Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
File: O8RoMnEppQF7l23I7aydG56aFMw.mft (raw, json)
Hash identifier: orW/y1ayxDhpBeUjOM1ADPSackEgHUHOosjhpqkjHgY=
Subject key identifier: 88:08:8F:9D:1C:C1:48:F6:AD:D4:6B:61:B0:CC:77:12:97:F8:BB:ED
Authority key identifier: 3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC
Certificate issuer: /CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc
Certificate serial: 0197B5FC1BC67A164AD3D454EF0DA4C8BBBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
Manifest number: 1540
Signing time: Sat 28 Jun 2025 10:01:27 +0000
Manifest this update: Sat 28 Jun 2025 10:01:27 +0000
Manifest next update: Sun 29 Jun 2025 10:01:27 +0000
Files and hashes: 1: O8RoMnEppQF7l23I7aydG56aFMw.crl (hash: Xr4YJdAzkaVh7zNrFtRCFBc5Jl6TiuDMsjMz1JOnDps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:1b:c6:7a:16:4a:d3:d4:54:ef:0d:a4:c8:bb:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc
Validity
Not Before: Jun 28 10:01:27 2025 GMT
Not After : Jun 29 10:01:27 2025 GMT
Subject: CN=88088f9d1cc148f6add46b61b0cc771297f8bbed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cd:79:6b:b5:fd:27:27:e9:b6:0b:6f:6a:2c:
54:89:af:52:ab:56:0b:8b:aa:4c:f4:c8:dc:51:b0:
28:69:6f:83:99:40:49:c5:62:3c:bc:1b:9b:02:08:
1d:87:38:53:b1:82:c4:54:e6:13:ba:5d:ea:ae:54:
7c:f8:35:09:64:83:e8:3f:7d:4b:9d:e3:26:51:be:
e0:39:f6:13:5d:3c:57:00:5c:86:32:e1:1c:f1:96:
6b:bf:8f:6b:3b:c5:ff:f5:68:dc:89:0e:76:a6:fe:
f0:9f:39:9a:85:93:50:3c:7e:b8:4a:69:14:3b:38:
5f:ff:02:5e:ed:73:a1:48:16:57:0a:2d:8a:d1:a3:
11:22:a9:fe:02:4a:d5:9b:fe:ee:8f:cd:d4:83:d1:
3e:41:4f:28:d0:29:42:ca:6d:6c:b4:5a:e6:9c:44:
5d:85:69:51:82:bb:16:69:d6:8c:55:89:f2:50:54:
16:e7:a5:8e:71:3c:53:be:03:b4:ed:78:f0:0d:23:
dc:bc:bc:47:16:6d:25:da:f7:ed:7c:d8:07:36:f8:
27:53:d9:5c:e2:68:93:af:40:2a:ca:b8:1b:10:20:
14:90:a6:45:95:42:83:bb:f6:14:17:28:37:06:5e:
34:e2:10:22:56:3c:73:37:14:2d:99:9b:40:81:9c:
bd:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:08:8F:9D:1C:C1:48:F6:AD:D4:6B:61:B0:CC:77:12:97:F8:BB:ED
X509v3 Authority Key Identifier:
keyid:3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:8c:e7:a0:45:c4:28:92:29:9f:2f:b0:bc:6b:ff:ee:56:5b:
d5:45:73:c9:4c:a5:a1:5a:c7:8d:81:68:17:af:83:e7:f9:e8:
be:71:88:21:92:b3:a2:12:ee:63:84:3f:7e:88:d5:9c:ab:08:
d7:66:59:f2:ce:54:01:25:5a:52:9b:f4:d1:62:f7:9c:81:d0:
9e:3d:88:0e:b0:2a:6a:7e:59:52:67:49:46:c4:06:e2:5b:4b:
e1:f2:90:74:20:67:2c:1f:ca:64:04:62:e7:cf:86:5c:a0:6f:
6d:29:2b:25:6a:d0:00:4d:29:16:b8:2d:45:cd:54:bc:4d:39:
4c:6a:ef:5f:37:19:d0:a1:6e:4a:a0:55:e5:fc:a7:a7:ac:0e:
cf:2f:47:51:6f:d4:a5:29:9f:34:c9:a3:aa:9e:9e:4c:91:14:
f8:e8:d9:d8:86:07:bb:bf:51:91:5c:8d:da:6d:1e:88:58:ad:
1c:49:41:ce:c4:5a:5d:89:79:77:57:00:40:36:81:06:2f:96:
c7:8a:e7:e2:a3:92:0b:ad:a3:c0:43:2f:c7:19:42:b2:ce:be:
9d:d8:37:08:8c:40:f4:ce:39:10:80:32:05:95:03:4b:84:c0:
3e:31:e2:65:c6:d3:19:95:2b:8d:d9:bf:46:72:55:6b:cc:d6:
4e:7d:90:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:53:42 2025 by rpki-client