Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: jKGRaeefk6Q+/PEdMJU3+8xj013Pu4eW3dpS/oMTtaw=
Subject key identifier: ED:3B:02:B4:AC:BE:E2:C0:92:1C:40:80:78:9F:B5:39:CD:BC:50:60
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 0197722D3C97B7FD9EA0F9B957AB468B2939
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 074A
Signing time: Sun 15 Jun 2025 06:00:56 +0000
Manifest this update: Sun 15 Jun 2025 06:00:56 +0000
Manifest next update: Mon 16 Jun 2025 06:00:56 +0000
Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=)
2: 2DDfXUiH85YC1X3PgfdtyKVgjPw.roa (hash: IX38bNkkduAXN8SBzl133Uzin5uXQV9chMH9hhrcGco=)
3: 5O5OsM3NhBX9ufi05PLP13l29To.roa (hash: 3SSp0jqDRZlrWNGbYWPuIP2g5yvlTpjsrbIVea72fZ0=)
4: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: r+JSM6j5k2qwt95wVMoX3JKKWs1392ucs/6x+4Jv33E=)
5: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:2d:3c:97:b7:fd:9e:a0:f9:b9:57:ab:46:8b:29:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Jun 15 06:00:56 2025 GMT
Not After : Jun 16 06:00:56 2025 GMT
Subject: CN=ed3b02b4acbee2c0921c4080789fb539cdbc5060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:22:eb:a9:05:08:c5:f8:f2:61:db:b3:4b:0a:
d7:18:ac:bc:0c:af:56:51:26:b6:2e:c4:bd:75:8b:
e3:c8:b9:49:bf:6d:6e:9b:72:da:ed:fb:54:81:fa:
67:a6:9a:a7:57:08:07:3b:93:90:2f:4c:bf:27:19:
32:ea:8b:e1:fd:a1:f6:54:88:65:40:6b:d1:4d:1c:
c1:cf:3d:51:4b:42:ca:1a:57:77:b0:c1:50:8a:2c:
ef:51:b8:37:97:b9:14:23:d4:23:99:da:a9:c7:09:
1b:28:de:2c:88:11:5f:e2:36:94:c0:67:59:b5:ff:
7c:69:b3:0d:92:64:b5:de:2d:97:88:49:fe:4a:4b:
d8:0b:fe:be:d6:bc:8a:c8:97:40:42:5d:59:04:cc:
26:48:05:ec:7d:2c:53:bf:d3:49:76:ed:1d:26:e7:
ff:74:88:a1:4c:59:84:36:02:40:f0:f4:c2:ce:78:
da:48:54:72:69:0e:6b:bd:2a:92:41:14:da:f8:b0:
e5:b8:bc:0e:e4:80:87:d1:29:f6:f9:a1:48:25:e6:
c6:5e:75:9f:81:38:0b:48:85:30:eb:47:3a:1d:ce:
19:37:ad:ba:15:3d:ef:7e:29:13:1e:3a:87:7a:f6:
85:a5:79:c1:62:45:62:8e:d8:87:f1:24:b6:26:1f:
b1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3B:02:B4:AC:BE:E2:C0:92:1C:40:80:78:9F:B5:39:CD:BC:50:60
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:1f:0a:57:0e:5d:38:a9:ad:9d:d8:06:2c:c9:a9:f4:90:ed:
d6:36:32:85:35:99:7b:4a:9e:84:b5:7c:07:6a:d9:97:6a:d3:
5d:75:85:62:7e:2a:a5:c5:84:e2:52:ed:90:4e:bc:ad:35:64:
ac:5d:b4:f0:5f:66:74:ec:c0:96:15:6f:7b:d7:6a:fa:bc:cd:
e2:ec:d2:e5:34:c0:5c:d0:e3:45:b9:65:28:5f:29:b1:2e:63:
fd:2f:10:35:72:5f:77:16:d2:a4:08:38:be:94:62:d7:5a:37:
51:1c:7d:12:1f:de:17:32:71:3e:26:45:5a:00:71:18:3a:84:
8c:f2:fe:8c:71:61:fe:1d:6d:e3:e4:0b:73:72:55:13:8c:4f:
8c:8b:d3:eb:42:a0:95:4d:0d:b3:8d:4c:ee:8a:bf:60:94:3a:
62:f8:23:37:55:78:eb:2d:83:30:63:20:c7:27:3b:b9:29:e9:
7c:c6:8b:69:af:25:fe:1a:a8:68:31:43:c3:04:f7:1a:40:78:
37:26:0c:55:5a:8c:a4:26:2c:51:bd:5c:b7:0c:5d:5b:81:9f:
f2:76:71:6a:d5:8f:19:3d:10:1c:ec:39:d4:a2:ad:71:25:09:
78:51:ac:40:7d:af:52:3d:14:0e:0b:d8:fc:6d:1a:38:87:a0:
1f:28:6d:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 13:01:15 2025 by rpki-client