Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.mft
File: OKHYmhOz67e_WeQ5Xz8Niop9Ys4.mft (raw, json)
Hash identifier: NednVPyn9EQEvop+YMeLZLZMil1pm3Z4ZHRnsdWXRlA=
Subject key identifier: 59:2D:CC:CE:1C:0F:E9:67:5F:B4:A8:16:B5:13:56:0A:83:C3:3D:D1
Authority key identifier: 38:A1:D8:9A:13:B3:EB:B7:BF:59:E4:39:5F:3F:0D:8A:8A:7D:62:CE
Certificate issuer: /CN=38a1d89a13b3ebb7bf59e4395f3f0d8a8a7d62ce
Certificate serial: 0197499F439B33875A9C07DF4DDD43FCBFEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.mft
Manifest number: 04FE
Signing time: Sat 07 Jun 2025 09:01:03 +0000
Manifest this update: Sat 07 Jun 2025 09:01:03 +0000
Manifest next update: Sun 08 Jun 2025 09:01:03 +0000
Files and hashes: 1: OKHYmhOz67e_WeQ5Xz8Niop9Ys4.crl (hash: HosNkv9+wh/bTup34KrV2xqaOKkDMXZZjP/rJMagg38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:43:9b:33:87:5a:9c:07:df:4d:dd:43:fc:bf:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a1d89a13b3ebb7bf59e4395f3f0d8a8a7d62ce
Validity
Not Before: Jun 7 09:01:03 2025 GMT
Not After : Jun 8 09:01:03 2025 GMT
Subject: CN=592dccce1c0fe9675fb4a816b513560a83c33dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:b1:17:6e:c0:2f:e0:df:4e:a0:65:ec:09:23:
d9:97:e0:ba:a3:97:e4:76:06:21:1f:3d:28:97:6d:
e6:a8:0f:3f:50:25:97:07:0f:11:0a:eb:40:e7:d6:
c5:7f:d1:71:46:57:13:d9:ca:17:cb:15:b2:2e:f5:
38:de:f8:48:a8:47:e5:dd:a5:bd:d2:7c:ed:1a:cc:
88:9f:04:be:56:dd:e7:8a:08:2c:fa:fa:50:0f:cd:
bb:55:7f:9d:f9:61:06:69:15:de:67:3a:55:c1:6c:
32:76:69:f1:2e:c1:e6:fe:75:32:76:93:9b:46:26:
76:bf:e2:3a:09:26:ac:cd:78:45:2e:2b:1c:46:52:
ef:b1:2a:b6:2c:11:9a:2d:25:36:38:b5:e2:24:37:
55:c8:02:b7:27:dd:21:3e:c8:31:e2:81:a3:bc:4b:
5f:21:df:8d:f6:4c:e7:1e:70:be:cd:69:c6:1d:d8:
a9:de:f3:61:60:82:02:d2:db:fb:5c:e7:d2:56:1a:
c3:39:14:82:29:6c:ab:b9:7e:bb:c0:6b:01:aa:95:
a5:3a:d7:95:c8:f4:e2:d9:dd:cd:d1:5e:2d:51:81:
45:b2:a7:02:64:f4:b0:ec:60:92:54:58:ba:62:42:
5e:8c:bf:29:1f:41:57:74:f1:e7:ad:59:d5:31:f4:
f3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:2D:CC:CE:1C:0F:E9:67:5F:B4:A8:16:B5:13:56:0A:83:C3:3D:D1
X509v3 Authority Key Identifier:
keyid:38:A1:D8:9A:13:B3:EB:B7:BF:59:E4:39:5F:3F:0D:8A:8A:7D:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8fca7f-a9ed-48db-a7e2-3a6fe3ba5c4d/1/OKHYmhOz67e_WeQ5Xz8Niop9Ys4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:cf:f4:d8:46:0d:38:52:6d:e1:49:79:ac:41:e3:f7:ef:ba:
1c:1d:b7:ed:94:f0:81:37:78:47:dc:2a:1a:59:cf:98:dd:1e:
6c:ac:e8:01:04:70:c0:fa:fc:0c:c8:41:b3:63:22:62:7d:36:
ff:c9:63:7b:0f:c2:a1:60:28:ea:19:e4:40:53:30:a0:87:0f:
3b:01:df:be:4b:f1:9d:cc:81:9b:01:23:0b:f1:4f:cc:c2:97:
7d:c7:9b:39:a0:c8:11:f9:79:c3:21:83:b0:86:0d:a1:af:40:
c9:b5:b0:0c:44:dc:39:b9:9f:04:3a:38:a5:ec:12:31:a7:b8:
8f:79:8f:dd:86:19:a6:78:4f:e1:c0:f2:d3:d8:1d:2b:9e:20:
1d:e8:a0:6f:65:44:65:ad:d6:64:87:87:f4:64:ae:26:79:92:
40:9f:e8:b5:06:69:18:0a:20:21:bb:4d:63:b0:e7:78:9a:9f:
47:03:9c:36:70:03:15:20:97:5c:d9:48:79:81:06:1b:91:53:
44:50:a4:24:ea:f9:96:cd:57:3c:07:41:64:68:45:66:d0:fe:
cd:b4:30:f9:8c:ad:ce:66:38:67:59:46:62:78:c8:b2:de:eb:
3f:0a:c7:0d:dc:ce:8a:6e:7a:3e:42:08:b2:85:f5:04:4b:b0:
ec:13:e3:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:41:20 2025 by rpki-client