Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
File: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft (raw, json)
Hash identifier: RgzSZRbn552/yM3oGzhMBtpelPh21hino1ApJN2u1Nw=
Subject key identifier: 37:DB:C1:28:13:7F:26:3D:A1:2A:20:33:FC:A9:88:6E:95:5A:BC:6E
Authority key identifier: 39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
Certificate issuer: /CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Certificate serial: 0197B7B3118F43B24BE3B0F7DEE5B036CE94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
Manifest number: 030C
Signing time: Sat 28 Jun 2025 18:00:55 +0000
Manifest this update: Sat 28 Jun 2025 18:00:55 +0000
Manifest next update: Sun 29 Jun 2025 18:00:55 +0000
Files and hashes: 1: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl (hash: clDv0jDbvb3j1KmiC2bp82jxqaZjhLKNhl9iAvFBFek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 18:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:11:8f:43:b2:4b:e3:b0:f7:de:e5:b0:36:ce:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Validity
Not Before: Jun 28 18:00:55 2025 GMT
Not After : Jun 29 18:00:55 2025 GMT
Subject: CN=37dbc128137f263da12a2033fca9886e955abc6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bd:58:59:c8:2c:d2:92:ed:97:34:f6:ec:93:
f2:a9:9d:35:f7:2a:04:d3:52:f3:a5:97:31:0c:93:
32:79:fe:71:01:d5:ed:bc:8b:67:b5:5c:bf:30:26:
a8:c4:69:aa:1f:83:2c:80:06:0e:0e:44:9f:6a:9d:
37:5d:d3:19:e9:fe:c5:56:99:60:15:60:e9:71:1b:
35:b1:a0:68:d6:e9:aa:cd:fc:28:13:22:52:2c:93:
a4:7b:84:e3:96:81:69:f7:e5:b6:4e:71:5f:f9:b4:
a0:2e:06:d8:64:74:58:f7:b7:86:3f:9f:3b:c9:76:
7f:cd:ee:84:f6:56:ab:8b:3a:64:8b:8f:ff:5a:1d:
fb:92:d4:f3:a4:88:e8:5a:40:69:b8:65:d1:6b:1b:
cb:0d:d4:27:e4:28:65:49:30:f3:0a:3d:8b:06:9d:
28:67:73:dd:27:07:d5:94:6b:a7:19:39:f4:4c:c2:
e7:7f:25:8b:35:79:fb:47:78:4f:83:83:1e:52:e9:
b9:3b:08:87:5d:c2:85:54:e1:d0:0c:04:1e:c9:ec:
dc:96:4a:0d:25:5a:cd:8e:3a:3a:b3:96:77:91:a4:
6a:01:ce:17:1a:3f:d5:e2:24:bb:6f:f6:e9:d7:53:
9a:12:dd:3e:f6:83:19:df:64:b2:9d:a3:68:c0:a4:
2c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DB:C1:28:13:7F:26:3D:A1:2A:20:33:FC:A9:88:6E:95:5A:BC:6E
X509v3 Authority Key Identifier:
keyid:39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:86:bf:e1:3c:f2:62:03:b6:5b:ff:eb:75:18:06:09:ea:07:
60:c2:63:6f:aa:43:f8:b2:3e:7c:c4:cb:9e:2a:03:0c:4a:a7:
cb:f6:7f:31:bd:f9:44:4e:84:f4:d7:40:97:1c:8e:02:7f:73:
a7:12:74:7e:69:d0:3c:f1:bf:0b:2b:2a:92:b9:a7:d7:42:c5:
b9:49:22:89:2a:a1:6f:2d:f0:55:d4:05:c4:75:11:41:99:12:
4b:57:1e:dd:7a:98:06:20:97:35:87:1c:72:c8:30:a9:24:b5:
e0:b8:de:88:97:84:58:c1:61:cf:4c:b8:61:3a:c4:e8:1c:f1:
12:d5:1c:b4:72:c0:3f:bc:99:3c:d0:7f:23:b0:bf:58:1d:fd:
28:27:dd:f9:bd:98:6d:3d:1a:1a:ac:61:e9:07:90:9a:55:b8:
aa:4c:fa:a6:3f:7b:42:d2:49:73:14:ab:62:c4:47:e7:80:a1:
cb:39:78:3d:07:27:47:c3:32:66:0a:69:0b:50:90:56:28:6c:
1e:2a:e3:b8:fd:39:56:62:7b:25:33:41:88:3f:0f:4a:98:d9:
9a:68:27:a1:8f:6b:d7:8e:f4:42:1e:fc:2e:13:92:c1:4f:f9:
63:0f:c9:9a:df:c0:94:1e:00:68:41:dc:39:2d:83:8c:7d:c9:
80:f5:46:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 02:07:45 2025 by rpki-client