Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
File: ofM7gYxgo6zGnzmgsuDuqrttk-A.mft (raw, json)
Hash identifier: ocFyZF5fsyKT1oYaCvhAgIMd8ZLKDAlSa7wYaHeLolE=
Subject key identifier: B5:EB:78:8D:E5:8E:B0:13:B1:13:21:72:47:9A:2D:F5:15:0E:80:3F
Authority key identifier: A1:F3:3B:81:8C:60:A3:AC:C6:9F:39:A0:B2:E0:EE:AA:BB:6D:93:E0
Certificate issuer: /CN=a1f33b818c60a3acc69f39a0b2e0eeaabb6d93e0
Certificate serial: 019922FAF269F4ECE18C2BAC6AC0EDD13BFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
Manifest number: 12B8
Signing time: Sun 07 Sep 2025 07:01:35 +0000
Manifest this update: Sun 07 Sep 2025 07:01:35 +0000
Manifest next update: Mon 08 Sep 2025 07:01:35 +0000
Files and hashes: 1: ofM7gYxgo6zGnzmgsuDuqrttk-A.crl (hash: CRfeSGSUmoYMPZdTMwREBfqZG6oWmCnJHOrgWFu7iL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:f2:69:f4:ec:e1:8c:2b:ac:6a:c0:ed:d1:3b:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1f33b818c60a3acc69f39a0b2e0eeaabb6d93e0
Validity
Not Before: Sep 7 07:01:35 2025 GMT
Not After : Sep 8 07:01:35 2025 GMT
Subject: CN=b5eb788de58eb013b1132172479a2df5150e803f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:62:d4:23:6b:46:4d:38:ff:e7:40:cc:79:8a:
d3:62:04:c6:c9:db:b4:be:0e:dc:37:ff:a3:46:8f:
5b:2e:cf:22:4c:05:1f:a4:3a:bc:70:73:c2:10:d4:
18:d0:49:9c:00:5f:81:45:20:7a:7d:11:61:aa:d8:
a4:8c:79:4f:13:a2:1a:98:ac:ca:bf:16:14:3c:38:
62:4e:da:03:6b:82:3f:c8:7e:44:2f:d3:04:00:4f:
9e:dc:23:ca:48:f0:6d:69:8c:c5:1a:6c:5b:1b:f9:
40:e0:d2:7f:ab:ff:45:f7:80:d9:91:d2:51:1e:28:
d9:35:e7:83:cb:ef:d2:75:84:ad:37:c6:83:bd:1f:
01:b8:fc:a7:e1:5f:2d:2b:1d:4d:6f:aa:c5:10:55:
7d:a3:e9:5a:1c:9a:72:99:18:b1:29:a7:82:32:36:
27:7f:9a:d9:45:1a:69:5c:55:f9:24:77:8b:2f:0a:
94:2b:de:af:31:97:f1:6a:11:7b:73:13:2c:e5:b9:
96:c9:8e:e3:38:e9:53:95:00:2a:4b:a0:ad:16:5e:
10:ff:3e:88:b6:e0:5d:d2:23:70:66:d8:b8:67:1a:
1a:f0:13:07:91:fa:ca:7c:bb:7a:91:1e:f0:59:60:
be:b9:9b:03:01:77:76:19:23:94:b2:ce:06:d7:ef:
4f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:EB:78:8D:E5:8E:B0:13:B1:13:21:72:47:9A:2D:F5:15:0E:80:3F
X509v3 Authority Key Identifier:
keyid:A1:F3:3B:81:8C:60:A3:AC:C6:9F:39:A0:B2:E0:EE:AA:BB:6D:93:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:c4:6a:a3:69:52:81:16:a5:7f:5a:8c:09:f2:25:b7:15:8e:
8d:07:de:cd:a1:e4:5c:fe:c6:f3:6b:47:89:5f:5d:08:5d:2a:
9c:f5:86:88:a8:37:62:4b:d2:dc:ea:70:5d:1d:a0:50:8f:e3:
44:60:06:bf:9f:7e:c1:69:83:25:bd:be:f4:9b:9d:e7:ae:31:
b2:a8:80:92:ac:ae:f9:38:71:04:f1:11:58:1a:d0:2e:a2:4e:
53:bb:7d:29:92:9c:be:3f:f4:e4:ec:9a:41:a4:e0:83:64:95:
79:c8:8a:b6:ab:c5:0a:75:fb:5e:b2:c2:95:f7:91:24:69:79:
16:e9:96:71:65:63:da:46:06:57:00:e3:6a:0c:0a:2d:dc:56:
a9:d1:6e:e9:cb:2c:3a:7e:c1:dc:8c:76:69:8c:39:f9:38:b3:
00:8f:90:73:80:63:80:03:1f:ee:56:35:19:d5:5f:1f:60:70:
1b:54:69:13:55:3c:f0:6c:ed:01:91:65:13:36:9d:41:f6:8f:
49:84:64:af:7a:26:d1:20:d7:56:cf:43:03:bd:5f:a7:e1:b3:
bc:33:f3:41:89:b9:57:d5:f6:a0:1d:75:7d:62:a7:26:55:80:
19:cc:26:83:97:13:fc:ca:66:64:29:3f:a0:29:01:2c:ac:db:
d0:e6:e7:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:02 2025 by rpki-client