Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.mft
File: OM0kYRn4VtiXOodwvsOf_EejydY.mft (raw, json)
Hash identifier: XdbI3M6XMFAqy4On6lYKiA3OiOBDo91i/uxlyjGJ5sw=
Subject key identifier: B2:C8:A4:2C:70:85:1C:84:BF:6E:85:27:03:DF:1D:C4:A4:84:40:AD
Authority key identifier: 38:CD:24:61:19:F8:56:D8:97:3A:87:70:BE:C3:9F:FC:47:A3:C9:D6
Certificate issuer: /CN=38cd246119f856d8973a8770bec39ffc47a3c9d6
Certificate serial: 01976584BFC458482861BABEFC6305A4B8DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OM0kYRn4VtiXOodwvsOf_EejydY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.mft
Manifest number: 1588
Signing time: Thu 12 Jun 2025 19:01:28 +0000
Manifest this update: Thu 12 Jun 2025 19:01:28 +0000
Manifest next update: Fri 13 Jun 2025 19:01:28 +0000
Files and hashes: 1: OM0kYRn4VtiXOodwvsOf_EejydY.crl (hash: G+mISOmHh218C59RIJcWMFa/pPkUqgX9MV3HihW2n0U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OM0kYRn4VtiXOodwvsOf_EejydY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 19:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:65:84:bf:c4:58:48:28:61:ba:be:fc:63:05:a4:b8:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38cd246119f856d8973a8770bec39ffc47a3c9d6
Validity
Not Before: Jun 12 19:01:28 2025 GMT
Not After : Jun 13 19:01:28 2025 GMT
Subject: CN=b2c8a42c70851c84bf6e852703df1dc4a48440ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:71:4b:78:6c:9a:78:c1:9e:08:c2:f8:5c:99:
3e:05:f5:0d:47:50:73:7f:9a:00:e7:04:3d:e6:88:
dd:6e:9b:b4:08:c6:f3:15:85:5d:da:a3:5e:18:b5:
02:72:0d:59:07:14:25:39:f4:ac:07:14:e1:c0:a1:
ab:9f:ed:11:02:5b:eb:b6:37:8a:8f:4a:07:96:1f:
bc:a2:d7:9d:bd:85:28:9d:bb:60:78:88:3e:c3:27:
ac:8f:e1:6e:d6:19:8b:1d:16:b0:0a:e8:bf:6a:1b:
2a:aa:24:e7:04:fa:72:65:fa:a2:a5:36:d0:6e:76:
a2:57:85:23:b4:17:65:ee:2c:0f:ec:86:d5:3b:37:
ea:0f:72:f9:5d:00:7c:33:ab:a0:d8:60:e2:ef:87:
26:08:f2:78:2b:f4:90:25:f9:77:b3:1d:44:77:6e:
84:95:3f:0f:ea:4e:c9:83:57:fb:cb:bb:fe:2f:1b:
c7:5e:8e:dc:d0:b9:93:fd:d1:99:b5:26:7b:ee:80:
f5:3c:05:34:6d:46:a3:52:e7:5b:55:dd:8c:35:39:
19:1f:45:fe:ae:13:87:68:64:93:8c:b2:39:44:2c:
0a:bd:f0:a5:eb:a2:e2:db:df:22:85:b1:ef:4c:88:
06:e8:bf:de:a1:84:10:fc:86:5a:aa:39:94:71:67:
59:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:C8:A4:2C:70:85:1C:84:BF:6E:85:27:03:DF:1D:C4:A4:84:40:AD
X509v3 Authority Key Identifier:
keyid:38:CD:24:61:19:F8:56:D8:97:3A:87:70:BE:C3:9F:FC:47:A3:C9:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OM0kYRn4VtiXOodwvsOf_EejydY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/96595e-e36a-4051-8453-8fcd53d431d5/1/OM0kYRn4VtiXOodwvsOf_EejydY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:ed:5a:17:b3:28:92:03:79:18:1b:92:df:ad:0c:08:38:64:
5e:60:7a:35:45:dc:ec:66:47:d6:26:07:ba:ff:7e:62:24:61:
94:cf:fd:27:0c:a1:58:2e:f8:19:21:24:d4:d9:f9:9a:66:d8:
50:94:83:58:0a:86:4d:34:7e:ca:7d:05:01:0e:91:f1:9f:10:
89:96:ea:2d:55:2b:05:d3:0f:b1:f9:b7:df:f3:b1:90:66:87:
54:77:95:e9:62:07:b2:0a:0b:4a:1c:b4:b3:81:7a:ee:14:d6:
13:7c:49:5e:48:4d:3e:bc:dd:7a:c4:e2:1e:33:25:9d:ec:3c:
63:d8:b3:18:a2:ba:2b:dc:23:61:d2:fa:db:5e:1d:2f:12:f5:
73:57:d3:04:38:4d:ee:c6:87:79:21:f6:fc:a2:ce:3b:28:5b:
0a:86:4f:1c:59:dc:3a:60:43:29:40:b4:41:31:b1:85:59:da:
0c:87:57:7b:e4:54:55:3c:25:8b:6f:ab:a4:ee:0d:46:71:52:
ac:bd:30:c4:d4:33:41:33:da:20:bf:ec:37:4b:8c:ec:4e:47:
ae:93:48:2d:78:9e:ce:dd:a7:4c:ac:d2:08:75:a1:62:92:e5:
90:95:fa:e9:af:d1:c9:d2:d2:c8:08:ab:c2:26:ef:57:b8:44:
82:64:be:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 05:17:43 2025 by rpki-client