Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
File: O95jhoTGRf7dYA7TxQzfMQsRbT4.mft (raw, json)
Hash identifier: JY5cdRWR3UPFd+QAL26HpqI8T7NmJbfINO/6Kza1lIg=
Subject key identifier: 5F:51:01:FC:65:AC:02:AF:4E:23:87:76:6D:D9:9F:6B:44:05:F0:71
Authority key identifier: 3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
Certificate issuer: /CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Certificate serial: 0197B77C56AD4FA7A658CD141376EA1DFB72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
Manifest number: 10D2
Signing time: Sat 28 Jun 2025 17:01:08 +0000
Manifest this update: Sat 28 Jun 2025 17:01:08 +0000
Manifest next update: Sun 29 Jun 2025 17:01:08 +0000
Files and hashes: 1: AmLrnFBBUwarj708-brt5mXEs6c.roa (hash: rrDod4wiM6+h8On16PiqN3FEJpayPPTDmJ6oUSkO4ZE=)
2: O95jhoTGRf7dYA7TxQzfMQsRbT4.crl (hash: Uf1B++vs81PJ5DTKSuP/sldlrnG7dGaY2VTS1fCtBco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:56:ad:4f:a7:a6:58:cd:14:13:76:ea:1d:fb:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bde638684c645fedd600ed3c50cdf310b116d3e
Validity
Not Before: Jun 28 17:01:08 2025 GMT
Not After : Jun 29 17:01:08 2025 GMT
Subject: CN=5f5101fc65ac02af4e2387766dd99f6b4405f071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a4:f6:ca:2f:fc:04:96:93:4f:0e:e1:d7:64:
8d:af:3a:99:4f:b8:39:e9:32:c2:27:cd:be:a2:47:
22:e9:ff:54:2f:d9:1e:47:0a:3a:b7:9c:f5:a9:51:
4a:f6:82:b9:22:0b:c2:7a:2d:12:1a:02:32:0b:24:
45:aa:64:d2:76:8d:fc:59:95:a2:03:a4:82:2f:3a:
6a:ca:90:c1:91:c3:69:e3:cd:83:1c:ca:dc:f0:22:
9d:96:02:68:5e:77:d6:6e:94:6b:94:6a:f9:8d:4b:
0d:07:b9:6f:c4:21:f2:b4:90:69:e4:25:ae:a1:86:
25:2d:9d:84:b2:28:38:b1:f5:f4:7f:26:fb:11:d1:
c1:bd:41:55:cb:5f:4a:56:d8:79:fc:aa:5d:0d:d8:
0d:79:0c:22:40:f3:fe:cb:05:ec:7d:74:6a:e7:25:
9e:06:32:0a:4f:b8:f1:33:91:f7:e5:96:97:76:8c:
4e:eb:18:3c:b7:91:6a:3b:ce:87:c9:20:b7:a9:3f:
92:a3:7c:b1:f6:8c:0c:61:d1:ca:15:56:91:24:c2:
a3:c3:83:dc:7e:a9:c4:6b:23:fd:90:9e:b0:06:66:
c2:81:94:21:11:48:93:ec:a3:03:6b:7d:0f:9c:7f:
f9:32:a1:8e:fb:50:00:c3:cf:fa:a0:ba:d7:6c:af:
2e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:51:01:FC:65:AC:02:AF:4E:23:87:76:6D:D9:9F:6B:44:05:F0:71
X509v3 Authority Key Identifier:
keyid:3B:DE:63:86:84:C6:45:FE:DD:60:0E:D3:C5:0C:DF:31:0B:11:6D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O95jhoTGRf7dYA7TxQzfMQsRbT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/62b15d-ee50-450b-8e2d-097b0510d3e2/1/O95jhoTGRf7dYA7TxQzfMQsRbT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:91:c7:c3:b5:57:79:c0:30:e2:7c:f6:bc:7d:d2:ff:25:b4:
8f:31:50:f3:15:bb:4f:20:7e:00:ff:d1:17:89:6c:9b:2b:87:
df:1f:fd:bc:e7:06:9c:21:49:82:6e:0a:20:df:29:61:8a:d5:
c2:db:7a:16:c4:44:48:58:a2:57:46:17:13:50:ae:8a:1a:9c:
a6:3e:15:ae:4b:e7:0a:1c:af:1e:2e:50:ab:a5:66:58:f9:91:
c5:e4:a5:f4:64:8e:b9:6c:63:67:31:95:46:15:80:7e:db:06:
f9:e9:76:58:bb:ac:d7:8a:73:ab:73:d7:dc:91:74:63:fc:f6:
a5:f0:26:0c:2a:6b:0f:8b:9d:e3:72:ba:c5:4f:5d:6f:ec:9e:
7c:eb:73:97:b4:10:9d:ed:12:b2:84:6c:1a:da:59:75:b4:fe:
47:4a:ef:01:a2:10:a7:17:d7:4d:4a:1b:23:19:15:7d:43:a6:
16:3b:b8:d8:d6:c3:ba:e8:09:d6:34:00:f5:61:ee:9a:34:ce:
b9:5d:91:f0:01:b3:c5:b5:b8:c0:02:b6:6a:5b:1c:2a:dc:33:
9f:11:68:15:2d:d7:6f:9c:8f:74:11:e1:69:fd:39:ac:fd:f1:
a9:74:38:cf:03:b3:44:4b:a9:42:23:3d:bb:8c:af:d2:fc:98:
8a:5b:1f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:50:36 2025 by rpki-client