Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
File: 0OhNbWqe7eaC7xtcePGz8KMxORE.mft (raw, json)
Hash identifier: uePDzkpNcDCgn1EhtDUzPxVbafg+6XhxnmftXKfRyp4=
Subject key identifier: B1:86:7F:85:9C:9F:D8:BF:77:9E:62:70:DA:66:E9:CE:05:15:93:F4
Authority key identifier: D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
Certificate issuer: /CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Certificate serial: 0197B7451A3D4FEFD380675AFC2C90B8B5BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
Manifest number: 0789
Signing time: Sat 28 Jun 2025 16:00:48 +0000
Manifest this update: Sat 28 Jun 2025 16:00:48 +0000
Manifest next update: Sun 29 Jun 2025 16:00:48 +0000
Files and hashes: 1: 0OhNbWqe7eaC7xtcePGz8KMxORE.crl (hash: g213rSgJ1wqk8jHXiWQ3m3NPAWcsKFO/f+iXlTnlB10=)
2: eEAcVM4h3e_6uLTwXzH2smck964.roa (hash: 2dyqSC4Nr999y8UdL9+8BtI2W3QPoxUvEaAKvO9sMtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:1a:3d:4f:ef:d3:80:67:5a:fc:2c:90:b8:b5:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0e84d6d6a9eede682ef1b5c78f1b3f0a3313911
Validity
Not Before: Jun 28 16:00:48 2025 GMT
Not After : Jun 29 16:00:48 2025 GMT
Subject: CN=b1867f859c9fd8bf779e6270da66e9ce051593f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b4:79:37:2c:b5:22:af:65:36:7b:ee:93:ca:
01:77:5b:97:f0:dc:08:65:81:3b:f2:cc:94:eb:43:
55:b6:47:a5:57:17:0e:8c:fd:02:62:61:c6:d0:43:
41:af:3e:4a:e9:07:48:07:2d:fd:2e:a8:4a:02:b7:
4c:02:94:5a:b6:42:34:58:4f:aa:4a:02:3e:21:a3:
b8:13:59:03:02:5f:2c:22:c6:6c:28:ed:78:95:92:
2d:24:bf:da:28:04:98:d1:d5:43:2f:43:a7:18:05:
09:7f:ec:72:41:fc:83:e7:35:e4:fd:f1:73:40:18:
4c:cc:12:c0:be:67:b0:df:ac:fc:c1:66:45:3d:e8:
16:ee:eb:45:3f:44:26:36:d3:51:f1:87:fc:96:90:
3f:25:b0:1f:74:b7:fd:53:31:2c:00:68:db:dd:83:
1b:ba:9d:ca:b9:14:d8:a7:88:41:1b:d7:81:a6:0a:
68:31:d9:3d:c7:db:c1:5d:11:95:02:ce:a9:8b:09:
2f:b6:9b:42:85:8a:26:11:92:28:74:fd:69:b9:c3:
c0:de:a0:1e:8e:59:19:d3:a4:ea:db:62:73:c7:44:
60:04:a1:f3:0e:a0:8f:63:2c:e8:f9:7d:da:ee:54:
b7:31:1a:d8:5d:24:62:e8:a4:b2:57:f1:62:a5:b2:
ec:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:86:7F:85:9C:9F:D8:BF:77:9E:62:70:DA:66:E9:CE:05:15:93:F4
X509v3 Authority Key Identifier:
keyid:D0:E8:4D:6D:6A:9E:ED:E6:82:EF:1B:5C:78:F1:B3:F0:A3:31:39:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0OhNbWqe7eaC7xtcePGz8KMxORE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/62b775-7841-4a61-b78c-b7ba28165a77/1/0OhNbWqe7eaC7xtcePGz8KMxORE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:06:2a:a0:33:a5:3f:3d:a7:fc:5e:79:52:f5:9d:56:be:3c:
8f:d9:d2:dc:2f:37:a0:5d:1f:c1:2e:7d:b4:9f:04:30:72:19:
e3:d6:e4:fc:a4:b5:2e:4f:9f:81:8d:9a:59:d4:d2:45:8b:ef:
0a:87:e7:96:ca:38:cc:a7:d5:e8:18:2d:45:3c:b3:06:61:83:
4c:fa:af:06:6c:1e:12:77:fa:99:e9:2c:aa:1e:4e:5f:8f:e2:
0f:f1:60:b3:48:1d:41:6c:da:57:8f:0f:1f:cb:f0:90:14:63:
4d:45:d6:40:a2:b3:9c:13:1b:df:e6:a1:63:5b:e3:24:9e:35:
5a:71:2d:a4:6e:61:45:79:56:29:2a:3a:14:9c:81:80:e9:1a:
ff:7d:aa:9a:03:77:2b:8b:48:21:bb:38:52:9c:f9:cd:2a:08:
d4:d2:a6:dc:6c:f4:05:7d:2b:89:a2:e1:34:87:17:7c:26:e0:
c1:cc:94:4a:44:a3:5b:33:2d:b6:b5:71:39:ac:1e:cc:99:3c:
85:ae:45:0d:94:f5:df:18:76:2f:63:e2:c8:1a:3d:98:34:d7:
ce:5c:77:7a:67:cf:ad:fd:cd:8d:67:59:68:64:93:cb:e9:5c:
de:7e:2b:d3:ed:ea:f8:32:55:a7:d9:05:ee:79:9a:1c:90:8a:
71:be:80:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:36:01 2025 by rpki-client