Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
File: oL_QbOhVti2baIzYxTXV9JTNOTI.mft (raw, json)
Hash identifier: OzIajn/fN0PmVvSv193/ualx090n/feqUyCkEGo7+Ug=
Subject key identifier: 75:52:B6:3F:1D:1A:B2:A3:0E:1E:C0:B8:96:F7:C0:BA:6C:FB:EC:C2
Authority key identifier: A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
Certificate issuer: /CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Certificate serial: 01976E87365C3ADA3B690FC0EFBDAFAF0A34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
Manifest number: 1593
Signing time: Sat 14 Jun 2025 13:00:44 +0000
Manifest this update: Sat 14 Jun 2025 13:00:44 +0000
Manifest next update: Sun 15 Jun 2025 13:00:44 +0000
Files and hashes: 1: YZGMIvadW2xPxhoSXpNJb8SDWu8.roa (hash: jQfGmlQO1sTVXZe+wmgboQPBpNBgVW+6jbuLSLsW9ZU=)
2: oL_QbOhVti2baIzYxTXV9JTNOTI.crl (hash: 07OpdB9qumokAkJrghUMn/U46YzbdK4boJmXSLE2hfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:36:5c:3a:da:3b:69:0f:c0:ef:bd:af:af:0a:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bfd06ce855b62d9b688cd8c535d5f494cd3932
Validity
Not Before: Jun 14 13:00:44 2025 GMT
Not After : Jun 15 13:00:44 2025 GMT
Subject: CN=7552b63f1d1ab2a30e1ec0b896f7c0ba6cfbecc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ce:b3:cd:b6:01:92:50:79:c2:b9:13:b1:3d:
4b:58:7e:7d:85:d8:c2:c5:09:b8:04:02:bf:2f:d7:
c8:3b:ed:00:cd:ab:99:69:30:37:62:98:6a:00:6d:
94:3e:5b:5e:a9:fd:0e:c0:79:14:ef:47:e2:e0:4d:
be:07:c2:ee:91:a8:9d:de:f7:fb:da:e3:be:92:29:
2c:ff:4a:9e:eb:73:44:fe:52:a9:6b:72:a1:67:a1:
b9:e1:56:c6:9d:65:58:f2:e3:65:6d:a5:68:8d:a7:
fe:f1:a0:87:c6:34:3d:b6:50:60:f1:bd:9e:ae:8f:
0f:d5:f6:bc:5e:65:40:73:08:15:cc:1d:76:93:e0:
ce:cc:df:5a:b1:43:46:ed:20:d0:34:af:8f:6b:e0:
1b:90:82:c4:b9:4f:17:a3:7e:09:f8:c6:e7:91:fe:
85:4e:4f:61:f5:af:c0:69:09:1b:1a:97:69:f7:f5:
d3:a6:6d:29:fe:e5:21:66:62:26:e2:e6:0e:d8:be:
83:b7:54:17:78:f4:94:d4:a2:df:66:91:6d:dc:c5:
e8:dc:16:7e:7a:74:eb:55:04:a7:24:8a:a6:72:da:
d6:01:a4:24:ff:ba:af:fd:aa:2f:06:b8:b8:be:9c:
c1:5d:14:53:72:96:7f:32:37:0d:55:96:50:b8:3d:
66:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:52:B6:3F:1D:1A:B2:A3:0E:1E:C0:B8:96:F7:C0:BA:6C:FB:EC:C2
X509v3 Authority Key Identifier:
keyid:A0:BF:D0:6C:E8:55:B6:2D:9B:68:8C:D8:C5:35:D5:F4:94:CD:39:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oL_QbOhVti2baIzYxTXV9JTNOTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/03316d-04e0-4660-a63e-671839200604/1/oL_QbOhVti2baIzYxTXV9JTNOTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:67:2a:e8:54:94:50:09:4c:99:0a:13:76:60:a1:f1:ca:39:
3e:6e:dc:f2:d5:21:00:73:bc:6f:f9:a4:13:69:01:7c:84:9d:
b9:f9:f7:6b:9e:f2:ca:8f:15:58:8a:2b:b9:c7:06:fa:63:b6:
80:7d:0d:aa:b6:79:7e:5a:d8:ea:e3:57:1f:d6:8b:2f:68:92:
b6:ee:82:dd:ad:3a:d9:4e:08:f4:18:0c:d5:91:f0:3b:d6:a3:
16:47:bc:43:31:d4:e1:5f:73:8a:4d:ac:15:1b:1e:fa:be:cf:
c3:ad:7d:34:e6:d7:6a:ea:b6:57:11:f9:ca:27:d9:c5:97:9c:
5e:34:ef:a5:56:e3:2a:f8:51:e7:93:82:b0:9a:52:42:10:83:
e5:91:b3:18:9c:07:2e:9d:ce:45:ff:04:21:7d:c5:8f:e3:f4:
3c:04:12:38:08:8f:12:31:25:6f:52:2f:0c:f4:ae:14:c5:ef:
ab:26:3e:d2:f3:5a:d1:9c:80:15:dc:c2:96:c1:71:ac:d4:d0:
90:3b:c7:3f:02:d3:33:a6:1f:67:e9:0f:64:dc:bb:92:8d:68:
06:f8:d0:0e:cf:ed:c0:8d:13:61:b6:e1:d3:62:cf:08:6f:52:
ff:1c:37:16:fe:47:14:35:9b:31:98:2b:99:7f:cb:06:a6:b2:
37:63:c8:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:15:37 2025 by rpki-client