Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
File: 1ots-3IKfJKhgMphS9sO2h8evp0.mft (raw, json)
Hash identifier: YGh+nZE/XNCuUtJw2IzoZTIP0/FvDh+KzslTtlwCX78=
Subject key identifier: 52:49:45:78:68:2B:DB:28:B6:25:05:68:04:F4:62:29:51:F2:07:51
Authority key identifier: D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
Certificate issuer: /CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Certificate serial: 019921E76A1E36B62EC18F1EF67068465B7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
Manifest number: 0C70
Signing time: Sun 07 Sep 2025 02:00:37 +0000
Manifest this update: Sun 07 Sep 2025 02:00:37 +0000
Manifest next update: Mon 08 Sep 2025 02:00:37 +0000
Files and hashes: 1: 1ots-3IKfJKhgMphS9sO2h8evp0.crl (hash: jHCsU+5859ChaEhYTlQx4AJE6zTeirV3gkKuAADt73w=)
2: iN4kY7sCfzKOl-coUiFvOhD6wg4.roa (hash: ZI3B1VaDQ0JfOlPoqiW79rOHU3ymg8mbnEbUM636Uvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:6a:1e:36:b6:2e:c1:8f:1e:f6:70:68:46:5b:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Validity
Not Before: Sep 7 02:00:37 2025 GMT
Not After : Sep 8 02:00:37 2025 GMT
Subject: CN=52494578682bdb28b625056804f4622951f20751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:10:6b:57:10:94:3d:a9:02:5c:9a:2d:ca:c4:
c8:50:0e:16:21:e8:98:e0:16:5e:6b:4d:ed:ec:08:
d7:fc:a0:32:59:65:73:62:a0:10:a7:0b:e5:a8:95:
c7:50:1e:6b:fa:eb:d0:7e:c0:57:75:82:f4:0b:a0:
ba:db:ec:43:42:15:f9:b2:9b:d0:ed:d6:72:21:d9:
7f:b6:6b:c3:16:ee:ba:20:65:7e:93:a1:5e:a0:34:
91:ed:5f:4b:a5:9d:6b:3f:40:09:c5:26:e0:65:f5:
e7:06:de:c0:a0:63:dd:26:4e:69:2a:cc:5a:97:08:
5d:94:11:dc:a9:e8:70:ab:72:f5:91:5a:eb:88:7e:
68:d3:26:db:1e:41:fb:8c:a8:0b:9a:d2:87:a4:be:
d1:fc:57:b4:12:1b:1d:2f:c4:84:66:9c:77:41:e8:
db:76:23:46:1b:02:56:0f:57:b9:97:32:61:af:0b:
31:20:23:41:f4:88:9f:e4:39:a0:61:42:0e:c0:b8:
34:d3:1a:b0:b3:ff:91:69:85:7a:3b:04:0d:4a:5b:
28:a4:03:68:d6:1b:ae:6f:8c:a6:58:1d:ae:1c:ef:
85:87:62:30:38:78:f9:27:de:86:7d:c7:ea:95:be:
06:f8:3c:69:c2:f2:74:e8:c6:40:57:37:30:27:0c:
ae:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:49:45:78:68:2B:DB:28:B6:25:05:68:04:F4:62:29:51:F2:07:51
X509v3 Authority Key Identifier:
keyid:D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:46:29:a8:13:6a:b3:7d:4d:f1:ac:b9:ee:92:24:31:cb:f6:
37:af:e0:b0:3d:90:6b:ea:c7:fd:c8:ef:36:47:72:f0:17:b2:
cc:64:00:07:1f:f7:dd:d0:c7:8f:ff:12:4b:cd:eb:bf:a3:7b:
9d:c4:19:c6:af:5c:a1:8c:d0:96:52:fa:98:4b:34:e0:22:ad:
fe:99:9e:70:67:94:12:ba:17:44:37:04:0d:ba:72:d2:38:16:
2a:1b:f2:65:4b:5b:17:53:2e:90:82:c5:75:16:1b:70:95:34:
5a:1c:88:24:26:8a:31:22:65:19:4c:86:73:69:df:48:55:25:
d5:b9:59:f1:9a:f5:5c:2c:ba:84:91:df:89:02:3b:31:be:2f:
4a:bf:d9:7e:12:fb:11:ea:ae:92:8e:72:36:cf:6e:6d:12:43:
0e:0b:0f:ed:d1:58:08:b1:04:5f:08:f7:9e:d3:0c:b4:90:58:
85:c8:67:b5:76:75:99:50:63:12:0f:50:79:f6:ed:5b:05:75:
6e:b2:ae:f9:6f:c4:8f:9b:76:73:9c:5a:13:3f:7f:0f:68:73:
8d:bd:13:c6:e6:20:a7:28:a3:50:e6:5d:01:16:d4:80:ed:fd:
98:4c:3f:e6:92:d1:f1:48:ae:bb:d4:4d:14:c4:6b:a5:e3:31:
29:dc:38:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:32:51 2025 by rpki-client