Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
File: O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft (raw, json)
Hash identifier: 1zdOS0FjjaVlexKBMy6+C8m+dJ1xWVHMIPCqUz+ZX74=
Subject key identifier: FD:FE:83:6C:25:F1:41:6F:DE:70:2A:A1:3A:72:A1:A4:39:11:FB:6F
Authority key identifier: 3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
Certificate issuer: /CN=3b80edd425050865eafba8089db9da3f3519b334
Certificate serial: 0197B821225329E43E8021486C2FDBC6BC4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
Manifest number: 0A45
Signing time: Sat 28 Jun 2025 20:01:08 +0000
Manifest this update: Sat 28 Jun 2025 20:01:08 +0000
Manifest next update: Sun 29 Jun 2025 20:01:08 +0000
Files and hashes: 1: O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl (hash: N3tc5UgzktNOUmbhD72ACXIWLz5qg7GtSD9EsG0dCJE=)
2: iKF-Q9PfXOLXW4CJahZRW_VogkE.roa (hash: +qqtPKI3qMehNAw49JzdFyEOoExudNvSKeInlgLAy1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:22:53:29:e4:3e:80:21:48:6c:2f:db:c6:bc:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b80edd425050865eafba8089db9da3f3519b334
Validity
Not Before: Jun 28 20:01:08 2025 GMT
Not After : Jun 29 20:01:08 2025 GMT
Subject: CN=fdfe836c25f1416fde702aa13a72a1a43911fb6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:74:72:02:51:bb:ad:c3:c6:ef:6f:be:6a:3c:
0d:8d:30:8a:b1:0a:75:88:62:63:33:35:81:d4:1c:
65:e7:63:2c:7d:27:a5:ac:7e:56:b2:d2:14:40:44:
82:df:1f:66:19:ed:36:24:3f:49:1a:79:33:f4:b3:
35:8c:c4:38:54:e4:dc:7b:78:fb:44:4b:df:64:4e:
2b:74:ef:b6:79:6f:77:6d:13:7b:ef:53:67:bc:85:
16:bd:15:6b:18:d7:54:c9:8f:45:5e:24:9c:85:dc:
52:ab:27:97:44:01:59:8f:6e:ce:e4:d0:a9:14:e8:
1d:4b:7c:16:95:82:4a:67:f7:6c:bb:7a:fe:df:6f:
36:b2:7f:98:63:37:bb:a6:01:af:63:90:2b:87:c1:
89:d7:8c:3e:5e:0c:a0:9b:49:31:54:32:a2:be:dd:
c2:8c:e6:92:ce:09:de:42:36:e3:35:fc:5d:07:f5:
7c:bc:5d:75:d9:71:62:15:dd:48:f1:f5:a0:83:f3:
ea:0c:c4:b4:99:f0:4d:3b:20:c2:31:89:9e:ae:b0:
ea:f2:33:22:4d:79:76:ef:3b:31:2b:5d:82:d5:7d:
9d:70:d7:23:1a:99:52:39:75:a8:09:e0:ce:e5:05:
cd:d6:1c:98:ca:f5:46:42:ad:73:e2:ef:2e:48:34:
28:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:FE:83:6C:25:F1:41:6F:DE:70:2A:A1:3A:72:A1:A4:39:11:FB:6F
X509v3 Authority Key Identifier:
keyid:3B:80:ED:D4:25:05:08:65:EA:FB:A8:08:9D:B9:DA:3F:35:19:B3:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4Dt1CUFCGXq-6gInbnaPzUZszQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7f13a9-7289-4e1e-bb43-c7161dc5c087/1/O4Dt1CUFCGXq-6gInbnaPzUZszQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:04:f9:46:a0:2c:7d:57:85:24:d8:71:a4:19:ce:42:1f:80:
43:fd:98:5b:d9:60:f0:95:64:57:63:46:bd:c1:51:58:ca:20:
3f:af:96:fe:13:4e:1f:68:c2:9c:bf:8e:0a:62:ca:96:ad:1f:
c6:de:24:8b:73:04:d3:bd:79:db:cd:35:9f:69:c0:71:c7:81:
97:3a:b4:7a:c3:1a:4c:7d:f7:7d:af:fa:1c:f4:78:d3:2d:1f:
02:a1:7a:3b:6d:78:00:8d:74:f8:9a:d1:ae:34:f3:6e:e9:04:
63:4d:43:13:09:18:78:43:02:d5:c6:4f:f3:10:79:63:0f:5a:
21:ee:a7:3f:e4:8d:de:07:83:37:87:68:8a:a5:12:57:28:9b:
2b:7a:d4:fb:60:4d:fc:8f:3c:f7:a9:ef:bc:8d:58:86:dc:1f:
aa:a1:36:92:6c:26:94:d0:6a:67:bd:a1:24:6d:f4:50:98:05:
db:a5:ab:ce:0d:c9:16:47:23:0e:15:32:b9:b9:bb:3a:67:1b:
67:13:bb:e3:88:04:79:31:5a:e0:96:94:01:64:fb:4c:e0:da:
9c:0e:fc:f6:4d:2b:b5:b1:14:cc:73:6c:71:a0:40:30:d3:87:
ad:49:4d:57:32:3c:df:6b:ce:e1:85:ee:65:c4:53:62:d4:4c:
da:0e:7e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:12:40 2025 by rpki-client