Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.mft
File: OXsxr3cA59mVkO39nVhKG1A46tc.mft (raw, json)
Hash identifier: QZPNp9XiOPkrxsILFjB4T8gW7XoA+27crhwUXji9sy8=
Subject key identifier: 59:8D:DD:8F:3C:A9:3B:8D:77:08:2F:CF:14:C1:19:59:3C:C1:9D:94
Authority key identifier: 39:7B:31:AF:77:00:E7:D9:95:90:ED:FD:9D:58:4A:1B:50:38:EA:D7
Certificate issuer: /CN=397b31af7700e7d99590edfd9d584a1b5038ead7
Certificate serial: 0197B7B32B01EEB69DC3FEEA95ACAC777D8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXsxr3cA59mVkO39nVhKG1A46tc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.mft
Manifest number: 6A
Signing time: Sat 28 Jun 2025 18:01:01 +0000
Manifest this update: Sat 28 Jun 2025 18:01:01 +0000
Manifest next update: Sun 29 Jun 2025 18:01:01 +0000
Files and hashes: 1: OXsxr3cA59mVkO39nVhKG1A46tc.crl (hash: qncKhBbPfhQANBZxas2SdNoKpU+JVYE/CR3ZB+zlVwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXsxr3cA59mVkO39nVhKG1A46tc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:2b:01:ee:b6:9d:c3:fe:ea:95:ac:ac:77:7d:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397b31af7700e7d99590edfd9d584a1b5038ead7
Validity
Not Before: Jun 28 18:01:01 2025 GMT
Not After : Jun 29 18:01:01 2025 GMT
Subject: CN=598ddd8f3ca93b8d77082fcf14c119593cc19d94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:92:55:e5:8d:f3:8a:97:f0:7b:91:f6:a1:3e:
fc:b6:ee:66:a6:ea:c1:2a:fb:c5:88:e5:ea:1e:c4:
d2:ba:c2:3e:03:1f:b8:e9:89:29:a0:2a:fe:69:7a:
28:6b:44:57:f1:b1:8d:2a:b7:4f:6b:45:51:39:40:
e9:fc:2f:52:e1:84:7a:9a:b4:7a:49:42:d9:74:b3:
bf:8d:e4:71:1d:ce:ec:c4:7f:05:59:b5:7e:7a:e5:
b4:38:76:e8:e6:9e:b4:ce:32:b2:f9:3e:e9:93:94:
34:b9:5b:34:f5:2e:f6:a4:2d:7e:9e:08:80:e3:71:
14:52:b0:1a:ae:9a:1a:eb:81:5e:4a:2c:11:eb:78:
41:ec:1e:ee:25:af:09:32:de:17:22:9c:2c:17:06:
04:aa:7b:d8:43:6f:27:05:3c:c9:ae:6e:d2:13:d1:
d2:85:ed:8f:e7:5c:ef:56:4b:54:9d:0c:d3:73:e3:
b6:a3:56:af:d9:18:4e:4a:64:79:ec:2d:1a:e5:87:
04:9d:ec:5d:6a:a0:ad:40:c5:d1:f1:ff:8e:0e:13:
ec:c2:49:a3:3a:da:40:7c:59:58:0f:34:52:77:41:
99:e2:2d:0f:99:b2:cf:f5:e7:7d:2d:7b:52:f8:d2:
b3:a4:49:aa:e9:43:55:e5:64:76:6b:02:3d:09:37:
4d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8D:DD:8F:3C:A9:3B:8D:77:08:2F:CF:14:C1:19:59:3C:C1:9D:94
X509v3 Authority Key Identifier:
keyid:39:7B:31:AF:77:00:E7:D9:95:90:ED:FD:9D:58:4A:1B:50:38:EA:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXsxr3cA59mVkO39nVhKG1A46tc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:ee:08:ba:48:ae:31:f5:39:a4:b8:1b:ac:ea:35:37:98:77:
cc:15:53:41:2a:82:f7:a4:60:d7:61:07:3d:59:5f:00:6a:83:
84:9f:ed:13:d9:fa:1d:dc:0a:60:83:54:ef:3b:96:c9:6e:d8:
66:e4:cf:2b:96:8f:8a:98:94:2d:43:01:07:99:10:43:91:b3:
cd:01:17:14:55:e4:ff:f5:36:1f:38:c8:93:27:e5:9d:b7:b6:
b2:2b:e1:80:8e:83:f5:6d:9e:1f:b1:c2:ab:65:e4:b7:cc:b4:
69:dc:83:64:64:ea:b2:e7:a7:8e:07:10:89:42:52:fd:d3:98:
8d:20:7e:01:11:7f:b6:53:d2:c8:ab:1e:c0:67:bf:b1:36:16:
4a:3a:1e:75:3b:1c:5a:19:20:4f:c3:8d:4a:8e:9e:0f:f3:48:
da:56:83:19:82:ef:9a:cc:73:40:ec:5b:02:43:df:d7:a8:b4:
62:8b:cb:ca:36:45:49:20:31:73:96:da:80:33:90:42:3c:7d:
7c:69:6e:6a:34:30:93:29:3e:9c:19:33:90:e2:11:ae:2f:c0:
4a:2c:e3:68:78:8a:f8:f7:a8:8e:4d:90:3d:aa:83:75:aa:6d:
2c:8e:29:45:97:ff:d4:12:3b:29:50:c3:19:b9:5c:d5:07:b3:
16:84:a6:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:17:50 2025 by rpki-client