Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json)
Hash identifier: dU8LfhVjieB2eC6tMJgdTr2lpUtLfo9HIp+aNyqm+T4=
Subject key identifier: 2A:A3:12:CF:74:C4:32:D0:3A:ED:2C:11:AC:CE:CF:15:23:62:1F:00
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 0197B70E6F1A4EE9DD58463A44C37A295E4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
Manifest number: 1008
Signing time: Sat 28 Jun 2025 15:01:05 +0000
Manifest this update: Sat 28 Jun 2025 15:01:05 +0000
Manifest next update: Sun 29 Jun 2025 15:01:05 +0000
Files and hashes: 1: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: fLu02kHUYS2oNbhjjaSF/u2t/05zHwhGyKd+GASaqnE=)
2: SyALsZDSYtge1NmYRoKzwbP5Vv8.roa (hash: rjh76rxbo7HoAknp3g/P2hhQiBIAvMqHmifN8tVtg/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:6f:1a:4e:e9:dd:58:46:3a:44:c3:7a:29:5e:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Jun 28 15:01:05 2025 GMT
Not After : Jun 29 15:01:05 2025 GMT
Subject: CN=2aa312cf74c432d03aed2c11accecf1523621f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:23:e1:35:fd:ad:f1:10:fb:a0:ee:4f:e9:d9:
61:71:8d:b7:46:9e:eb:33:7e:9e:9c:12:93:63:2b:
6a:f1:50:fc:99:6c:0b:0e:ba:10:a3:f8:e4:1f:35:
0a:27:90:70:10:84:94:32:8a:b4:4d:61:c1:e2:14:
bc:1e:ae:c6:18:03:40:83:d9:06:fc:73:8d:45:4e:
fe:f0:f6:13:eb:2d:c6:1c:74:71:aa:de:7a:93:bd:
f1:d6:3d:c8:d2:0d:09:f1:07:ab:3e:fa:72:90:c9:
53:52:86:4d:37:93:12:84:39:88:fc:98:4b:18:f2:
f6:4b:f0:f1:42:9c:77:a0:75:b7:a4:41:67:47:eb:
b3:2c:30:0a:ac:c0:a2:0f:fc:f3:0f:1d:63:7a:60:
dd:8b:14:0a:66:06:f3:5a:d1:c7:30:25:7d:e2:10:
28:bd:38:73:11:b4:7a:3d:15:5f:4c:68:f5:29:59:
0d:68:eb:62:e0:ad:68:e6:e1:d2:3d:0e:2c:24:3f:
5c:9f:c3:27:f4:33:5b:e0:99:62:a1:78:f9:16:ec:
cd:a2:6e:2f:12:68:04:df:5a:f7:e5:17:26:7e:c3:
5a:ba:ef:3a:7f:63:37:49:02:d6:e2:4b:9a:e8:41:
25:2c:07:51:f5:93:d9:18:c9:8c:2a:c7:ba:0b:2c:
8e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A3:12:CF:74:C4:32:D0:3A:ED:2C:11:AC:CE:CF:15:23:62:1F:00
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:ae:81:4c:73:8d:69:7b:96:01:b8:20:ae:1f:3a:ea:31:90:
d2:2b:8e:ec:48:86:5c:2f:90:60:8b:60:09:0d:f8:8a:6a:29:
98:b6:57:14:07:45:03:5a:e0:3d:df:23:f8:8f:fe:aa:5a:f1:
ea:68:9a:88:17:ae:6c:b8:a1:bd:26:6b:96:03:0a:80:ec:b5:
72:be:a9:60:a3:78:7c:40:38:2a:22:06:6d:18:eb:42:9e:2f:
a3:c0:30:de:72:6b:dd:78:00:23:04:b0:e6:f9:b0:fd:fb:f8:
7a:36:72:e7:8c:5b:7c:7f:5c:95:ee:6c:00:de:a6:b0:30:21:
61:21:ba:89:4d:90:6b:ac:eb:7b:75:db:64:5b:af:28:72:11:
ef:17:d2:25:2f:eb:66:99:63:31:20:4e:39:75:55:1d:2d:61:
46:6f:fb:59:7f:64:be:df:7e:ae:97:ac:aa:d1:0a:a6:5b:8b:
32:23:89:a6:1d:ee:68:ea:2d:4b:56:88:10:c2:e7:1e:6d:19:
95:7c:9a:a5:2f:b4:7e:54:7d:9f:d1:d7:d1:ea:ea:59:eb:a1:
9b:27:2b:8a:0f:d1:ce:7f:14:50:f0:b1:96:9f:3d:69:76:ed:
ba:c9:e0:bf:ff:c6:af:7f:ff:a6:9e:1e:94:70:e8:9f:29:86:
7b:61:41:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:59:40 2025 by rpki-client