Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
File: obfHtAmGdKBPsXeELOxO65v4nh4.mft (raw, json)
Hash identifier: zShJK1yQAzLtrl+EGcEY8tGf2QLDo+pnqE6gLISe538=
Subject key identifier: 5F:B9:CE:5E:57:05:56:8F:66:C4:DF:A5:6B:4B:F9:85:F4:34:57:CF
Authority key identifier: A1:B7:C7:B4:09:86:74:A0:4F:B1:77:84:2C:EC:4E:EB:9B:F8:9E:1E
Certificate issuer: /CN=a1b7c7b4098674a04fb177842cec4eeb9bf89e1e
Certificate serial: 0197696127324E885042EC8AB915C25C01A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
Manifest number: 1589
Signing time: Fri 13 Jun 2025 13:01:04 +0000
Manifest this update: Fri 13 Jun 2025 13:01:04 +0000
Manifest next update: Sat 14 Jun 2025 13:01:04 +0000
Files and hashes: 1: obfHtAmGdKBPsXeELOxO65v4nh4.crl (hash: HNed1rKysAukKfw9OSRZg7ZVuXx8QZX9DminAt5cHnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:27:32:4e:88:50:42:ec:8a:b9:15:c2:5c:01:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b7c7b4098674a04fb177842cec4eeb9bf89e1e
Validity
Not Before: Jun 13 13:01:04 2025 GMT
Not After : Jun 14 13:01:04 2025 GMT
Subject: CN=5fb9ce5e5705568f66c4dfa56b4bf985f43457cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ce:e4:3f:4e:76:a9:00:61:a1:68:21:b9:2c:
b3:d1:ff:c5:de:10:08:d8:4d:34:d5:47:be:77:d2:
4e:f5:8d:85:ce:f2:ba:6c:93:85:df:8f:ad:c4:6b:
90:48:4d:2a:27:da:44:9a:71:cb:3d:8c:9a:39:aa:
32:f1:5d:3c:b6:0f:7b:be:51:88:93:c7:30:67:e0:
bb:90:a0:70:b0:43:aa:01:fd:39:f5:55:20:f5:ef:
e2:b0:32:01:8d:27:42:31:1e:90:e2:ce:69:a2:7e:
ce:d2:d3:66:cf:c0:bc:b5:0e:56:07:96:ca:43:89:
ca:ff:aa:7a:b8:05:44:3e:8a:53:1a:38:7f:62:76:
27:8a:be:b6:2c:cb:d2:0c:0e:52:d8:32:35:c0:f4:
1d:27:8e:59:81:3a:66:f6:27:1b:5a:05:b2:92:37:
75:5f:a8:5a:09:82:d6:41:dc:3d:0f:96:41:71:79:
87:5f:6f:fb:41:d9:69:a5:45:f6:df:a4:0d:98:dc:
0c:53:2f:30:01:95:33:d7:9f:b3:24:96:7b:c5:08:
e5:c6:84:f3:0b:52:c1:1d:d4:40:79:4e:02:b8:32:
a7:5e:6b:5d:cf:f0:58:18:0e:5e:7a:75:12:62:37:
03:1b:10:41:7f:99:75:e9:63:9e:df:0d:92:35:44:
d5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B9:CE:5E:57:05:56:8F:66:C4:DF:A5:6B:4B:F9:85:F4:34:57:CF
X509v3 Authority Key Identifier:
keyid:A1:B7:C7:B4:09:86:74:A0:4F:B1:77:84:2C:EC:4E:EB:9B:F8:9E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:f7:5c:23:aa:f7:17:f7:03:b5:f3:e5:60:30:99:8d:66:04:
3d:c3:3e:9f:91:ba:dd:bf:ee:7c:32:49:24:5c:dd:6d:1d:18:
a9:4c:62:dc:a1:f3:80:d4:0a:17:c6:52:bb:3d:7e:f0:5c:f4:
3f:e7:35:f1:97:15:89:60:6e:f8:6e:21:ec:5b:ed:ba:16:f2:
d9:85:a9:3c:44:95:44:12:d4:4f:aa:5f:f6:e3:aa:01:7f:96:
f9:9f:20:a7:52:e0:54:32:ef:81:da:1c:52:c7:8f:22:4e:97:
69:fb:3c:e7:90:a4:7c:24:7d:cb:3e:2d:6b:bc:d9:05:e6:b4:
7f:4a:13:de:cd:3a:ef:a3:b6:5f:72:72:62:49:d8:20:79:04:
64:12:89:1b:dc:f2:ab:6c:a2:58:03:b6:1c:62:75:0a:0d:91:
3f:e0:09:f7:73:1d:d6:e0:25:7e:ad:9f:f6:3e:b2:14:49:28:
68:d2:f2:c4:86:47:31:a4:e4:1c:0a:37:1a:5d:94:1a:22:3e:
d9:6a:96:8d:fa:7d:d7:6b:8c:81:de:f3:66:80:f9:a5:08:82:
70:2a:58:46:6c:fa:b7:11:38:1a:32:4d:98:f6:c4:4a:15:60:
e2:41:ec:c2:ea:ae:0f:8d:6d:68:5e:db:f1:1d:d9:ab:2c:6a:
97:4c:fa:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:02:37 2025 by rpki-client