Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
File: OCvsQ90a_pemT1brhUx58WP6TuY.mft (raw, json)
Hash identifier: djs85wZhdJDqHTJ/FdWJCQttKv3nkX0mj8yxeNRyXz8=
Subject key identifier: 2F:C5:81:37:D9:1F:C5:1A:36:84:95:84:3B:F3:15:65:5A:D3:FC:39
Authority key identifier: 38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6
Certificate issuer: /CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6
Certificate serial: 0197C9825B8A428519AB6735E1AB2523F844
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
Manifest number: 15C1
Signing time: Wed 02 Jul 2025 05:00:52 +0000
Manifest this update: Wed 02 Jul 2025 05:00:52 +0000
Manifest next update: Thu 03 Jul 2025 05:00:52 +0000
Files and hashes: 1: OCvsQ90a_pemT1brhUx58WP6TuY.crl (hash: I5YlPfX40K17EFO2kxf4z+SGoe5FuzFGJXGF/r0A7gM=)
2: ZcMWvBkTNFkQiz2yA0G8DNGlqp8.roa (hash: ElsDKcX3/AeNMZDxpF6Opg+D9XtiydscqeFlhPJCg+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:82:5b:8a:42:85:19:ab:67:35:e1:ab:25:23:f8:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6
Validity
Not Before: Jul 2 05:00:52 2025 GMT
Not After : Jul 3 05:00:52 2025 GMT
Subject: CN=2fc58137d91fc51a368495843bf315655ad3fc39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:57:0d:e0:1a:a7:f6:11:08:61:96:8e:9a:ca:
5b:16:47:f1:fe:73:92:55:18:e3:e7:2c:5a:3c:6c:
37:1f:33:9c:22:4c:b8:7c:4a:ab:b8:c9:7c:1b:4a:
5f:d3:b3:f9:bb:36:1d:0f:84:a7:2c:b3:46:c8:cc:
26:a0:5d:e2:c2:59:4a:9f:43:fa:50:3b:81:95:65:
d5:51:7b:5e:77:87:cf:15:ba:ff:4f:4d:9d:60:75:
c1:fc:11:0c:10:dd:f3:dc:b2:b4:0b:9d:25:84:1c:
22:f7:06:99:77:11:0a:9c:65:8e:ec:8d:1c:b8:24:
36:7d:1e:55:37:ec:44:18:23:62:79:93:54:ce:a6:
37:59:90:bc:0d:20:f2:6e:1e:d2:88:68:b8:5e:39:
6c:da:ee:e2:8d:5c:ff:34:91:77:d4:f9:40:93:26:
bb:9c:fe:a0:db:6d:aa:16:f9:4f:c4:9f:07:df:7d:
2f:f0:d7:45:e7:a3:b2:2f:ee:18:44:ee:eb:ba:d0:
fa:3f:d1:3a:3b:24:e0:cb:0d:c5:bc:7a:92:ca:5d:
e2:aa:c3:89:05:a4:cd:af:bd:0c:76:b1:fb:16:4c:
98:6d:3a:67:1a:f1:f0:f4:98:30:1f:40:19:89:3b:
56:cc:e2:cd:cd:7d:af:17:d6:67:06:9c:95:40:aa:
9f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C5:81:37:D9:1F:C5:1A:36:84:95:84:3B:F3:15:65:5A:D3:FC:39
X509v3 Authority Key Identifier:
keyid:38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:4c:46:43:b1:e0:35:3f:8d:eb:28:d3:ee:b8:9b:a7:bd:bb:
58:72:83:b0:43:6e:4e:68:70:d8:c7:32:00:d2:e5:26:01:d0:
73:9b:9e:f9:8c:29:a5:4f:7a:5d:a7:fd:b3:09:9e:e8:1d:32:
a4:f9:0e:9f:b9:4d:16:90:fb:d7:3a:cd:31:37:78:b5:af:a9:
4c:8b:78:17:c0:b7:98:64:15:36:f7:56:ae:28:90:b8:2a:f1:
a1:8f:4f:61:ef:16:bd:f4:58:ff:14:e7:66:9f:c3:30:46:a4:
95:e7:d5:79:42:63:91:15:90:a5:a1:73:ed:02:5a:36:88:6a:
57:f4:fd:ef:6d:56:16:9b:db:8e:a6:a7:a4:9d:e1:59:88:b7:
e6:78:68:b1:48:0b:ac:7c:1d:34:e2:00:f5:ec:5a:b0:fc:22:
eb:f0:f9:9d:d6:a0:09:a8:c9:0e:f9:bd:e6:bd:8a:f2:70:c4:
db:e8:d9:fd:49:1f:98:84:10:c0:b7:ed:ec:5d:1d:ad:db:b9:
a6:1b:47:80:45:38:40:06:d2:4c:95:b7:bd:75:4f:dc:90:47:
f8:7f:f8:c3:fb:57:6c:25:76:26:da:88:cd:f9:39:b1:c2:38:
1f:c7:f2:dc:92:e8:dd:bf:ec:77:9d:76:9d:7c:4f:f0:7f:7a:
ee:e8:8f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 12:20:32 2025 by rpki-client