Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
File: OoOZNq7v8ohnjncmMwIPolm9nPI.mft (raw, json)
Hash identifier: h/113Zwf0eojRUCTKr2XtNt5JsmleE6sXm7yzQmhQPU=
Subject key identifier: D5:E3:04:93:A9:85:60:61:6C:9D:1E:C3:69:85:06:C0:E9:8E:93:86
Authority key identifier: 3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
Certificate issuer: /CN=3a839936aeeff288678e772633020fa259bd9cf2
Certificate serial: 0197B933F37E311A6A15D26900BF3CDED9D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
Manifest number: 057F
Signing time: Sun 29 Jun 2025 01:01:19 +0000
Manifest this update: Sun 29 Jun 2025 01:01:19 +0000
Manifest next update: Mon 30 Jun 2025 01:01:19 +0000
Files and hashes: 1: OoOZNq7v8ohnjncmMwIPolm9nPI.crl (hash: nQO0JcnPvTJYNUxrzP/iki0OEyVsmsH8CRMHnoq/OWw=)
2: UPULz0BbmOL6oB1Lvph6s81bIVc.roa (hash: KEGK8PJbSBsiHtUKaY1bLTWtxHt/0jD8x2QpGJMF8nk=)
3: Uw9JbudeiyQ7Eqq4TZWKYitXR5Q.roa (hash: PECjzeRoLCDiJc+fMhDdhpnjzdeMhIqjV/edQ5qJgEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:33:f3:7e:31:1a:6a:15:d2:69:00:bf:3c:de:d9:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a839936aeeff288678e772633020fa259bd9cf2
Validity
Not Before: Jun 29 01:01:19 2025 GMT
Not After : Jun 30 01:01:19 2025 GMT
Subject: CN=d5e30493a98560616c9d1ec3698506c0e98e9386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3c:ec:c8:36:2c:dd:b2:ec:a3:dd:90:d8:9f:
db:5c:f6:b5:77:0d:61:3d:c2:7c:ce:67:63:b9:46:
6a:bf:d0:0b:e5:4f:08:98:fd:8a:58:1f:6a:be:80:
45:e7:83:74:33:66:b0:3c:81:ab:fb:c2:35:c1:1b:
d6:81:af:d4:d9:f1:49:3f:88:cb:4b:df:e4:8e:47:
01:27:5c:c6:7b:c7:9c:18:cc:67:3b:dc:9d:9b:3a:
9d:10:70:3f:89:f7:e1:be:a8:47:b7:36:2f:7f:32:
e2:cf:30:7a:a1:3f:38:e1:56:f4:7f:35:a1:17:9e:
fc:89:64:31:c4:d4:64:15:72:40:1b:01:8f:77:7c:
2d:cf:bb:c6:d3:f1:aa:5c:d8:0a:e6:0c:f0:08:c0:
ff:dd:df:97:99:c8:de:5a:96:a6:9d:87:0b:0a:f4:
d0:9a:05:db:4a:20:b4:3a:c3:ae:c7:be:70:11:5f:
2a:ca:d7:44:11:39:ae:7d:44:ac:84:3b:f5:eb:b0:
17:45:5e:8e:7e:29:66:ad:de:79:0c:01:e5:6a:cd:
8b:fc:d9:ae:6b:f2:27:f1:21:c2:10:c9:2c:1f:c5:
3b:bc:ad:42:5f:5f:cc:b0:e8:f8:fb:b2:20:25:53:
ed:0a:9e:4c:8d:55:09:95:1d:ff:4b:94:e6:61:49:
44:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E3:04:93:A9:85:60:61:6C:9D:1E:C3:69:85:06:C0:E9:8E:93:86
X509v3 Authority Key Identifier:
keyid:3A:83:99:36:AE:EF:F2:88:67:8E:77:26:33:02:0F:A2:59:BD:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoOZNq7v8ohnjncmMwIPolm9nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5c6745-768e-4d61-b604-835f4e37283c/1/OoOZNq7v8ohnjncmMwIPolm9nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:db:2d:30:05:c3:5e:2a:ff:47:f7:70:75:cf:1d:95:3b:4a:
f8:3d:e6:54:1e:c2:55:03:0d:d1:5e:fd:b7:1c:53:c2:76:92:
eb:08:ed:a3:36:d1:b4:d4:0c:16:eb:75:76:2c:66:88:3c:62:
17:53:95:bc:15:46:10:40:32:17:e6:4c:fe:3a:a6:ea:78:4a:
8a:85:53:45:4c:35:df:4e:ec:53:64:32:cf:59:be:a2:15:10:
c4:55:72:c1:f0:9c:79:40:40:52:fb:c9:ff:ef:89:85:13:4a:
95:05:7a:98:34:9a:0c:16:31:87:19:12:72:fa:34:a4:d7:9e:
de:b1:43:08:74:4b:f6:64:10:f3:0f:e1:e8:a9:05:b9:70:b8:
a5:6e:17:2d:c0:87:87:7d:30:76:62:01:02:f3:54:0b:89:4d:
61:8a:aa:f2:8b:16:96:9e:6c:b4:a3:5d:07:b5:db:5d:ee:b9:
22:d4:e7:72:fe:86:5f:c9:ec:8a:33:f6:38:f4:08:4a:ac:3b:
44:f1:65:8b:8b:54:0d:08:f3:ca:f4:0f:16:22:71:16:95:3c:
04:a7:5b:ed:94:01:b1:60:0d:29:d2:07:ec:40:f2:a0:b5:1b:
93:67:70:ec:04:74:a2:a5:74:75:13:fd:a4:67:25:1c:89:24:
15:f6:95:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:08:14 2025 by rpki-client