Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft
File: OhsBRND2_wuDzON2eUYxdFt8p6A.mft (raw, json)
Hash identifier: qeXui5EaFySaFWZddyYZ6X5et2C4+opXdvrHWSR7nug=
Subject key identifier: 79:EF:BC:26:13:67:B2:6B:D7:EB:69:04:A6:53:3C:58:EA:78:BE:5E
Authority key identifier: 3A:1B:01:44:D0:F6:FF:0B:83:CC:E3:76:79:46:31:74:5B:7C:A7:A0
Certificate issuer: /CN=3a1b0144d0f6ff0b83cce376794631745b7ca7a0
Certificate serial: 01989F3A94FB5FF1EE187ACFCEDB35F27E24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OhsBRND2_wuDzON2eUYxdFt8p6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft
Manifest number: 115E
Signing time: Tue 12 Aug 2025 17:01:13 +0000
Manifest this update: Tue 12 Aug 2025 17:01:13 +0000
Manifest next update: Wed 13 Aug 2025 17:01:13 +0000
Files and hashes: 1: OhsBRND2_wuDzON2eUYxdFt8p6A.crl (hash: DK2sl7JInnJqjDdad67sYoi73GWWSRgwtT6wrcWOuho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/OhsBRND2_wuDzON2eUYxdFt8p6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 17:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:3a:94:fb:5f:f1:ee:18:7a:cf:ce:db:35:f2:7e:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1b0144d0f6ff0b83cce376794631745b7ca7a0
Validity
Not Before: Aug 12 17:01:13 2025 GMT
Not After : Aug 13 17:01:13 2025 GMT
Subject: CN=79efbc261367b26bd7eb6904a6533c58ea78be5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ca:a2:e9:13:c7:27:0c:44:b8:bf:0b:ce:02:
13:61:c9:30:46:bd:0d:75:a7:88:3d:6f:bb:f8:f4:
a7:48:67:b0:d2:e5:92:57:d5:93:e3:95:73:f4:3e:
c1:3a:17:a5:df:7f:ef:c1:1f:ab:48:c9:6f:bd:47:
5f:bf:40:49:65:47:24:2d:15:59:45:c9:a7:4f:79:
84:11:e4:f6:f5:85:ec:18:bc:ad:8f:6a:9c:97:b8:
98:ca:ae:ab:1b:f2:25:d4:18:89:f1:ff:44:98:f1:
3c:dc:48:c7:79:5f:b2:8e:72:59:dc:55:cd:40:ae:
53:0c:c0:f8:5a:7a:33:8d:26:ce:de:ee:cb:04:77:
8b:cd:47:df:4a:ed:b0:fd:d5:a7:22:ee:c9:f2:a7:
35:d3:d6:6a:c4:47:fb:af:ce:29:17:e2:f5:90:08:
d9:05:1f:55:be:e2:c9:84:d1:ba:fc:6d:46:33:93:
9b:ab:43:8a:ea:d3:52:da:71:09:28:11:57:6d:8a:
6d:fe:08:30:b8:5d:2f:78:fc:cb:6f:3e:00:a3:de:
06:f6:5d:a1:85:a7:dd:01:78:e4:40:74:a5:e7:22:
fc:ae:48:32:26:a1:30:37:02:73:ca:d2:98:f5:bb:
9e:a2:01:0c:94:bc:6f:4c:83:07:ab:ba:3f:c9:da:
9d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:EF:BC:26:13:67:B2:6B:D7:EB:69:04:A6:53:3C:58:EA:78:BE:5E
X509v3 Authority Key Identifier:
keyid:3A:1B:01:44:D0:F6:FF:0B:83:CC:E3:76:79:46:31:74:5B:7C:A7:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OhsBRND2_wuDzON2eUYxdFt8p6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/628406-3e2c-4896-82ea-250544277d5c/1/OhsBRND2_wuDzON2eUYxdFt8p6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:41:76:2e:cc:21:59:fd:b8:66:9f:9c:ba:f1:54:a4:45:57:
4c:16:60:5b:b8:a1:57:cb:95:97:8d:7e:55:12:d9:be:8c:76:
98:6a:75:0e:b6:bc:2f:6d:28:92:5f:d4:ab:16:40:dc:dc:31:
19:41:57:b5:ed:9b:b9:6a:19:cf:2d:0d:ca:87:99:46:d6:b3:
9b:dd:c6:74:e9:5b:f2:f7:a2:1d:a6:eb:7f:95:a8:90:b9:66:
0f:86:28:6a:13:a3:87:f9:4f:95:ed:5a:d9:36:fa:5e:7a:d6:
4b:9f:3b:1e:14:db:2d:22:87:7d:74:35:3e:37:0a:86:a3:ad:
87:be:4e:60:05:28:5e:6e:d2:fc:8c:bb:e7:54:8e:d0:d2:a0:
48:66:04:d4:b8:c3:f5:a5:d1:9c:f1:2d:4c:89:1b:0a:90:67:
93:3f:27:56:f9:34:ab:41:74:2b:51:b8:43:7a:c7:fd:0b:dd:
74:09:ae:41:35:dc:11:02:a3:61:f5:16:ca:85:1d:ef:58:9a:
5a:9f:4a:9d:db:38:3f:83:ae:74:33:7e:c0:54:71:74:7a:ad:
5e:18:27:7d:6f:25:c2:03:bb:05:31:32:3f:23:6f:6b:ed:07:
1b:8e:27:14:17:5a:e0:5b:da:22:54:91:48:41:5a:07:37:6c:
fa:8f:f3:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:45:22 2025 by rpki-client