Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
File: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft (raw, json)
Hash identifier: TfUEEc1hEgJnW5LfiQbGZ+U02wLn5iZRzVr9B/eaS/Y=
Subject key identifier: F0:BF:9D:34:27:0F:EF:0B:40:5C:E2:75:B3:65:5E:80:42:2C:37:23
Authority key identifier: 68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2
Certificate issuer: /CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2
Certificate serial: 0197B88FB574CEFF8556E5793D0B0B5D1F92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
Manifest number: 159A
Signing time: Sat 28 Jun 2025 22:01:54 +0000
Manifest this update: Sat 28 Jun 2025 22:01:54 +0000
Manifest next update: Sun 29 Jun 2025 22:01:54 +0000
Files and hashes: 1: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl (hash: GjvD5CpLLgiopVLbbAJxcGjrPw7QLMbZ3nCx9k0jsIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:b5:74:ce:ff:85:56:e5:79:3d:0b:0b:5d:1f:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2
Validity
Not Before: Jun 28 22:01:54 2025 GMT
Not After : Jun 29 22:01:54 2025 GMT
Subject: CN=f0bf9d34270fef0b405ce275b3655e80422c3723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5f:e6:84:52:85:fd:86:b4:16:e8:96:3d:57:
da:2b:7b:1b:ad:81:f1:ba:d1:6c:1f:87:37:8d:43:
f2:ed:0a:b6:d3:18:d6:af:13:30:19:d7:9c:ef:5b:
93:8c:a6:83:9c:84:55:a4:ac:0d:03:bb:8a:32:57:
57:c7:e3:81:0d:c3:bd:fb:99:60:ff:ff:8d:08:cf:
d7:79:bb:6d:a3:e3:86:96:f2:50:ec:fa:3d:cc:73:
b6:54:83:91:5b:94:e9:4f:a3:67:e8:d9:98:3e:24:
69:ab:49:b9:e7:3b:8b:76:92:af:c4:44:70:9a:2c:
e4:9b:88:48:06:49:c2:5d:ea:7f:65:bc:e7:cc:85:
7b:7e:2c:c6:f3:42:87:fa:ce:eb:33:cc:f0:e5:78:
81:57:fc:46:cd:ea:d7:e9:4c:de:b5:47:d1:9f:4e:
cf:d2:40:59:de:72:ff:4c:1e:aa:fb:a1:07:af:7f:
81:34:07:3f:55:27:a9:8b:bd:fd:6c:89:fd:61:11:
af:a9:90:25:dd:0d:53:52:79:2d:61:45:c4:51:2f:
bf:0c:98:3d:d7:48:4b:a7:a5:6f:d4:03:6a:80:b4:
8f:73:58:30:e5:46:47:9e:d0:87:fe:61:5f:29:58:
1d:89:cb:28:61:18:74:1c:8b:a1:71:07:45:40:15:
f1:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:BF:9D:34:27:0F:EF:0B:40:5C:E2:75:B3:65:5E:80:42:2C:37:23
X509v3 Authority Key Identifier:
keyid:68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:31:b4:46:d4:c1:cb:cd:67:28:3b:a5:12:86:1e:5e:88:09:
8e:ce:88:85:d0:ea:53:48:56:3b:64:9b:74:b5:2f:9f:55:71:
8e:ba:f1:ad:0c:6f:e8:b7:e4:4b:8d:ca:93:67:67:0f:29:86:
e4:cc:af:67:c8:b0:e4:94:7c:85:ce:91:0f:52:83:a1:b5:a4:
ed:ac:d1:57:98:c4:03:9d:7a:ce:95:15:df:e2:f4:0a:c7:a4:
35:ca:90:ce:cb:b6:44:1f:99:06:1e:a4:42:df:c8:e2:6f:ea:
5e:2f:db:08:9f:17:03:f1:3f:a7:60:fa:8f:95:58:9b:3e:b6:
e2:c3:7b:05:18:c7:75:a3:e0:7a:07:13:dd:8f:e6:c4:ca:c9:
fa:a6:ee:ba:a4:3d:38:cf:7d:34:4b:3b:8e:18:88:a0:f2:7e:
3a:63:1d:bd:e3:f3:a2:b5:06:3d:74:ea:04:2e:6a:0e:46:3d:
24:f6:c6:2d:10:5d:53:12:bb:37:18:8e:4c:62:6f:80:b4:f4:
44:5e:47:bc:c0:45:c3:e6:3a:ed:cb:1f:f9:a3:de:d5:17:44:
1f:14:62:c7:4b:2c:16:0e:04:5d:ca:e6:b2:2d:a8:b0:46:26:
29:5e:4a:11:e3:a3:1d:4b:74:34:45:fc:b1:01:99:9f:7c:ed:
e1:0c:16:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:00:07 2025 by rpki-client