Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
File: 1ots-3IKfJKhgMphS9sO2h8evp0.mft (raw, json)
Hash identifier: z7rhpsOL8352cHkX3s7WZ/b0CZc1WfOOwJ4pe5vwdSo=
Subject key identifier: EA:7F:70:41:1E:3D:F7:65:80:89:C4:08:9C:1A:BB:AF:6D:CB:B3:63
Authority key identifier: D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
Certificate issuer: /CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Certificate serial: 019748C36B31FD063E51FF2F9A6E647E4CC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
Manifest number: 0B7B
Signing time: Sat 07 Jun 2025 05:00:55 +0000
Manifest this update: Sat 07 Jun 2025 05:00:55 +0000
Manifest next update: Sun 08 Jun 2025 05:00:55 +0000
Files and hashes: 1: 1ots-3IKfJKhgMphS9sO2h8evp0.crl (hash: ZvPTN2bbJHuBqWkvgDOR/M1pG/qCbdLgKazHbroK5p8=)
2: iN4kY7sCfzKOl-coUiFvOhD6wg4.roa (hash: ZI3B1VaDQ0JfOlPoqiW79rOHU3ymg8mbnEbUM636Uvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:6b:31:fd:06:3e:51:ff:2f:9a:6e:64:7e:4c:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d68b6cfb720a7c92a180ca614bdb0eda1f1ebe9d
Validity
Not Before: Jun 7 05:00:55 2025 GMT
Not After : Jun 8 05:00:55 2025 GMT
Subject: CN=ea7f70411e3df7658089c4089c1abbaf6dcbb363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3a:3d:00:78:07:b0:13:19:ce:aa:49:c7:aa:
86:70:f3:fb:49:64:00:d2:12:aa:b0:87:48:c0:93:
a0:18:c3:77:d2:29:59:c8:d4:2c:ce:eb:d8:5c:a4:
9d:77:fe:bc:0e:5e:46:02:a6:72:35:83:d4:5b:8a:
f0:72:52:27:22:3c:02:f3:38:d9:ab:d9:fa:3c:ee:
a3:aa:80:59:79:6d:85:42:3e:f7:c2:83:74:5c:57:
0b:3e:fe:a1:81:dd:cd:b1:fa:b8:11:0c:e5:3e:00:
f9:50:58:f2:69:b9:47:ec:5e:65:9a:b7:48:8f:8a:
a8:13:ea:92:91:a8:e6:c4:4b:64:b7:eb:46:8e:ac:
ae:0b:a2:c8:80:8f:bc:7c:12:c7:65:cc:6c:35:87:
00:c3:be:fb:4c:fe:db:eb:df:34:1d:38:42:94:64:
ca:33:1f:22:cd:41:e3:7a:51:21:ed:91:c8:58:cf:
f4:eb:33:2e:48:09:86:7e:20:f1:fb:28:1f:7b:98:
8a:23:ab:12:39:2c:ff:d6:ee:c7:23:ac:9a:85:20:
83:27:f6:c7:d9:62:11:36:46:77:84:9a:21:9f:5c:
f0:4e:43:1f:56:63:4f:ec:42:61:ab:38:b2:30:98:
b8:28:48:48:b9:61:5c:48:d6:74:ee:96:3a:17:fa:
22:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7F:70:41:1E:3D:F7:65:80:89:C4:08:9C:1A:BB:AF:6D:CB:B3:63
X509v3 Authority Key Identifier:
keyid:D6:8B:6C:FB:72:0A:7C:92:A1:80:CA:61:4B:DB:0E:DA:1F:1E:BE:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ots-3IKfJKhgMphS9sO2h8evp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b5945d-4915-4bd7-91c1-33e319a454ef/1/1ots-3IKfJKhgMphS9sO2h8evp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:84:6d:b9:c0:1c:91:68:61:6b:0a:04:ca:d9:20:91:12:be:
2a:c6:08:5e:01:6b:d3:fc:9f:bf:f3:ce:05:d5:ea:f0:2c:04:
2b:c3:fb:59:e5:49:c6:a2:af:b5:f7:5d:30:fc:dc:73:8c:ce:
3d:55:75:a7:95:bc:c2:b1:b9:38:23:7b:bc:08:23:1c:71:21:
84:15:13:88:d7:f5:1f:91:bc:00:3a:32:ca:dc:d9:60:5d:1b:
a0:07:1f:55:50:ec:b1:62:81:cc:cc:bf:f8:60:94:7c:3c:e8:
98:80:18:66:14:32:06:dc:0b:5e:00:6d:96:88:0d:0b:aa:60:
a9:69:ef:78:60:11:f6:42:12:05:3a:e2:2c:a4:af:72:63:19:
9d:87:d6:07:0e:66:9c:d1:c6:f0:98:a2:e0:e0:34:fd:5b:3e:
ca:65:5f:d7:0e:7b:75:60:bc:ba:1f:18:3a:3f:b4:91:d6:6b:
94:4e:04:30:9f:f9:37:46:1b:8d:a2:5c:c0:f7:a7:b8:35:60:
2e:1a:36:22:44:71:b0:13:ad:f7:dd:b3:b1:62:be:d7:fb:d8:
42:ac:6b:fc:ec:5e:01:77:c5:da:49:b2:e4:d8:84:ab:56:61:
85:17:cf:d7:14:76:fc:b6:14:12:35:08:22:38:fe:9f:0f:e9:
4f:0b:06:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:34:37 2025 by rpki-client