Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
File: OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft (raw, json)
Hash identifier: /qDekMaN5Wz9/+jMlTIBi3xvH6r7mAe1KBdD4ZgTVDQ=
Subject key identifier: 16:A0:C5:3D:B3:35:82:1D:84:C0:32:E0:E7:AD:AD:91:9F:FD:46:10
Authority key identifier: 3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51
Certificate issuer: /CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351
Certificate serial: 0197B6D79DE9B09A3044127B24F1C1007608
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
Manifest number: 0FCF
Signing time: Sat 28 Jun 2025 14:01:13 +0000
Manifest this update: Sat 28 Jun 2025 14:01:13 +0000
Manifest next update: Sun 29 Jun 2025 14:01:13 +0000
Files and hashes: 1: OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl (hash: R/YQ0vpx7HmIxl48AchIQv3gV3YsspuvK06BnoYjjv8=)
2: fmsKsNJsScyYZyH8RUfSLeG-UJA.roa (hash: XWgPxzT1eqv4he1A7biAZG6QqWis59ng7mldQueWS0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:9d:e9:b0:9a:30:44:12:7b:24:f1:c1:00:76:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a84dfef3d5107b84fc77c56dcf79e05fe9c7351
Validity
Not Before: Jun 28 14:01:13 2025 GMT
Not After : Jun 29 14:01:13 2025 GMT
Subject: CN=16a0c53db335821d84c032e0e7adad919ffd4610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d3:67:f0:c8:90:cc:a4:91:6d:a5:37:1d:b6:
48:ff:df:2c:3b:14:32:30:78:e8:31:6a:64:74:63:
27:d0:e1:38:b5:2e:39:26:23:48:83:46:27:e1:36:
59:bf:28:e7:ae:99:c7:a0:d2:35:a2:eb:b3:15:0f:
67:73:fe:26:01:35:27:f8:bb:ed:a2:6e:96:83:99:
66:8f:81:28:52:58:1d:a1:35:ff:c3:bc:92:af:b8:
69:52:37:e3:4c:83:42:1e:a4:0c:a6:0a:81:ac:5f:
48:0d:39:32:08:1c:50:3e:c2:82:27:81:07:51:11:
6f:6b:1e:63:ae:0b:9e:5e:5d:f3:36:06:36:13:21:
16:9b:5a:e4:72:24:da:b3:c6:f8:76:77:cb:46:35:
9c:32:81:32:7d:fe:bf:d9:70:03:a7:42:6f:92:56:
a8:24:99:28:f7:3b:64:ff:b1:55:6d:eb:1a:32:83:
29:d2:02:5f:c9:21:87:c0:f3:ea:85:1e:fa:eb:a8:
15:74:01:dc:77:33:ed:ba:c6:fc:25:84:78:a0:4c:
f6:71:7d:7a:c1:12:04:6a:cd:71:30:e2:7e:e2:3b:
3d:cb:78:7d:2a:67:b4:9a:0e:4b:bf:5c:18:e3:32:
4e:0a:86:18:a7:4f:7f:7f:6c:b2:ec:02:8f:75:5c:
55:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A0:C5:3D:B3:35:82:1D:84:C0:32:E0:E7:AD:AD:91:9F:FD:46:10
X509v3 Authority Key Identifier:
keyid:3A:84:DF:EF:3D:51:07:B8:4F:C7:7C:56:DC:F7:9E:05:FE:9C:73:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoTf7z1RB7hPx3xW3PeeBf6cc1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d4b7f3-40ce-42ed-a93b-5e8dedac9cb7/1/OoTf7z1RB7hPx3xW3PeeBf6cc1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:c3:23:5b:85:25:88:5e:dc:af:7e:5f:52:3e:78:fd:c9:74:
95:93:7e:eb:c3:0e:82:2a:ed:df:c1:c3:13:70:10:1e:67:5d:
e7:58:bf:60:4d:5d:88:96:39:14:8a:19:73:3d:7f:76:f4:6f:
34:ee:ae:b7:6c:a0:82:f4:fc:bd:32:92:03:56:f2:ef:db:43:
4f:02:50:42:b4:a2:ef:82:d0:0e:9d:55:c8:ac:ff:7b:b0:63:
2b:8b:bc:24:dd:1a:c0:22:7f:6e:33:65:71:ce:3b:67:6c:e3:
aa:1d:93:8f:d3:f2:93:8e:b3:6c:d6:eb:21:53:20:2e:1d:fa:
e8:2e:09:5f:b8:b4:93:25:d6:2c:c7:ab:5e:00:ce:d0:ff:22:
ff:77:30:c7:cd:c3:a9:9a:28:8f:45:8e:dd:7d:0c:71:79:ce:
86:87:48:78:55:03:d3:45:5f:eb:c9:1b:9e:1d:7d:34:b2:14:
11:c5:f1:86:77:92:17:fc:19:2c:9f:42:8f:7e:47:01:5c:a4:
41:f6:24:6e:f9:cf:3d:c6:b5:8d:e3:f7:1c:c0:24:6c:b9:1e:
14:1f:53:22:fc:5d:e5:98:bd:c2:d4:ce:2c:ee:ce:9a:e5:9a:
c0:5f:83:80:d6:ea:08:cd:c4:01:ee:46:f6:b1:ec:8b:c5:69:
79:bd:f3:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:17:13 2025 by rpki-client