Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
File: otP5vJZWutwm594auw-nLD1yjdg.mft (raw, json)
Hash identifier: s2bj71NS5oQ/Fl1Wcyv9CXDLiiaVcy5ueQPYSLSLKhY=
Subject key identifier: 90:4B:82:04:AB:DE:F2:A3:3F:21:5F:19:28:07:AD:83:91:A6:F8:ED
Authority key identifier: A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
Certificate issuer: /CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Certificate serial: 01974CD70C3C5659F9A1240B0E1A4DF0AF75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
Manifest number: 01E3
Signing time: Sun 08 Jun 2025 00:00:51 +0000
Manifest this update: Sun 08 Jun 2025 00:00:51 +0000
Manifest next update: Mon 09 Jun 2025 00:00:51 +0000
Files and hashes: 1: otP5vJZWutwm594auw-nLD1yjdg.crl (hash: DaRTjmUVRodp/657WKbKAVBwr3gju71WTDwdhMpLxuU=)
2: yntKueGdh_gRYfTjbFRGz4s6BD8.roa (hash: 8wVmYZSgIm0dCsPvd2oqoO7MS+FukiT5t5Ke1EaX2FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 00:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d7:0c:3c:56:59:f9:a1:24:0b:0e:1a:4d:f0:af:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Validity
Not Before: Jun 8 00:00:51 2025 GMT
Not After : Jun 9 00:00:51 2025 GMT
Subject: CN=904b8204abdef2a33f215f192807ad8391a6f8ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:00:c6:f3:e5:2c:48:b8:4f:c7:a8:29:10:8b:
a3:85:dc:dc:10:3a:c0:04:5c:ef:8f:99:2e:88:f8:
3e:ca:ca:cd:e9:4b:fe:ba:75:d4:24:e3:e0:2d:d3:
b4:f1:27:e4:d6:fb:17:57:a0:67:a5:40:70:47:ef:
2d:d8:17:d4:cd:61:b5:e0:b8:b6:75:79:88:36:9a:
a9:71:a2:48:1c:cb:5e:ea:77:d4:93:72:75:b9:b2:
75:cb:19:ea:47:aa:60:43:68:fb:b2:51:76:e3:fc:
6a:b3:e6:6b:13:b7:c8:26:2c:61:9c:31:34:60:3d:
8e:12:1f:42:16:91:48:01:d8:2c:c4:73:29:67:99:
ab:31:62:72:c6:79:75:6c:08:82:22:8d:62:f5:fc:
7e:97:a3:35:20:af:22:e7:cb:ec:68:7b:bc:ef:e1:
a7:bb:df:71:4d:1b:0a:41:b3:56:57:4b:03:12:c7:
00:9e:a6:a4:c0:8e:9d:f4:f3:b3:f9:8b:0d:93:19:
99:0f:1a:ea:32:44:f8:d7:03:17:84:0a:b6:fd:3a:
47:d8:24:11:d7:10:ee:85:a0:6e:bd:e5:b7:71:39:
54:53:5e:fb:b7:96:ff:74:ef:5b:30:8a:2b:45:ba:
24:97:d0:c1:20:58:0d:d1:e9:e4:b7:d6:dc:89:32:
c9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:4B:82:04:AB:DE:F2:A3:3F:21:5F:19:28:07:AD:83:91:A6:F8:ED
X509v3 Authority Key Identifier:
keyid:A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:7c:c3:5d:55:60:d0:83:25:70:0b:52:74:00:bf:28:dc:28:
58:56:68:ff:98:aa:1c:54:9f:00:05:82:de:77:96:a4:55:05:
27:1d:da:95:c6:65:de:ee:cc:bb:b0:c4:48:91:25:81:d2:a9:
2b:ec:1c:ce:af:5d:c4:17:48:04:86:a4:46:24:33:a8:9d:fc:
93:ac:45:ee:e0:81:57:0b:29:8f:48:47:f8:1d:06:0b:0e:91:
99:e9:7e:ce:30:5c:cd:de:76:af:5b:ff:b8:de:ac:53:58:80:
3a:74:2f:63:1f:6e:73:20:f0:c9:51:04:e4:10:55:3b:5f:c2:
74:83:fe:86:4e:0d:8b:e3:c1:8a:19:34:f5:a0:50:45:90:ea:
83:39:f9:7d:32:9f:b0:79:47:73:ea:a0:1a:c9:32:d0:86:e8:
27:43:ef:75:90:ab:b3:54:8a:b9:f8:0e:7a:f2:0a:48:2d:3e:
ab:f6:98:1f:db:f4:a5:3b:d1:6e:74:1c:3f:c7:14:7d:b6:56:
ff:4c:aa:d8:ff:f7:0e:e4:33:8b:3d:ae:e9:b8:b9:35:2d:45:
25:54:42:65:9e:02:70:40:22:ba:4a:5b:2a:0b:05:51:82:e2:
8d:29:aa:38:bf:31:33:f7:01:c2:8c:46:02:da:6c:a2:5c:54:
63:8c:39:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:15:55 2025 by rpki-client