Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
File: Os5p2XnZoNxneVEGweVayhVHCH8.mft (raw, json)
Hash identifier: 9L8TvJOWjgYVtUi582HHkruyjDPNwo1Refm9ZBcMrm8=
Subject key identifier: C4:5E:FD:39:4A:B0:DB:D0:61:2B:89:7B:F6:23:13:B4:02:6D:AA:C8
Authority key identifier: 3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F
Certificate issuer: /CN=3ace69d979d9a0dc67795106c1e55aca1547087f
Certificate serial: 0197CA95933926AC86D9C13167612A22C08C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
Manifest number: 15B9
Signing time: Wed 02 Jul 2025 10:01:29 +0000
Manifest this update: Wed 02 Jul 2025 10:01:29 +0000
Manifest next update: Thu 03 Jul 2025 10:01:29 +0000
Files and hashes: 1: Os5p2XnZoNxneVEGweVayhVHCH8.crl (hash: TheCT7XOXuQQM+e57NTikz1UeQQQAUVqgkjcUwUJHTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 10:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:95:93:39:26:ac:86:d9:c1:31:67:61:2a:22:c0:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ace69d979d9a0dc67795106c1e55aca1547087f
Validity
Not Before: Jul 2 10:01:29 2025 GMT
Not After : Jul 3 10:01:29 2025 GMT
Subject: CN=c45efd394ab0dbd0612b897bf62313b4026daac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:5f:04:30:74:08:77:ed:c8:0e:00:74:db:
23:ce:65:25:65:a6:db:7a:a3:44:41:0f:c7:62:1d:
fb:6e:06:3e:3f:71:90:84:90:05:d1:79:04:54:33:
3b:5c:14:bc:a9:36:6b:73:13:d9:d0:d0:b4:b1:67:
37:70:64:d8:3a:b6:f5:83:eb:9f:c4:39:90:3d:a2:
cf:c1:f1:aa:70:26:a7:2d:3e:5f:cc:47:9a:02:46:
9a:10:07:7c:24:c4:13:3c:d8:e2:b9:86:36:19:fa:
34:e9:c2:0f:b1:b4:e0:07:83:36:2a:8a:25:37:11:
4e:ed:e7:bb:26:7a:4d:2e:db:b9:e8:86:d0:a0:5d:
f1:07:66:72:40:64:0a:51:30:92:8f:7e:a5:7a:b7:
b6:89:39:d8:ff:64:98:38:37:92:df:64:8f:17:48:
70:6f:29:03:ff:a2:2c:a8:13:e4:ef:ff:ad:f5:4d:
c9:47:0a:7b:9f:39:68:07:df:44:69:31:90:2f:7e:
99:d5:3d:cd:70:b3:ff:75:f0:94:7b:48:a9:f0:db:
87:5d:b9:87:f8:ca:ce:a2:50:61:31:59:c0:be:46:
d3:fd:5d:40:b3:a7:18:99:e3:fb:56:ae:72:1b:14:
98:24:41:4d:0c:de:bf:2c:11:a1:10:d4:69:9d:29:
74:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:5E:FD:39:4A:B0:DB:D0:61:2B:89:7B:F6:23:13:B4:02:6D:AA:C8
X509v3 Authority Key Identifier:
keyid:3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:d8:64:de:08:0e:ab:e2:a9:72:15:18:c0:59:e4:70:25:00:
42:6c:6c:9f:84:89:27:03:9b:1b:ff:b9:ab:d9:a1:29:e6:cb:
72:17:e2:b5:5a:5c:ea:b7:f9:56:44:b9:1b:74:ba:a1:52:d7:
29:b6:0b:4d:b1:8c:71:de:b0:f3:97:62:16:b5:71:74:a0:c5:
cb:c7:3e:63:f6:77:f1:5d:3d:f6:9a:90:de:01:72:7e:e8:ca:
ab:71:e2:ec:4e:29:08:18:8b:eb:49:4c:78:d1:d6:00:c4:19:
56:e0:98:39:8a:f0:5d:dd:3b:6e:cf:67:58:35:50:36:9f:0c:
52:8e:d6:61:8a:9a:6c:2b:de:35:c6:2c:2f:25:63:61:8c:b2:
2f:80:7f:99:c5:85:20:2e:a2:c1:53:00:39:43:ed:62:db:3b:
8a:54:db:5e:b6:bf:aa:63:51:fe:7f:02:e2:63:63:06:28:c4:
3b:d1:9b:59:c6:e6:dd:78:97:b8:55:f2:02:da:26:2e:f6:1c:
35:63:f5:f3:ca:04:b5:6e:dd:ef:e9:85:11:1f:86:32:b5:03:
5f:57:cf:75:91:4b:3f:4c:a9:0e:eb:d6:b9:3f:d5:ef:6b:80:
e5:50:d0:44:b7:8d:c9:32:27:83:0a:14:77:b6:cc:fa:18:46:
1c:95:db:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 12:20:37 2025 by rpki-client