Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
File: OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft (raw, json)
Hash identifier: 6Y7VTP6lfV02hv6AE/rlx98JxKSF3x+htUB1xvYpUYE=
Subject key identifier: BA:36:D1:D9:F1:FB:3A:13:AD:F6:C8:5F:A6:44:82:58:FB:2B:77:BA
Authority key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
Certificate issuer: /CN=3a611bc291ff1de02256f2315345680603fa4edb
Certificate serial: 0197B821100B2326C6BE2547CED9587FD647
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
Manifest number: 047B
Signing time: Sat 28 Jun 2025 20:01:03 +0000
Manifest this update: Sat 28 Jun 2025 20:01:03 +0000
Manifest next update: Sun 29 Jun 2025 20:01:03 +0000
Files and hashes: 1: OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl (hash: d9A/bQQJHOrRpPIIMES11qI8iYu6hnCNZBalQJHdWTs=)
2: WMqMrN8GSXOfRqdUfWDSfGSeNoY.roa (hash: +HUvEm/zmLGsWH85M7k1xXVdXwdEmqkh5XDlJHFGu2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:10:0b:23:26:c6:be:25:47:ce:d9:58:7f:d6:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a611bc291ff1de02256f2315345680603fa4edb
Validity
Not Before: Jun 28 20:01:03 2025 GMT
Not After : Jun 29 20:01:03 2025 GMT
Subject: CN=ba36d1d9f1fb3a13adf6c85fa6448258fb2b77ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b1:b6:68:b4:f0:37:e0:e5:46:c0:0b:a9:8a:
3b:52:ac:2b:10:c1:93:6a:54:6d:f7:53:c0:69:96:
54:82:d2:96:3e:ac:00:4d:84:e1:03:23:a7:27:56:
b7:8e:11:5a:b7:8f:57:72:2f:c7:84:ba:4a:c6:5d:
f4:b2:5b:c2:5b:0d:79:ed:4e:0d:10:92:c8:81:2a:
09:10:16:40:78:6d:68:99:9a:fb:63:b8:06:2d:71:
5f:14:7f:12:9b:4b:ef:90:73:ef:3c:85:97:9c:e9:
66:24:98:de:30:0a:2d:ec:fe:08:f2:33:51:4f:1e:
b4:ce:f6:1e:6f:1b:63:e6:a9:8c:2d:eb:fe:6d:94:
2f:6d:3a:6f:af:87:52:12:a5:56:03:dd:03:d8:15:
2d:3f:a9:02:e0:9b:f1:a9:aa:2c:43:21:d4:5d:08:
b3:6b:dd:9c:99:65:35:89:68:04:61:40:2d:d9:e8:
9a:79:17:15:03:b7:db:e9:e5:93:bc:9d:c3:9b:c8:
7d:f1:d8:6e:42:38:4a:f0:0e:38:f3:23:af:84:18:
63:42:d6:dc:a6:18:ce:1b:91:52:b8:d5:cb:f9:94:
12:c6:b8:a8:34:e1:2a:1c:2c:1b:37:1e:2c:74:71:
26:e7:e1:e1:81:57:ca:03:36:4c:dd:eb:8c:25:42:
dc:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:36:D1:D9:F1:FB:3A:13:AD:F6:C8:5F:A6:44:82:58:FB:2B:77:BA
X509v3 Authority Key Identifier:
keyid:3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:85:ca:fc:a8:a2:cd:55:3f:cf:72:ba:dd:14:29:ca:f3:72:
2e:16:55:54:b9:7e:df:ec:99:d6:3a:15:7b:fd:00:03:35:36:
24:0f:ee:9d:23:34:fc:0c:00:d4:7e:54:f6:27:15:d8:cf:d8:
ca:ef:52:16:bd:18:cb:2b:8c:9e:08:86:22:f2:a9:a0:8e:b6:
a4:ef:97:b4:6a:54:2c:11:bd:a9:6b:9f:59:59:5d:f3:b3:90:
f3:ce:04:ad:b4:21:60:a4:b6:52:0b:2f:26:c2:2e:de:e8:1f:
ee:29:96:dc:7c:a8:c0:30:77:bd:5e:17:2b:1a:44:45:c2:a0:
d7:d0:bb:a3:a7:91:e6:70:df:a9:28:73:c3:22:a0:4c:84:bd:
63:64:ca:77:8e:60:37:4a:40:72:8f:87:2d:56:82:fe:0a:8b:
da:93:ac:bf:af:98:58:1e:7d:9c:03:b1:69:63:8c:d4:d2:a5:
cf:64:23:0d:08:bd:e1:e4:37:38:8a:a4:21:43:08:ba:b9:35:
4a:ea:c7:25:1d:e9:40:ad:64:06:34:77:7d:a6:51:f3:c4:ea:
35:8f:09:f3:c9:67:51:00:d8:df:43:14:19:3b:8b:80:7f:8c:
4e:2b:f2:9c:0b:0b:54:3d:cc:02:bd:24:dc:91:bf:f0:33:91:
0e:a0:c3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 02:19:31 2025 by rpki-client