Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft
File: OoLcXHHOpyxlsCahJnifOIZXC6Y.mft (raw, json)
Hash identifier: hYQVpd+OGQlHeJac5LvmiY3i7Bp+fuZT944QK7jcUZU=
Subject key identifier: D7:89:17:45:B6:B3:8C:1D:15:A1:33:C2:22:89:07:6D:D4:47:C9:39
Authority key identifier: 3A:82:DC:5C:71:CE:A7:2C:65:B0:26:A1:26:78:9F:38:86:57:0B:A6
Certificate issuer: /CN=3a82dc5c71cea72c65b026a126789f3886570ba6
Certificate serial: 0197B6A08656DDDF1DA47AC2F15CCA70EBDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft
Manifest number: 15B2
Signing time: Sat 28 Jun 2025 13:01:02 +0000
Manifest this update: Sat 28 Jun 2025 13:01:02 +0000
Manifest next update: Sun 29 Jun 2025 13:01:02 +0000
Files and hashes: 1: OoLcXHHOpyxlsCahJnifOIZXC6Y.crl (hash: onjyHgAmtfuSS845wqIavGnRKFQ4M62Do7tINrN+MCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:86:56:dd:df:1d:a4:7a:c2:f1:5c:ca:70:eb:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a82dc5c71cea72c65b026a126789f3886570ba6
Validity
Not Before: Jun 28 13:01:02 2025 GMT
Not After : Jun 29 13:01:02 2025 GMT
Subject: CN=d7891745b6b38c1d15a133c22289076dd447c939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0d:84:68:1d:fc:38:6a:d1:74:e6:49:b4:5a:
e7:4c:10:c9:80:f9:d1:b6:7a:0f:de:64:77:e5:ad:
8f:ef:42:3c:56:c3:7a:ce:02:0d:9c:dd:82:83:6d:
dc:1b:a7:ce:92:95:c8:6d:53:02:f8:96:d8:7e:f4:
7b:f3:d3:45:4b:07:89:97:a9:34:c6:95:55:6b:06:
5c:07:6c:f7:be:38:a6:bb:9c:6f:46:9e:f7:d1:61:
7e:a3:ea:17:9f:bc:be:99:25:fd:8f:ed:75:18:36:
4b:e0:06:f3:9b:e9:78:45:5b:a8:49:6a:c3:33:05:
a3:48:12:24:75:81:fc:8a:a5:9d:74:0f:ea:75:d7:
4a:5f:a6:08:5f:0c:4c:98:64:4f:c5:84:6f:c7:ed:
25:e6:7b:74:4f:53:5e:95:a2:5f:cc:07:43:4b:5a:
dd:f9:a6:c3:90:3f:ec:5f:23:08:b2:1c:03:ce:eb:
50:f4:3e:0f:da:42:90:8a:e2:7f:0c:65:ca:21:76:
9a:88:22:e3:02:9c:3d:45:90:70:c4:af:cf:6e:4c:
07:82:0a:1e:e9:0a:11:63:15:bb:a8:59:6c:19:70:
5a:40:68:49:32:74:52:3f:9a:cb:4a:a0:be:7b:f4:
44:86:45:c0:ff:b4:bc:0a:d2:06:40:8a:2e:5d:ad:
57:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:89:17:45:B6:B3:8C:1D:15:A1:33:C2:22:89:07:6D:D4:47:C9:39
X509v3 Authority Key Identifier:
keyid:3A:82:DC:5C:71:CE:A7:2C:65:B0:26:A1:26:78:9F:38:86:57:0B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OoLcXHHOpyxlsCahJnifOIZXC6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d5958c-14ca-41d5-8d42-dc1fab439e30/1/OoLcXHHOpyxlsCahJnifOIZXC6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:18:ba:2b:20:b9:bd:8a:3d:36:07:ce:aa:3a:d4:b8:aa:f2:
2c:cc:5f:14:b4:3b:a6:20:99:af:e7:a9:f3:66:93:df:f4:05:
76:ed:8b:f4:55:3f:45:85:e2:6d:84:44:3b:0f:46:34:43:73:
80:8d:9d:37:38:e2:66:4b:f5:2d:5f:29:48:44:55:5b:9e:e1:
f3:c1:bb:24:67:f0:60:02:5c:63:f9:47:cf:39:c4:25:4d:d8:
75:3e:87:7e:40:a0:0d:ad:bc:25:26:ef:d3:a4:d8:b3:89:1d:
4f:9f:07:73:6b:b2:93:ea:a7:d2:55:32:84:8a:ef:80:bd:d0:
7c:d9:7c:d8:6c:6b:26:5b:bb:95:90:55:ff:a9:6a:10:a7:55:
90:a9:83:ff:4a:bf:c1:3a:4f:7f:0a:7e:20:c6:80:8d:75:83:
67:fb:7f:65:b3:9b:d8:78:f5:a0:a3:aa:69:d8:2c:27:4f:df:
c9:22:66:60:a6:d1:e5:2c:2e:ce:2d:9f:4c:f3:8a:55:ec:e3:
b1:5b:b1:e3:6a:1b:cd:eb:96:25:8a:c8:35:a2:42:c4:db:2f:
d1:7c:b2:aa:cb:4d:21:34:2c:ec:4e:06:f4:f0:16:08:d6:b6:
e4:d7:81:47:3f:5d:ac:f6:15:25:73:fb:5b:d4:41:26:91:fb:
b5:29:c7:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:02:46 2025 by rpki-client