Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
File: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft (raw, json)
Hash identifier: jIWxxWF2F4wLTD2dptFubi4S18LkkmnRuZpoHH7nbbw=
Subject key identifier: F7:13:26:E7:86:55:E2:4D:32:FB:F9:A3:2C:94:E5:50:D9:8D:1C:AE
Authority key identifier: 38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
Certificate issuer: /CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Certificate serial: 0197B88F9C86B9C659A10A293536816C4B1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
Manifest number: 1133
Signing time: Sat 28 Jun 2025 22:01:48 +0000
Manifest this update: Sat 28 Jun 2025 22:01:48 +0000
Manifest next update: Sun 29 Jun 2025 22:01:48 +0000
Files and hashes: 1: OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl (hash: /ZqVaNehXt4ZSjru7Swyz+KICMGkUtZv5thIQbAkKCM=)
2: hbt7WcwBqBoPW6rBuDIQ3SNZmzc.roa (hash: gFxs6hHw3FxfMImk+yNCzFI6L94MQhx1psEtxtAsjbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:9c:86:b9:c6:59:a1:0a:29:35:36:81:6c:4b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38227a96fa64ad95240f0aee0bd374646c6bbee2
Validity
Not Before: Jun 28 22:01:48 2025 GMT
Not After : Jun 29 22:01:48 2025 GMT
Subject: CN=f71326e78655e24d32fbf9a32c94e550d98d1cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ef:3f:90:0b:a4:70:b9:fe:59:74:89:25:76:
53:7d:91:34:a5:b2:ba:b4:6b:9a:55:57:a6:bc:9d:
4a:9e:5c:b8:f9:62:33:36:65:7a:0c:92:7f:af:e7:
7d:e0:8f:00:ee:37:0f:f8:d0:f8:d5:28:db:3f:aa:
30:be:af:51:e7:64:2e:19:f1:30:f6:55:58:99:c8:
e5:c5:b6:01:d2:d4:c5:68:cb:71:8e:2f:1a:10:d7:
17:42:06:65:cf:99:64:7f:f4:60:fa:60:b8:5b:d8:
37:67:91:d9:c6:45:7d:82:d3:b2:c8:16:d2:a3:ce:
e9:c4:11:6d:c4:58:6a:57:05:44:89:55:4d:1f:4d:
8e:01:1d:f5:f7:dc:b7:89:78:39:7d:bf:8b:08:8c:
6f:67:a8:6d:3c:a5:de:00:fb:70:c0:29:c0:a4:c6:
d4:3d:ea:f9:bf:82:47:0e:fb:db:9a:b6:09:6d:e6:
15:1e:c8:97:a9:1f:5d:10:74:6d:e3:c2:16:3d:9c:
50:12:b4:ea:d4:e1:b1:77:ab:b9:95:84:5d:c0:c5:
6c:94:03:79:c7:78:c7:a8:85:1b:83:03:7e:57:d5:
92:42:ed:c3:36:dd:7f:23:b7:db:07:84:73:c2:04:
88:7e:4e:82:b6:87:a9:f7:16:8f:04:b7:39:d2:ce:
52:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:13:26:E7:86:55:E2:4D:32:FB:F9:A3:2C:94:E5:50:D9:8D:1C:AE
X509v3 Authority Key Identifier:
keyid:38:22:7A:96:FA:64:AD:95:24:0F:0A:EE:0B:D3:74:64:6C:6B:BE:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1cf9ac-10d4-4a5e-a706-d1c9ba08f559/1/OCJ6lvpkrZUkDwruC9N0ZGxrvuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:ee:9a:2b:5f:9d:9c:2f:ed:9b:4e:54:10:1f:37:02:12:eb:
ac:d9:d5:e5:80:e7:12:15:f1:29:22:cf:17:0a:76:54:0e:4d:
99:13:f5:c6:18:db:72:a4:dc:6b:7a:70:0a:b3:7a:57:47:7f:
f2:d2:e2:20:3f:a1:f7:d9:eb:83:ae:cc:b6:61:1e:cd:d3:b4:
54:02:67:42:77:c7:4c:9d:ec:5c:44:3c:0d:5b:fc:6d:38:40:
98:1c:00:95:f5:a7:fb:dc:f5:03:fb:ee:7b:68:17:14:99:35:
54:ef:12:01:ac:9d:f6:e7:18:26:a3:bc:9e:19:f1:7a:44:f5:
5f:88:2f:08:51:96:be:5c:38:6a:ce:84:8c:e0:41:2c:b8:2e:
55:f9:f6:66:db:ce:be:75:32:77:11:26:0e:2f:72:2b:39:f6:
17:36:e9:7d:d7:5f:3d:cc:59:1d:84:83:52:f2:b6:42:10:57:
d9:ea:43:0e:23:eb:e9:94:42:7f:de:02:d5:d1:51:c6:f2:71:
0c:a9:97:06:ec:51:60:29:77:f1:62:8e:fe:7a:64:a3:14:2e:
ba:c9:7a:2b:6b:03:d9:f6:f3:90:37:b1:0c:9a:40:85:52:c3:
0b:df:0a:4e:ac:67:d4:04:80:2d:ae:fb:ae:17:e8:33:0a:bc:
b7:6d:f7:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 02:19:43 2025 by rpki-client