC:D3
Authority key identifier: 3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
Certificate issuer: /CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Certificate serial: 01976D748B27677E31C1668CDAAC4E5722FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
Manifest number: 0DA3
Signing time: Sat 14 Jun 2025 08:00:43 +0000
Manifest this update: Sat 14 Jun 2025 08:00:43 +0000
Manifest next update: Sun 15 Jun 2025 08:00:43 +0000
Files and hashes: 1: O33D0CKCjk9bNr3vehiwuwz7rgk.crl (hash: PVPFyaxlSjNomlBb4sBHgwT1Cwh6x38IpeXS58OFbyw=)
2: qE1MDKZGRZtaXQk1vt-cL_6WtUI.roa (hash: 3oUc3w7eQj0W70nllC5MQS//X4mPSXNpxrBOqqqOaLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:74:8b:27:67:7e:31:c1:66:8c:da:ac:4e:57:22:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b7dc3d022828e4f5b36bdef7a18b0bb0cfbae09
Validity
Not Before: Jun 14 08:00:43 2025 GMT
Not After : Jun 15 08:00:43 2025 GMT
Subject: CN=412b8f1f58c5461183ab2d066a7680e6ec1cccd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b4:fb:c9:40:fe:e0:f5:f4:b6:e7:d3:05:7f:
c2:3a:b2:b0:a3:aa:6c:f0:3a:df:e4:bf:33:a6:e8:
3a:d3:d6:37:47:0b:66:fb:8d:36:d7:82:66:55:86:
4e:87:50:db:af:05:8d:34:c2:f5:c2:18:39:ab:a4:
95:f1:41:cf:ac:4e:2b:06:de:93:71:69:32:8c:91:
11:44:ac:62:29:6f:54:d1:2b:12:63:be:f0:1f:33:
25:a4:f6:a5:e0:62:0f:1e:9c:26:81:92:44:a1:e9:
cd:16:48:eb:70:7a:9f:c2:e6:36:b6:5a:b0:6b:a7:
d7:1d:09:6c:e8:9d:9e:c1:c2:a6:ce:7d:aa:4c:ae:
eb:c7:9c:82:db:c6:19:87:9e:f9:82:6f:27:52:6a:
2b:20:f5:9e:a1:6e:f8:ad:6f:de:b7:64:17:2a:f0:
69:71:a4:00:2a:99:e3:48:57:54:e6:6b:b4:49:a9:
87:ac:0c:43:6a:de:20:b4:21:14:fa:6e:e4:7d:36:
03:d3:e8:a7:1d:b4:a1:f4:d2:8c:01:6a:95:47:44:
83:3f:e5:46:ca:a4:f0:16:37:18:77:5a:3a:25:49:
8f:a4:8c:8c:67:c9:15:bb:49:a8:89:0a:33:7d:76:
77:a7:d9:4e:c6:3c:e7:97:46:04:a4:e6:94:90:c7:
7f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2B:8F:1F:58:C5:46:11:83:AB:2D:06:6A:76:80:E6:EC:1C:CC:D3
X509v3 Authority Key Identifier:
keyid:3B:7D:C3:D0:22:82:8E:4F:5B:36:BD:EF:7A:18:B0:BB:0C:FB:AE:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O33D0CKCjk9bNr3vehiwuwz7rgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4ef02c-8f8d-46e3-8d0b-71948e3c9ad4/1/O33D0CKCjk9bNr3vehiwuwz7rgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:30:aa:da:4b:20:a2:19:3b:a2:9f:74:cc:9e:16:ad:9b:05:
1b:8d:43:99:79:be:87:5b:56:08:f5:30:a1:04:2f:c6:e9:39:
47:53:76:bb:87:55:05:12:3d:66:fa:ee:8b:40:8c:4f:0b:75:
b5:3c:8a:44:8a:ce:8d:2f:c1:1d:b5:ce:05:bb:fb:46:da:60:
8d:e8:3e:15:3e:93:19:5b:45:b9:b5:78:d0:ee:c3:75:02:2c:
87:a2:e5:fb:c2:94:5f:16:03:cc:dd:eb:08:bb:d7:21:bc:da:
bf:d8:58:18:d4:54:38:35:22:4f:1f:f1:df:35:ad:70:6d:3b:
66:18:35:4a:7d:d1:b9:70:0d:40:38:2e:28:d9:2f:03:43:16:
af:93:75:5a:28:a3:9d:b9:20:b8:a2:1e:1c:5f:8e:8e:37:a6:
71:c8:bc:b8:fc:17:a1:01:77:43:e2:e2:94:46:5b:de:a8:86:
a9:da:fb:b0:32:ba:8a:e9:9f:06:76:f1:3f:1e:75:de:9c:b9:
d0:31:65:fe:09:b8:cc:83:fd:65:40:9f:21:ac:21:8a:3d:7a:
f4:db:13:49:d5:73:f3:d4:bc:bd:d5:ce:fa:ce:5c:4c:f2:2f:
01:01:81:68:5a:6a:c4:fa:56:71:bc:89:7d:70:72:ca:63:35:
b9:17:17:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:06:32 2025 by rpki-client