Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
File: Os5p2XnZoNxneVEGweVayhVHCH8.mft (raw, json)
Hash identifier: 9zOLOGgQX5AkcajdDvyA2RqhKx/AaUjChfwzrCIFxmU=
Subject key identifier: A9:28:D0:AA:5C:18:D4:93:91:18:9D:80:04:E3:14:01:B6:8C:A4:E0
Authority key identifier: 3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F
Certificate issuer: /CN=3ace69d979d9a0dc67795106c1e55aca1547087f
Certificate serial: 01976BF446CB62497A16FC0EE0B1FF245040
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
Manifest number: 1588
Signing time: Sat 14 Jun 2025 01:01:00 +0000
Manifest this update: Sat 14 Jun 2025 01:01:00 +0000
Manifest next update: Sun 15 Jun 2025 01:01:00 +0000
Files and hashes: 1: Os5p2XnZoNxneVEGweVayhVHCH8.crl (hash: ATS1k5l+h1dS7PSrpUgrvRvDKMPLMFURKUCr5fZ5pM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:46:cb:62:49:7a:16:fc:0e:e0:b1:ff:24:50:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ace69d979d9a0dc67795106c1e55aca1547087f
Validity
Not Before: Jun 14 01:01:00 2025 GMT
Not After : Jun 15 01:01:00 2025 GMT
Subject: CN=a928d0aa5c18d49391189d8004e31401b68ca4e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e4:a5:c8:23:c9:6f:50:e0:d2:15:9c:8d:d1:
c0:f4:5b:62:ca:93:b5:54:99:53:d1:79:52:85:47:
d5:5c:3e:fc:03:e9:3e:2e:99:1d:a0:7c:96:ad:9f:
12:7a:a9:4d:f8:a0:9b:f9:c3:60:c6:90:78:1c:9c:
39:96:45:b5:b7:00:40:63:ab:6b:39:61:6e:70:47:
b2:88:9b:1c:b1:e6:32:7f:21:26:cf:fd:7d:d4:4e:
92:29:3c:75:15:9f:75:4b:79:ef:09:fc:34:79:dd:
fc:8b:4b:cd:a4:f9:f1:0b:dc:88:ed:e4:6c:ac:3f:
4a:d5:c2:2c:3a:bd:8a:ed:36:9e:24:67:6c:fa:b4:
70:42:cb:4c:af:6e:cc:01:44:47:e9:99:b3:64:d1:
7f:41:7b:b4:52:a6:00:ae:71:48:bc:22:f5:87:2a:
39:cf:c0:5e:a8:0f:5c:ad:ae:ed:e6:2a:f6:33:13:
52:c9:ad:18:81:1e:fa:ee:87:2b:6b:7c:4c:63:9a:
aa:ef:84:36:00:4c:4e:81:68:0c:22:dd:a5:af:91:
5e:3c:8c:40:ba:9c:09:f5:d4:a5:1c:c0:96:61:a8:
57:81:d4:6c:b4:3c:f5:17:15:3b:a6:54:7f:5a:3e:
89:5d:1c:d0:5d:5c:8e:c3:b2:a8:2b:4f:f5:e1:e5:
3e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:28:D0:AA:5C:18:D4:93:91:18:9D:80:04:E3:14:01:B6:8C:A4:E0
X509v3 Authority Key Identifier:
keyid:3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:bc:05:c9:18:8b:68:79:50:c0:29:ab:aa:27:83:ca:bd:f8:
a0:0a:b4:e1:d4:ca:bd:c1:a7:94:6e:fd:62:7e:19:61:c2:49:
7f:b6:77:5a:dc:f1:69:c5:0c:5d:b8:62:98:33:5e:0f:54:2e:
c4:3f:73:68:4a:aa:b4:10:85:b3:63:ba:02:42:a5:2f:e4:dc:
fd:7f:04:c6:ca:b1:4c:d3:e1:48:ca:5d:47:77:04:9a:b4:78:
ce:d2:04:a5:b7:b1:4e:0c:55:3f:52:c0:66:99:c3:eb:74:9b:
58:62:d2:f9:3a:c9:d8:9f:1c:5c:bb:22:1e:64:58:31:15:08:
8d:84:76:e4:03:02:6c:aa:3a:5b:80:4d:60:71:d7:aa:70:7c:
d7:ea:38:c9:83:1b:64:4b:17:e1:ec:ae:fd:12:cb:91:ad:12:
0f:80:7c:65:f3:ab:5a:45:33:f7:35:4c:7e:82:95:58:cc:92:
ed:57:d5:2e:2e:92:52:55:ad:94:3a:4b:3b:33:ab:8d:a7:15:
ed:9c:e2:d6:01:aa:e2:8b:ff:b0:a5:e0:7f:83:24:48:85:cf:
53:92:5f:34:62:97:5a:7c:59:6c:ec:77:f0:5d:cb:e4:3a:2e:
6b:36:21:a7:b7:25:95:73:c4:e4:d3:14:f2:b7:f3:f2:9f:da:
61:62:6c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:16:39 2025 by rpki-client