Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
File: OneLgrqpeIoayvLsNothmB71HfI.mft (raw, json)
Hash identifier: 62bZLp8AXU6C66tfopnXifW4wgqar+hEVmGSHJ2OcbM=
Subject key identifier: 37:C7:FD:3B:33:E7:C0:00:4E:74:B1:54:FE:32:61:10:E8:AE:61:F7
Authority key identifier: 3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
Certificate issuer: /CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Certificate serial: 01976EBDE1E6DAAF165CBFECCE6A54780813
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
Manifest number: 1595
Signing time: Sat 14 Jun 2025 14:00:27 +0000
Manifest this update: Sat 14 Jun 2025 14:00:27 +0000
Manifest next update: Sun 15 Jun 2025 14:00:27 +0000
Files and hashes: 1: OneLgrqpeIoayvLsNothmB71HfI.crl (hash: ZsgG8h9QlJH7VuNeqt3bsGwJV8CSzlbRIof6nqbyrkQ=)
2: tSdPmCF2mRPxF2tL9jrht8v9nd0.roa (hash: 25zx6oeH7z2ZyGM4y2LzPQiLw04ocTvL7Bq+gPKpw0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:bd:e1:e6:da:af:16:5c:bf:ec:ce:6a:54:78:08:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a778b82baa9788a1acaf2ec368b61981ef51df2
Validity
Not Before: Jun 14 14:00:27 2025 GMT
Not After : Jun 15 14:00:27 2025 GMT
Subject: CN=37c7fd3b33e7c0004e74b154fe326110e8ae61f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f3:61:4a:b8:da:50:b0:ef:89:ab:49:0e:40:
06:2a:80:c4:97:d6:20:1d:fd:ae:52:b7:7f:74:bd:
77:91:e0:be:2a:20:ef:20:56:28:63:60:05:8e:be:
5e:ba:e3:38:31:fd:ec:49:c1:3c:a7:6e:61:9a:3c:
3b:82:fb:7e:eb:06:71:64:86:f5:c9:5d:f7:8f:d5:
cf:9e:eb:b6:58:f1:50:bc:a6:46:1b:94:40:48:5b:
43:56:80:9b:cf:14:67:dd:6e:52:c9:5f:22:0d:24:
f0:9d:04:a0:a1:59:0d:6c:3b:91:1f:cc:f4:38:1b:
bb:3c:0b:b9:4d:ac:e5:44:a5:77:ef:62:37:e7:e1:
ba:2a:53:d8:10:c2:a4:8b:45:8a:f4:51:c7:4c:fe:
fc:81:fe:2e:47:a8:5f:6e:16:cc:3c:36:41:96:18:
cb:1c:24:24:17:ae:3c:5e:ae:ca:b3:2f:51:24:1b:
66:8f:0e:34:78:21:8d:9c:a9:02:cc:8d:2f:a6:ee:
d9:58:c8:25:38:30:10:11:e7:66:0a:6d:65:88:c6:
ec:b2:5b:fd:48:e4:bc:35:33:60:24:0f:b3:f6:31:
75:d7:cd:9d:68:56:64:62:f3:86:cc:24:f8:03:63:
9c:5c:af:a7:ee:8a:8f:1b:19:f1:07:23:de:87:6b:
e5:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C7:FD:3B:33:E7:C0:00:4E:74:B1:54:FE:32:61:10:E8:AE:61:F7
X509v3 Authority Key Identifier:
keyid:3A:77:8B:82:BA:A9:78:8A:1A:CA:F2:EC:36:8B:61:98:1E:F5:1D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OneLgrqpeIoayvLsNothmB71HfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/404c04-a7f5-4cdf-8e97-18d33beb7c31/1/OneLgrqpeIoayvLsNothmB71HfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:20:e7:70:f0:0f:c1:7b:04:03:53:e7:76:92:1f:39:15:5e:
68:7c:0b:93:8d:2a:7c:bf:1e:a0:a5:60:b4:9a:02:17:b0:72:
f2:2d:57:fa:9e:ec:34:c1:1c:ec:47:5f:1c:6c:dc:bc:7b:1e:
33:b8:e8:87:99:90:32:c6:5f:c3:b0:e0:7b:10:16:77:89:be:
1f:94:25:06:d2:f5:25:b3:60:99:03:49:2d:cf:0b:5f:2e:f3:
16:b6:34:c4:c2:ef:cb:1d:10:48:9c:70:30:3a:43:f4:fe:b9:
af:48:7e:1b:c6:3c:af:7d:cd:7d:1e:d7:98:75:90:47:f5:2a:
cd:9f:37:4f:f0:08:0a:a4:0a:29:f4:4f:e3:35:7d:30:b1:c4:
db:0c:e5:16:55:29:f6:10:a1:02:c4:c3:7c:e4:2c:0d:fb:c4:
af:ad:80:d7:48:4d:ec:0a:db:99:f6:b5:4f:24:01:54:0a:b9:
25:26:97:3d:17:f0:fe:f5:47:04:d3:5f:41:c6:58:d7:ed:a1:
ff:fc:c3:50:fe:4f:ca:a3:f1:fa:c2:3b:89:ff:70:65:f8:64:
34:5d:be:fc:fc:82:44:18:76:cb:54:94:25:97:6d:83:74:8d:
a9:dd:90:ca:09:6c:8c:55:01:a4:10:75:c4:05:da:b3:6e:8a:
d9:38:26:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:48:36 2025 by rpki-client