Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
File: OWpY9F0OyAFfoyauWP9YAzKJv50.mft (raw, json)
Hash identifier: c0e8Srfk/kJ2NYGFaI6GoCVo2M80mXrcBKkQj1W23qk=
Subject key identifier: 41:A1:5B:30:E6:96:43:29:C6:AA:C8:70:CC:42:8D:8A:6E:1E:9C:D9
Authority key identifier: 39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
Certificate issuer: /CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Certificate serial: 0197B74511EC3F4816F576ECF10291008BFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
Manifest number: 15B2
Signing time: Sat 28 Jun 2025 16:00:46 +0000
Manifest this update: Sat 28 Jun 2025 16:00:46 +0000
Manifest next update: Sun 29 Jun 2025 16:00:46 +0000
Files and hashes: 1: OWpY9F0OyAFfoyauWP9YAzKJv50.crl (hash: PJyQ51I26hfZvHLPj1yVyzZj5fa8Vum+pJFPpMMLE5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:11:ec:3f:48:16:f5:76:ec:f1:02:91:00:8b:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Validity
Not Before: Jun 28 16:00:46 2025 GMT
Not After : Jun 29 16:00:46 2025 GMT
Subject: CN=41a15b30e6964329c6aac870cc428d8a6e1e9cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:dd:33:58:0f:4d:0d:4b:c0:a2:5e:37:7c:6d:
44:11:da:3e:72:43:00:4a:f3:39:43:c1:29:39:35:
d9:9d:75:d3:31:35:65:a9:d1:7c:ed:01:65:30:37:
3e:78:f5:b0:88:b0:3c:78:8a:3e:58:43:a8:ee:8c:
b9:52:55:f0:a2:48:c4:a6:67:d8:40:3d:18:f1:11:
3b:7a:38:6c:a5:d1:a7:14:e1:d5:33:ad:f3:ed:14:
92:de:ef:5d:20:3c:b9:34:78:5a:9b:25:2d:4d:7b:
dd:a2:e5:47:4f:ea:82:a6:65:05:a0:3f:1d:db:87:
51:6e:8d:92:7f:92:54:ce:d1:1b:b5:34:ea:f1:51:
0d:b9:13:d4:64:b6:2c:c9:70:ad:50:d5:26:96:f8:
67:ec:40:37:c0:9d:5a:f1:31:fb:4a:19:be:28:7f:
a7:55:d5:60:ff:69:50:50:41:22:7a:aa:67:54:53:
2f:56:2c:d8:15:92:75:19:81:19:5c:a1:d8:e0:3b:
ed:9f:45:df:45:fc:d5:44:0c:4f:78:87:44:f5:d7:
f2:de:71:21:66:76:78:47:1b:66:26:31:9d:1f:ca:
50:0d:57:77:98:ce:c4:ad:98:d4:76:56:93:2b:9d:
76:97:d2:1e:89:e9:06:d7:86:a7:40:77:01:b8:32:
25:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A1:5B:30:E6:96:43:29:C6:AA:C8:70:CC:42:8D:8A:6E:1E:9C:D9
X509v3 Authority Key Identifier:
keyid:39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:68:b3:59:4a:09:a9:5a:9c:bf:58:35:d4:c6:f4:ad:97:0a:
9c:9a:0e:54:b9:e5:3f:ed:b5:54:fb:d2:02:fc:ec:40:e7:9b:
c8:44:4f:64:a9:b9:77:1d:26:ce:2c:6d:fe:c5:d3:7b:8d:d1:
bd:85:19:1b:f3:9b:b2:b8:8f:17:10:aa:7e:5b:36:1a:1e:22:
b0:62:9c:dd:79:f8:92:49:94:87:7a:47:34:8b:2c:2b:a0:19:
67:28:76:8d:8d:dc:3d:4d:2d:0d:0c:57:a5:56:84:1c:ac:04:
f4:96:4e:2a:9b:fe:86:ad:4d:6d:79:46:bb:a9:24:67:10:c8:
8c:12:86:01:95:4b:b8:7b:77:42:77:e7:55:c9:51:85:43:88:
61:e7:99:9a:f6:58:be:f1:60:97:5d:8f:c3:e3:8e:0e:84:e5:
c8:a0:ed:7e:cb:35:51:f6:93:7e:0d:89:99:8a:ea:21:53:1f:
85:f2:c2:69:78:bc:06:f1:8f:de:c2:51:02:81:2e:4a:fd:f0:
d8:27:b4:41:bc:8e:69:64:55:ae:14:5c:da:37:24:7a:f2:51:
e1:23:a9:e1:70:51:29:dc:bc:6b:09:e4:72:51:19:fa:ea:df:
f4:d2:d1:ae:b2:ea:2e:05:19:92:3c:c4:07:50:c6:03:97:ce:
c2:00:f2:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:26:16 2025 by rpki-client