Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
File: OIzM14vxZTPzMYVEPqgtza2SBBA.mft (raw, json)
Hash identifier: lrmztoUba6tvfYQXi389PRWHzEoBGJCCYZf4Cbw2L0k=
Subject key identifier: C6:56:37:00:F9:A6:9C:E3:B8:52:2F:56:99:48:93:4B:1D:94:21:63
Authority key identifier: 38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
Certificate issuer: /CN=388cccd78bf16533f33185443ea82dcdad920410
Certificate serial: 0197B7B335114A28F7FE2177CDB562A19FB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
Manifest number: 0BF2
Signing time: Sat 28 Jun 2025 18:01:04 +0000
Manifest this update: Sat 28 Jun 2025 18:01:04 +0000
Manifest next update: Sun 29 Jun 2025 18:01:04 +0000
Files and hashes: 1: OIzM14vxZTPzMYVEPqgtza2SBBA.crl (hash: qIA6GH24zTMDKTga4QTdbX+W/7Cf7RjQQ3FbsUrSErg=)
2: S5-p15oe6PO1US7yiwalFk2guhA.roa (hash: RxwUj9qrcB8W+bA9U60Y3Yd+aWieeN2zZTQTfRBMSD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:35:11:4a:28:f7:fe:21:77:cd:b5:62:a1:9f:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=388cccd78bf16533f33185443ea82dcdad920410
Validity
Not Before: Jun 28 18:01:04 2025 GMT
Not After : Jun 29 18:01:04 2025 GMT
Subject: CN=c6563700f9a69ce3b8522f569948934b1d942163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:93:fd:fe:6d:93:3a:54:c0:f2:24:10:73:5b:
a7:24:ed:9d:81:35:fa:d6:87:fa:0e:87:d5:43:bf:
9a:79:54:78:7c:85:8d:60:66:91:e3:0f:e1:8d:ad:
d4:39:a2:68:9b:fa:37:47:9f:3a:f6:16:c2:17:27:
43:2a:5c:f3:df:39:a7:1f:f1:2e:4c:90:5b:53:e9:
1f:c6:58:f3:11:61:77:04:78:91:c9:ba:66:29:94:
d6:02:c1:27:b9:9b:6b:9e:90:a6:72:a3:ea:c7:84:
36:af:2b:b9:9d:24:01:6b:72:9a:22:e5:c1:40:50:
f5:66:6b:b7:6f:c7:b4:14:f8:ce:91:50:4a:80:73:
8a:5e:cd:2a:71:07:cd:58:56:82:01:0a:de:b0:ef:
1b:c2:4a:2f:68:65:c6:ca:8d:3b:11:23:3b:4c:e2:
42:58:75:4c:11:24:93:2a:48:c5:20:68:fb:e6:ae:
7c:ef:3f:f7:81:1b:e9:ca:4b:2e:30:b9:e4:fe:7d:
33:b8:c9:4a:3b:eb:7b:72:4d:bb:1e:6f:e2:f7:bc:
21:d6:44:b8:a1:af:ff:76:ed:6b:6c:d1:4d:73:5e:
44:b3:fc:42:9e:58:e5:66:86:c7:6b:55:e4:64:59:
60:9d:12:b3:2b:a5:50:12:f9:18:d2:40:fd:bc:3c:
bb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:56:37:00:F9:A6:9C:E3:B8:52:2F:56:99:48:93:4B:1D:94:21:63
X509v3 Authority Key Identifier:
keyid:38:8C:CC:D7:8B:F1:65:33:F3:31:85:44:3E:A8:2D:CD:AD:92:04:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OIzM14vxZTPzMYVEPqgtza2SBBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b1d3-c938-423e-90dd-21098a61357e/1/OIzM14vxZTPzMYVEPqgtza2SBBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:c6:03:a0:89:df:47:50:4c:66:70:1d:4f:a9:8c:80:57:14:
24:3a:e6:c6:48:11:cb:7d:a6:5f:56:a5:b3:05:d8:05:7b:13:
9d:7f:0a:a1:c5:bc:08:b3:0b:28:3f:46:a2:46:2c:10:66:b1:
56:df:5d:e8:46:80:75:b9:fd:58:b1:ae:92:7e:a3:94:12:0f:
b9:a8:36:9e:d5:fe:71:04:7f:e5:88:1b:44:4e:0a:50:7c:71:
76:ca:be:21:d2:b3:b6:10:cb:c2:56:fa:d4:65:1d:75:d9:ef:
18:71:c2:88:3f:03:1f:3d:20:06:7b:af:b2:18:90:fe:35:4b:
d1:f4:8c:92:a2:51:0f:0f:a0:11:1f:8a:2d:c5:e7:29:77:fb:
e7:fd:76:39:63:4e:4e:2c:d0:4e:71:9e:31:dc:b5:8b:8f:1b:
3f:d9:74:92:c5:39:36:59:36:f6:fd:2e:14:a2:cb:01:f3:eb:
ef:ba:2b:46:13:7c:82:a8:23:73:a3:d4:0e:fb:9b:ad:31:3f:
8a:85:15:53:3a:75:37:c1:75:62:e0:fb:20:93:f8:c2:82:c4:
f2:9e:47:d2:bc:c9:21:1f:5b:9e:97:5f:f3:20:72:2e:99:0b:
a6:03:ab:32:c5:82:19:8d:c5:2c:ab:3b:12:7f:27:8e:49:6d:
02:c4:2f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:59:06 2025 by rpki-client