Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
File: OpNtLymObP1WYEVz0e-eDoKZtSk.mft (raw, json)
Hash identifier: tmrAK46i4Yg/fds/LuKA56Cj0KaIqKZDFt/tyfSc1vM=
Subject key identifier: B1:0E:0A:18:FE:58:CE:80:E5:E6:ED:04:07:73:7B:EF:2E:A3:B8:23
Authority key identifier: 3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
Certificate issuer: /CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Certificate serial: 0197B7459C0219E6CDE3C13430AAC34FA964
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
Manifest number: 0E79
Signing time: Sat 28 Jun 2025 16:01:21 +0000
Manifest this update: Sat 28 Jun 2025 16:01:21 +0000
Manifest next update: Sun 29 Jun 2025 16:01:21 +0000
Files and hashes: 1: OpNtLymObP1WYEVz0e-eDoKZtSk.crl (hash: EWPELM51wV5O7DMkIVGB+B12CevSA69PDLQh45nLJ8w=)
2: T24Mb-6KOyII9Zj4ApmqBzXBKxg.roa (hash: l/FPlArXvYmwy1iwUTLkf9bdXt1EQpVFOKjPM76DwnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:9c:02:19:e6:cd:e3:c1:34:30:aa:c3:4f:a9:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a936d2f298e6cfd56604573d1ef9e0e8299b529
Validity
Not Before: Jun 28 16:01:21 2025 GMT
Not After : Jun 29 16:01:21 2025 GMT
Subject: CN=b10e0a18fe58ce80e5e6ed0407737bef2ea3b823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:91:cb:71:63:43:ad:3a:a3:11:2a:cb:a5:64:
e7:dc:41:14:0f:45:f4:52:ba:24:f9:19:da:a1:91:
f8:e1:aa:ae:1c:ca:2c:d4:89:a7:69:3a:de:9a:7e:
22:52:ab:1a:96:ae:41:e4:25:68:bd:9d:28:fd:77:
98:97:5f:f6:08:0d:41:d3:d4:13:43:25:6c:60:e5:
7f:ee:90:1a:db:21:07:a8:ea:f7:01:5d:65:d6:34:
20:85:bf:a1:8d:20:26:15:f9:62:92:0d:4d:81:5c:
5a:77:b3:53:9a:5d:03:5d:3a:bc:de:c1:bf:b4:fb:
87:dc:e0:b6:1e:45:8f:11:39:1d:38:c8:eb:c1:61:
52:6f:e5:aa:d1:d9:a1:63:36:0d:12:cc:64:fc:fe:
9d:44:5b:af:e8:eb:3c:29:7f:5e:d6:7c:99:41:0d:
a6:2f:11:64:47:c6:9e:1a:03:2c:33:24:86:d6:48:
0e:cd:07:a2:b6:7b:9c:93:5b:70:f8:ce:6d:87:30:
d4:bc:98:c4:af:02:c2:90:e2:28:ec:7d:b9:c2:a6:
e4:24:d4:0c:a9:08:d4:e1:1c:8a:72:60:92:68:e5:
e5:9c:62:bb:d2:15:bd:d9:f2:c9:04:d4:e1:68:ba:
1a:52:07:4e:ef:09:75:be:d0:bb:22:38:f6:ee:6f:
f2:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:0E:0A:18:FE:58:CE:80:E5:E6:ED:04:07:73:7B:EF:2E:A3:B8:23
X509v3 Authority Key Identifier:
keyid:3A:93:6D:2F:29:8E:6C:FD:56:60:45:73:D1:EF:9E:0E:82:99:B5:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpNtLymObP1WYEVz0e-eDoKZtSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/704973-1866-40d1-9a1d-b5f8ec0aad7c/1/OpNtLymObP1WYEVz0e-eDoKZtSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:e3:4b:c5:17:7b:4b:d6:e0:72:b0:7c:2f:ac:98:4d:db:7f:
cf:82:7f:54:98:70:37:36:e9:be:83:74:04:d0:52:5a:20:26:
2a:cf:4c:cf:d5:3d:24:83:f9:2a:8e:00:3b:ee:f2:a5:18:de:
56:7d:b9:cd:1d:43:a2:f9:fc:5c:92:7f:0c:6d:3c:89:ad:66:
63:2b:00:62:2f:0b:50:cb:b7:a2:54:13:ac:27:3d:52:c3:83:
98:d2:55:68:37:6f:02:77:c6:53:24:83:c7:1d:c4:f1:4f:96:
57:70:77:2d:3d:06:14:d2:0f:e0:83:b4:8e:7b:6f:63:74:ec:
8d:9d:78:a4:78:f2:f6:f2:74:10:0f:8f:a9:1f:ec:68:40:bd:
68:eb:f0:21:98:15:18:4c:9b:7e:8e:74:e7:ef:58:1a:48:98:
ce:71:50:b7:ff:cb:43:77:47:46:80:18:63:43:19:0e:56:4c:
81:76:40:d3:60:57:a8:87:3e:be:7b:10:2f:a9:11:37:05:80:
ac:2d:3c:8f:49:46:8f:a4:65:1d:fa:c8:ca:12:b5:2e:66:91:
e9:af:6c:56:e9:9b:3f:45:87:94:03:a6:c4:2c:00:d8:48:07:
de:70:1d:f1:99:f4:99:45:a9:7c:2a:89:d7:0d:d3:e0:ee:c8:
e0:f5:e2:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:20:46 2025 by rpki-client