Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
File: Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft (raw, json)
Hash identifier: x/kE4AxvBQu4sR64qXe/tkFHbMRg2EPRBsMcHRjM6+c=
Subject key identifier: 20:05:41:41:DD:CB:E8:3E:CB:68:E7:7B:01:2D:B4:0B:83:3D:81:57
Authority key identifier: 3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D
Certificate issuer: /CN=3adfd48a97720cd854029ddb266c51f91f07670d
Certificate serial: 01974AB17F14560AA03957A955F0ABD73AAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
Manifest number: 0B7D
Signing time: Sat 07 Jun 2025 14:00:35 +0000
Manifest this update: Sat 07 Jun 2025 14:00:35 +0000
Manifest next update: Sun 08 Jun 2025 14:00:35 +0000
Files and hashes: 1: Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl (hash: A1e0gVMLPg80Vi2LVn7RzpyiVjmmG7qEadYNwtA57kE=)
2: vm_KzfoiY4cVzVJi9fJVQUcZlJs.roa (hash: lyBGyAokiSjopS7O45WDbuUZk8SIrQSCpnYKsmtEQ5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:7f:14:56:0a:a0:39:57:a9:55:f0:ab:d7:3a:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3adfd48a97720cd854029ddb266c51f91f07670d
Validity
Not Before: Jun 7 14:00:35 2025 GMT
Not After : Jun 8 14:00:35 2025 GMT
Subject: CN=20054141ddcbe83ecb68e77b012db40b833d8157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b7:18:81:d3:90:d8:cd:6b:ac:f1:f7:a0:d5:
88:88:45:30:2c:92:04:dc:d9:9e:da:f7:7c:93:c1:
ba:6c:62:a6:a9:cd:dc:52:17:29:96:f7:60:19:c5:
d1:12:63:39:e5:ea:c5:fc:ea:64:b5:49:41:36:00:
d1:48:4e:fc:36:e2:5b:89:ac:a1:3e:e2:3e:9d:c3:
87:04:f6:7d:be:ee:6a:97:12:b8:c1:f1:13:ba:f3:
b8:f7:bf:c9:95:b1:ca:82:6f:a5:fc:38:32:1a:ad:
38:54:3d:75:44:f9:e0:19:71:1b:2a:2d:3e:5f:2d:
19:34:e0:75:2a:ce:52:16:81:e0:41:1c:a8:49:07:
3a:b1:02:7b:06:cb:0f:d7:5c:b4:d1:17:b2:9d:89:
0e:7e:b7:b0:6f:c4:e0:93:ea:b6:68:16:90:a2:a5:
f7:79:ae:51:36:bd:87:ba:a4:23:03:8a:b0:01:bc:
81:20:73:c0:a4:a4:7a:e9:1b:3d:29:e0:43:6d:9f:
53:43:48:e5:93:d3:8d:c6:53:a9:77:12:7c:08:97:
6c:cf:fd:bf:74:8b:db:8d:a1:2f:a7:3f:6e:24:66:
c7:06:80:d9:a4:ec:9d:3f:4d:15:98:62:93:81:4b:
0e:bb:ae:1b:16:8e:d8:fd:e6:0a:e8:55:00:eb:c6:
bb:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:05:41:41:DD:CB:E8:3E:CB:68:E7:7B:01:2D:B4:0B:83:3D:81:57
X509v3 Authority Key Identifier:
keyid:3A:DF:D4:8A:97:72:0C:D8:54:02:9D:DB:26:6C:51:F9:1F:07:67:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ot_UipdyDNhUAp3bJmxR-R8HZw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/a2eb5a-0962-45bc-a637-f0104ddf2811/1/Ot_UipdyDNhUAp3bJmxR-R8HZw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:65:f4:8f:69:a1:e9:c9:a4:91:4a:e3:a6:e8:b7:51:df:16:
6c:06:d8:6f:06:d7:35:53:0d:b0:be:02:b5:e3:64:9d:47:46:
e4:26:bc:29:46:67:53:47:b2:f6:63:10:21:44:99:30:20:9d:
b0:a5:72:10:1d:aa:b8:ed:94:7b:5a:f6:af:bb:c8:df:ae:c0:
c7:7e:1f:b9:06:c4:55:2b:5c:ab:32:8b:c4:ab:b8:fa:ec:81:
8e:b1:9e:dc:81:79:dd:f4:65:6d:a6:af:7c:06:f3:1b:46:ca:
c0:d1:09:c6:5c:7d:ed:ee:0f:a4:2c:7b:60:0e:4b:e2:7b:b0:
6f:5f:f6:7b:94:96:33:89:f5:04:a6:7d:f4:21:44:60:5c:5f:
bb:be:c2:7b:1f:66:51:48:74:a9:a9:a7:38:40:1a:8c:58:4b:
9c:1a:1c:96:e5:85:e0:24:96:11:6d:b0:a1:a0:cd:08:5f:e6:
b1:47:8e:a7:f7:65:7c:80:ec:03:1f:bd:63:50:3b:90:b5:ff:
3e:10:03:80:21:e4:ef:4d:60:03:77:1a:c8:50:e7:99:fd:7a:
4f:81:08:5e:2f:2f:a7:7b:1e:0d:0c:6e:35:61:8e:f0:69:1f:
43:bf:92:a8:51:ca:9b:2f:7f:66:4c:8e:8b:3a:ec:86:09:e3:
b1:32:c9:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:23:05 2025 by rpki-client