Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
File: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft (raw, json)
Hash identifier: o6Ct8gLuBcTgXudUO9OlO4/pa7no5NUuNrcmVMsSn1M=
Subject key identifier: 81:A5:71:81:34:70:E2:12:47:75:6C:88:B6:A5:3A:10:2C:BD:0F:2A
Authority key identifier: 68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2
Certificate issuer: /CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2
Certificate serial: 0198D473F289EA8DB513ABF0B2E2512A3CEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
Manifest number: 162D
Signing time: Sat 23 Aug 2025 01:03:44 +0000
Manifest this update: Sat 23 Aug 2025 01:03:44 +0000
Manifest next update: Sun 24 Aug 2025 01:03:44 +0000
Files and hashes: 1: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl (hash: ytiVWgRBefRAJ6a89ny5Rq/a/h1sE2HtD/Z02meDga4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:f2:89:ea:8d:b5:13:ab:f0:b2:e2:51:2a:3c:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2
Validity
Not Before: Aug 23 01:03:44 2025 GMT
Not After : Aug 24 01:03:44 2025 GMT
Subject: CN=81a571813470e21247756c88b6a53a102cbd0f2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:26:f4:94:25:f1:b8:15:ec:af:b0:e5:e8:40:
2e:1e:ee:4d:db:73:18:96:d8:e9:de:be:ed:0d:96:
8d:4b:72:28:ac:fa:69:82:fb:96:39:43:4b:94:d1:
e7:64:79:c2:60:7c:74:c1:6f:ce:35:84:24:26:e9:
f4:d8:36:58:f9:9e:98:b8:6c:2d:af:14:a0:d7:db:
19:90:3d:50:5b:36:5d:22:0e:c6:d2:eb:2f:4a:c9:
e6:2b:af:54:2d:21:f1:cc:9c:35:c5:bd:02:6b:4c:
b0:55:8d:ca:f1:6c:1e:d9:f4:6f:25:79:b2:47:5a:
b0:97:0b:84:97:25:69:1f:b2:3f:b2:a0:3f:d3:25:
9c:76:e2:08:41:7b:7d:ad:58:24:e0:2d:fa:d6:5a:
46:42:d6:90:92:2d:a7:4b:71:e4:86:99:33:1e:2b:
49:14:d0:5f:fe:94:cf:ee:6a:09:8a:c4:6f:29:36:
4b:42:62:8c:05:e3:c4:c5:67:00:02:a3:77:b9:ae:
b0:49:e5:b4:de:b6:4d:82:20:4b:1b:ad:6d:65:4c:
21:e1:29:7e:77:de:03:52:e5:56:df:4e:84:21:b9:
89:94:89:aa:66:d0:05:94:7c:a9:f2:a1:4a:30:e2:
9d:8c:23:ff:22:5e:65:1f:ad:98:2d:ce:e9:6f:48:
a2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A5:71:81:34:70:E2:12:47:75:6C:88:B6:A5:3A:10:2C:BD:0F:2A
X509v3 Authority Key Identifier:
keyid:68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:ae:93:79:f0:b0:5b:f5:2e:da:3d:28:57:e3:6b:cf:1f:9a:
d8:07:09:d8:d4:49:87:39:5b:05:60:4e:3b:3c:1c:f7:93:ea:
40:74:32:d5:ac:3b:92:27:f8:9b:c3:17:67:5d:09:e3:3b:22:
93:8e:94:1e:d9:81:6c:a5:0a:ea:25:cb:9b:41:10:35:93:fd:
ec:6e:81:f0:12:15:7c:15:2d:e2:a4:44:4a:0b:90:a1:9b:58:
bc:7d:00:f3:81:f2:2b:30:51:c7:38:53:64:b0:38:22:7b:aa:
ce:c6:fc:23:44:32:32:33:5c:c1:a9:43:80:10:a3:00:3d:fa:
a6:6c:5d:34:3e:6c:48:74:bc:10:a5:73:97:7f:ab:08:2f:fe:
56:f4:80:23:21:5a:1a:ab:51:f1:fe:f3:52:e6:af:36:57:8e:
1f:8e:f0:0c:aa:d5:70:1b:fd:09:26:0c:96:5f:07:f5:a5:f0:
62:9e:99:f3:04:48:9e:b0:7f:f7:9b:fd:85:29:28:8e:e7:46:
96:7f:92:bc:c8:86:64:12:5f:d2:e4:f1:a1:cc:51:a9:c7:20:
22:b3:d1:cc:8b:f9:4c:ec:51:42:4a:f6:a8:91:b8:39:99:bb:
e1:15:5e:15:f3:3a:80:fb:0b:be:8e:0d:45:24:9a:55:e9:85:
5f:5e:18:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:23 2025 by rpki-client