Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
File: oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft (raw, json)
Hash identifier: q8H4ap4G384Uoaiqda/6WyuuyE+M0dZ4EAjMHcPIj28=
Subject key identifier: D0:37:BA:1F:A7:53:B6:55:E5:78:19:2B:61:82:08:D8:79:30:5F:38
Authority key identifier: A1:35:7A:7D:0F:03:2E:9C:DD:4A:03:1D:52:D3:B4:04:7C:03:94:1A
Certificate issuer: /CN=a1357a7d0f032e9cdd4a031d52d3b4047c03941a
Certificate serial: 0197B9D8D85004C134D4284770F8C7CB6FD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
Manifest number: 15B4
Signing time: Sun 29 Jun 2025 04:01:25 +0000
Manifest this update: Sun 29 Jun 2025 04:01:25 +0000
Manifest next update: Mon 30 Jun 2025 04:01:25 +0000
Files and hashes: 1: oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl (hash: gyOIM//ZJ10BnKkGS7qqAOAMWqIcB9IpBqT1Bt4/0k0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:d8:d8:50:04:c1:34:d4:28:47:70:f8:c7:cb:6f:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1357a7d0f032e9cdd4a031d52d3b4047c03941a
Validity
Not Before: Jun 29 04:01:25 2025 GMT
Not After : Jun 30 04:01:25 2025 GMT
Subject: CN=d037ba1fa753b655e578192b618208d879305f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6f:e2:48:21:49:0e:7f:51:92:9c:3d:f9:a5:
4a:d9:33:80:86:9a:0e:87:fd:4a:36:74:38:d6:43:
26:32:73:0c:f8:cd:bd:85:1e:f1:db:a2:12:ae:35:
57:46:06:50:4a:c0:ea:ae:00:46:91:dc:86:8c:42:
8d:ee:d6:10:0f:19:19:17:55:9a:83:b2:d1:bb:b2:
82:31:b7:a2:47:fb:eb:6f:16:df:87:36:0c:b5:96:
85:cc:05:4d:45:8a:7e:7c:0d:87:76:35:ad:93:9a:
46:73:37:71:ad:14:2b:b9:6b:ac:09:e7:a0:85:a3:
ac:41:38:70:8c:bf:ed:6c:d4:8c:11:26:49:23:8e:
ba:b7:8c:69:ed:23:42:2e:33:ba:ba:5a:b9:db:b1:
28:15:cd:88:4d:1a:f6:ab:10:e8:a4:9d:25:cb:29:
e1:85:d4:05:f7:7f:bf:5e:ae:da:be:d2:f9:0a:ba:
cc:18:3b:b7:21:14:33:e1:38:44:28:b0:b2:87:37:
17:6a:55:4b:cc:83:09:0f:b7:e2:65:2f:ae:a6:bf:
0a:ea:17:fd:05:32:94:ab:5e:cb:22:bc:54:39:47:
0e:32:f4:98:4f:01:bb:8a:68:2d:79:7e:16:ba:42:
99:d5:38:65:28:ff:7b:e4:38:b8:11:c7:69:d5:a0:
8d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:37:BA:1F:A7:53:B6:55:E5:78:19:2B:61:82:08:D8:79:30:5F:38
X509v3 Authority Key Identifier:
keyid:A1:35:7A:7D:0F:03:2E:9C:DD:4A:03:1D:52:D3:B4:04:7C:03:94:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:31:f2:47:62:f6:e4:5a:2f:d4:d1:a4:c8:56:25:6f:ac:cf:
aa:e2:18:23:75:94:f2:82:1b:cf:77:39:41:1f:53:c1:3e:d2:
59:d2:3a:88:c5:ca:a7:01:11:e0:32:f4:f2:3f:7c:17:24:45:
2e:55:4e:e9:42:7c:fe:e1:87:03:18:20:8e:e6:7a:ff:93:79:
46:19:38:9a:f2:52:c0:dc:6c:da:32:cf:3f:72:6c:c2:4e:cd:
a9:d1:c2:19:b8:0d:d5:01:b9:e7:a1:ca:d9:8b:e5:94:f2:a2:
4d:18:35:08:4c:7a:19:73:a9:80:40:4b:28:05:98:3f:3a:92:
65:cf:33:2d:b3:f8:e7:1c:bf:e6:1a:5d:56:b4:bc:6f:81:54:
e2:23:db:91:02:06:b8:e8:d9:08:a6:21:55:db:ce:c3:67:64:
30:95:73:16:8a:1d:53:26:70:63:2e:2f:b4:ca:c7:29:f6:57:
78:d1:97:10:12:91:b9:5d:5b:ac:b2:06:25:da:08:34:85:74:
b8:f1:1a:7d:66:f4:13:c9:d1:38:fe:5b:c5:ce:63:62:20:0d:
08:83:c9:68:e2:fe:f1:f2:70:ea:9f:44:f2:4f:22:e9:01:58:
14:69:bd:b6:88:f2:b2:1e:f7:32:aa:8b:8f:c0:61:0e:08:15:
2b:5e:cd:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:27:15 2025 by rpki-client