Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft
File: oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft (raw, json)
Hash identifier: GBg9oQvPR87U0VjH8KPNMot+4hXL36R4YQcdKTSZDCk=
Subject key identifier: CE:05:AA:1A:13:DE:41:9B:65:71:A9:EC:FE:AA:0D:5F:87:AD:2B:77
Authority key identifier: A1:18:AA:FD:BB:CA:8D:4E:00:63:C3:11:95:FA:6C:19:4C:39:43:CB
Certificate issuer: /CN=a118aafdbbca8d4e0063c31195fa6c194c3943cb
Certificate serial: 0197B7EAB1E09B18E6327AD246BCCA0794B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft
Manifest number: 04D5
Signing time: Sat 28 Jun 2025 19:01:40 +0000
Manifest this update: Sat 28 Jun 2025 19:01:40 +0000
Manifest next update: Sun 29 Jun 2025 19:01:40 +0000
Files and hashes: 1: oRiq_bvKjU4AY8MRlfpsGUw5Q8s.crl (hash: gybmZR1BCDSGsCZNV96MW1HplaMkBb+kmfMJJLhAf6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:b1:e0:9b:18:e6:32:7a:d2:46:bc:ca:07:94:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a118aafdbbca8d4e0063c31195fa6c194c3943cb
Validity
Not Before: Jun 28 19:01:40 2025 GMT
Not After : Jun 29 19:01:40 2025 GMT
Subject: CN=ce05aa1a13de419b6571a9ecfeaa0d5f87ad2b77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f6:b2:cf:b2:19:76:76:2a:d1:1c:2c:c6:ab:
a0:cc:ed:e0:28:4d:40:f2:65:ef:01:0e:c9:7b:4f:
b9:ca:85:da:bf:d1:19:7d:70:ac:f2:60:e6:30:5c:
63:85:50:c1:58:34:e6:76:9b:ba:21:f2:4b:f5:21:
ea:f4:70:3c:7f:0b:4b:e2:ee:3d:21:0e:8d:92:de:
29:42:50:ef:34:4c:74:94:a9:47:2f:ba:89:c6:cd:
0a:dd:a5:bb:ba:5a:37:a5:77:cb:e4:e6:5d:76:fe:
6b:45:18:2c:14:b9:71:d0:b4:85:c8:fc:01:6e:4e:
48:99:af:b9:ec:ec:f5:47:54:d9:c2:4a:26:b0:51:
24:e5:96:24:35:22:21:47:2f:a3:38:6f:f3:ae:80:
f2:2b:b5:56:8c:27:28:63:84:2b:a0:05:10:72:5e:
3a:db:7e:2e:11:a3:17:2b:c7:86:ee:16:a0:88:8a:
52:a8:26:3d:f8:e8:6c:df:0b:cc:50:80:eb:45:c0:
f3:91:bd:52:92:ea:c6:ac:00:01:05:cf:24:be:4e:
5f:d5:d9:a3:f3:08:35:52:eb:05:f1:10:76:78:e6:
b3:74:4e:27:ba:2a:c0:d3:75:34:35:86:a4:88:e8:
b0:48:00:6c:3f:74:68:88:15:ae:96:41:b7:78:29:
93:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:05:AA:1A:13:DE:41:9B:65:71:A9:EC:FE:AA:0D:5F:87:AD:2B:77
X509v3 Authority Key Identifier:
keyid:A1:18:AA:FD:BB:CA:8D:4E:00:63:C3:11:95:FA:6C:19:4C:39:43:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/465c51-78e4-4178-8585-72f21e646e8e/1/oRiq_bvKjU4AY8MRlfpsGUw5Q8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:39:ef:97:e6:88:88:27:06:c9:dc:9e:90:bd:9b:31:e9:d4:
c2:35:87:cd:5d:93:bb:24:a9:4f:ef:4d:e6:4d:9e:cd:41:94:
d4:a9:64:c2:1f:80:5e:1a:ea:b0:c3:e9:fb:c6:fb:2d:44:2b:
1a:b9:85:c0:b5:2b:14:d1:b5:34:20:da:5d:46:12:06:a3:d4:
28:5e:57:b3:e3:a3:5b:c1:f3:f3:b0:98:0b:c5:e7:6b:51:6a:
22:ee:b3:3a:6b:7b:fd:28:09:bb:d5:cd:e1:5e:f7:84:f8:15:
be:86:0a:fe:47:d7:3d:93:52:7d:5a:8f:ab:42:1d:dc:53:4a:
3f:0b:ec:08:53:e9:89:92:07:42:71:10:c9:24:54:29:5d:d2:
94:6b:0c:35:a1:4d:a6:88:e0:ca:f7:f9:32:d6:06:c0:d3:1e:
c0:97:4b:54:0b:36:35:08:95:8e:a9:37:27:56:4e:ae:27:c2:
cd:eb:e6:ac:d4:8f:8c:54:07:66:69:b7:b2:67:a5:e9:ab:42:
63:43:b5:21:71:ec:14:34:46:98:85:78:48:df:11:76:ca:f1:
52:f0:70:9e:88:04:64:1f:e3:17:b2:59:ce:d4:c6:04:6f:68:
2a:c2:5b:d9:04:a9:52:1c:33:e6:9f:7f:fb:0d:1d:b2:04:e8:
e8:39:55:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:55:39 2025 by rpki-client