Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
File: otCM3GpDDvDaiCmRcla2rY0KNvk.mft (raw, json)
Hash identifier: oSUIYK8jQiD5AdS5yyZXXeD4ozfnprzeDZ2+OU48tqo=
Subject key identifier: 3E:B4:B2:59:16:4D:95:E9:32:58:72:19:31:F3:26:51:84:1C:AA:D5
Authority key identifier: A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
Certificate issuer: /CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Certificate serial: 01974C68B1D51AB811C49168047798986A6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
Manifest number: 07A1
Signing time: Sat 07 Jun 2025 22:00:19 +0000
Manifest this update: Sat 07 Jun 2025 22:00:19 +0000
Manifest next update: Sun 08 Jun 2025 22:00:19 +0000
Files and hashes: 1: otCM3GpDDvDaiCmRcla2rY0KNvk.crl (hash: WZ1B+fJdo83S/L5HbAyktC6JWClv6EcsWcswgVRg4Oo=)
2: uWHHQqBwsm-RgF6BGlPrCIiU5u8.roa (hash: c70DUe86Dscr+BOk1RbQf+gmFBszpSvbzYy8111R1f4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:68:b1:d5:1a:b8:11:c4:91:68:04:77:98:98:6a:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d08cdc6a430ef0da8829917256b6ad8d0a36f9
Validity
Not Before: Jun 7 22:00:19 2025 GMT
Not After : Jun 8 22:00:19 2025 GMT
Subject: CN=3eb4b259164d95e93258721931f32651841caad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0a:a2:92:58:80:8d:ab:88:f2:ac:e4:60:3a:
17:d2:80:dc:64:cc:27:ac:95:ee:3c:80:4a:eb:4a:
11:3d:9a:be:e9:1a:a7:94:f3:5b:2e:94:ef:02:f2:
9d:0c:7a:4c:7d:4d:19:05:11:cc:ee:68:c1:3b:f4:
12:b0:31:9c:8c:46:86:eb:53:b7:e2:fc:e0:08:86:
69:85:c4:0e:0e:66:51:d7:ac:4f:98:9b:bc:5b:3e:
b1:22:e6:41:33:59:b8:ba:de:50:06:1d:a7:26:d4:
33:5b:e7:b8:15:0d:5e:51:6a:a0:b2:5e:7c:9d:7c:
79:db:97:d2:5f:dc:a9:6f:61:8d:e1:03:c4:7a:8c:
9b:78:aa:a6:6c:34:31:38:67:78:59:ed:9f:91:a8:
c7:e8:d2:3f:17:e7:f2:86:48:cd:26:ae:e5:1a:6d:
d7:b9:02:17:5b:18:76:10:5b:80:81:47:bc:fa:4a:
60:f7:93:5a:dc:76:e1:90:b3:12:64:2b:3e:98:66:
7a:44:96:c4:ee:0c:14:63:6f:dd:16:50:e2:33:d9:
e0:25:bc:fb:9c:a5:28:5e:04:8b:e8:90:d8:aa:cc:
63:ca:da:0e:7d:5e:9f:81:b4:19:59:b2:99:29:0a:
f5:b3:50:d6:d7:71:bc:67:b3:f7:ea:2f:93:ef:5b:
8f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B4:B2:59:16:4D:95:E9:32:58:72:19:31:F3:26:51:84:1C:AA:D5
X509v3 Authority Key Identifier:
keyid:A2:D0:8C:DC:6A:43:0E:F0:DA:88:29:91:72:56:B6:AD:8D:0A:36:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otCM3GpDDvDaiCmRcla2rY0KNvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc19cc-0f53-4d10-af93-dc01a19b2856/1/otCM3GpDDvDaiCmRcla2rY0KNvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:1c:50:61:bf:36:e5:1b:85:b7:52:e7:08:bd:ea:db:89:53:
19:c6:78:a6:99:a0:b6:a6:0f:d8:b4:0f:f8:a3:b8:57:ad:78:
1e:9f:fb:5a:c3:63:2d:e8:50:34:35:94:5f:52:ca:47:72:d4:
42:cf:af:5e:35:7b:92:54:da:f1:d6:b1:0a:cc:45:e2:98:1c:
c1:5f:a0:a9:cd:72:ba:e3:24:75:34:f9:3c:e4:c4:c1:70:d4:
71:8d:44:90:34:e5:5c:f3:c2:b4:56:3a:ae:46:a5:78:ea:1d:
92:ac:34:60:43:20:23:1f:1c:2b:62:0f:8b:a1:4b:3c:d8:9b:
f0:5d:2e:b8:f2:24:27:10:e7:ad:8d:e4:4f:78:52:50:52:28:
5f:83:de:f1:b4:d4:3b:45:82:4f:8d:45:22:54:d4:89:49:ec:
31:be:d8:cb:7b:6c:a7:32:96:ac:1f:28:ab:c4:1a:b5:ca:7f:
18:a8:4b:d4:3a:0d:35:4c:da:c7:bc:4b:77:c7:91:aa:de:11:
61:7f:a8:6c:fa:78:7d:0d:5d:14:28:b6:95:e0:a2:a5:8c:c7:
f6:5e:31:14:92:22:f0:af:c9:55:19:70:35:52:97:fd:ec:8b:
e5:01:24:ec:fb:b8:3c:0f:fb:93:31:a8:6e:10:d5:0b:17:5a:
77:a1:ca:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:17:59 2025 by rpki-client