Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
File: Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft (raw, json)
Hash identifier: 55kBSGKz37v6Oy1La8PP/fubtJj23/+VTvRVqwlQrkE=
Subject key identifier: BF:83:C9:9E:90:09:8F:EA:5B:4F:C3:0F:CD:65:18:0B:8D:58:AE:A0
Authority key identifier: 39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
Certificate issuer: /CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Certificate serial: 0197B6A0B72A2D7AC91036AA14A94D51DDE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
Manifest number: 15B2
Signing time: Sat 28 Jun 2025 13:01:15 +0000
Manifest this update: Sat 28 Jun 2025 13:01:15 +0000
Manifest next update: Sun 29 Jun 2025 13:01:15 +0000
Files and hashes: 1: Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl (hash: IbUg4onHEiStF7VHgyHJHHHWHNoTF3L4wVpMwZ1IQVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:b7:2a:2d:7a:c9:10:36:aa:14:a9:4d:51:dd:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Validity
Not Before: Jun 28 13:01:15 2025 GMT
Not After : Jun 29 13:01:15 2025 GMT
Subject: CN=bf83c99e90098fea5b4fc30fcd65180b8d58aea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b1:8a:aa:46:d0:ba:d7:8d:f2:44:a8:16:d2:
ff:f1:10:ce:7d:11:be:a4:f3:ac:6a:61:ee:c5:04:
c3:5d:43:e8:7b:b3:a3:84:7f:1f:b6:b7:06:a3:6d:
be:b9:6a:9a:55:e5:a5:c7:4a:de:da:8a:21:16:d0:
73:4b:f1:43:65:7e:ee:c1:8f:4e:52:c0:60:4e:65:
c6:de:a6:35:6c:63:34:52:03:e1:29:b6:b5:63:b5:
2b:4e:c0:00:13:9a:27:91:d6:ce:6e:c0:96:90:2c:
6b:03:f2:38:a7:90:2b:92:44:50:dc:fc:b3:d4:0d:
4f:da:fb:80:f9:3f:00:1a:74:91:97:ec:9c:c2:83:
85:54:6c:7d:be:29:74:36:c9:28:4a:3a:89:1b:3a:
ea:1a:dc:c9:d4:07:dd:18:55:4e:eb:57:35:20:a2:
6b:52:1e:5a:30:9b:e7:86:99:3d:4f:08:81:9e:da:
cc:dc:a0:57:29:b8:88:45:a4:98:39:2d:80:f5:52:
b0:70:08:de:c2:ff:49:3a:b8:d3:cb:d7:4f:55:ff:
d3:a3:75:f4:83:08:e6:60:5b:da:b7:31:74:39:20:
56:6f:22:d2:6e:f7:cf:32:53:a9:16:4d:fd:32:d9:
c2:91:da:c9:d4:bf:22:3d:27:b6:52:ba:53:47:02:
9f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:83:C9:9E:90:09:8F:EA:5B:4F:C3:0F:CD:65:18:0B:8D:58:AE:A0
X509v3 Authority Key Identifier:
keyid:39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:0e:65:21:a0:db:51:86:e8:7b:65:87:2a:86:dd:b8:7d:14:
18:0e:e9:bd:4b:ef:02:56:00:f6:34:45:3e:5f:83:26:7a:4d:
c4:a8:b1:54:b0:40:62:bb:3e:55:64:d1:c0:2a:00:76:23:a5:
d3:a7:54:33:34:13:52:41:db:be:ca:14:b4:18:03:0a:81:b9:
24:3c:6f:9c:44:f2:73:83:23:ff:7f:8f:43:8d:2a:be:29:8d:
06:7a:8e:b5:57:ca:32:5d:55:62:7b:8a:09:b3:61:55:84:68:
be:1c:0f:36:bd:ba:fd:71:ea:f7:79:61:50:b4:2b:45:ea:14:
79:10:21:57:a3:91:7f:59:8a:a8:0c:ee:07:f5:49:dc:e2:7e:
b4:c6:82:da:ed:1f:e8:b4:7d:4c:15:9c:3e:6f:0b:b4:e6:9e:
54:91:f4:7c:85:fe:60:4a:80:01:1b:02:5e:a7:a3:8a:ff:a7:
9f:69:23:b0:76:3b:a1:2d:b6:d6:9d:50:08:ed:b7:2c:95:d7:
e7:06:5b:8d:0b:3d:39:a7:01:eb:ec:74:7a:03:4c:9c:a5:4f:
b5:92:d6:70:c3:ad:ee:f2:63:57:b9:31:23:3c:04:4d:6f:1b:
d5:9b:d6:83:03:11:00:74:33:7c:05:e7:3e:2e:c6:ce:79:ec:
a7:52:14:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:47:41 2025 by rpki-client