Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
File: OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft (raw, json)
Hash identifier: W16D24mta5wtee6aFX8BIcmDH88gyXkjDaEtJeRl8Pk=
Subject key identifier: 2E:8F:9E:54:5D:BA:C7:F0:CC:4C:85:4B:7F:40:C3:A5:35:AB:46:63
Authority key identifier: 3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
Certificate issuer: /CN=3ad65216812ed24fd1c719871a59a971dec30a26
Certificate serial: 01976C9941F278C72A3D6DD985A19A8925AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
Manifest number: 10A3
Signing time: Sat 14 Jun 2025 04:01:12 +0000
Manifest this update: Sat 14 Jun 2025 04:01:12 +0000
Manifest next update: Sun 15 Jun 2025 04:01:12 +0000
Files and hashes: 1: 4iN5nDTRDVV1CTGuGlGWY0Ybm9Y.roa (hash: EMh2tz4i0xV1ZX0fHy8PWh0LdLWVBXB/z2TGKHCydUo=)
2: OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl (hash: 0CHN318TxVQ/6LTPrkgn5nYvY3jewi6iLju7z/NUiWQ=)
3: lKnLzY94Z9zOTG6_1gzuoDIJ_5Y.roa (hash: veP44H4IXhWwV/CHwiAUB7r/bJ77LhyJozTjkioLQx0=)
4: rYkWvcE_3GQZ3jkaDTUiqjj986g.roa (hash: FOkCN5CJZuWhjjVzqhCAbEwhLO4+xpDqIO3h/0CpxnA=)
5: xvMwGEntPrsPSijtn7qckfPF1Lw.roa (hash: cfgqt0GeV7LUHA50FIbHHM6KEXg5Xmqps/DGbUwBUAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:99:41:f2:78:c7:2a:3d:6d:d9:85:a1:9a:89:25:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad65216812ed24fd1c719871a59a971dec30a26
Validity
Not Before: Jun 14 04:01:12 2025 GMT
Not After : Jun 15 04:01:12 2025 GMT
Subject: CN=2e8f9e545dbac7f0cc4c854b7f40c3a535ab4663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:31:fb:7b:bc:2d:df:53:a4:ac:82:21:20:4d:
0a:4a:27:20:a0:b0:81:e1:ce:b1:fb:8a:32:bc:1c:
d7:cd:e8:65:8b:82:9d:d3:c1:97:9e:e7:75:c3:d9:
4d:1d:ee:ff:17:08:44:3b:b8:ea:34:52:5f:cb:6f:
63:ac:c7:72:d7:ed:f7:76:60:63:ef:5d:fe:d3:eb:
80:26:5d:48:31:cb:ea:3b:bd:1f:c9:cf:37:1a:6f:
9f:e3:35:96:ef:47:b7:6a:46:0f:65:ca:1e:f6:11:
86:5f:ce:b6:f3:73:1d:13:48:5b:c4:53:3e:16:dd:
14:4f:37:9c:0a:fb:b3:e3:18:98:cd:32:89:e9:a5:
80:4a:3d:56:1b:6a:59:bb:e6:de:77:ee:5b:11:f3:
56:b5:0a:b0:1c:20:b8:26:13:ae:cc:5e:8b:20:f1:
eb:28:ba:6a:50:fa:a3:32:f2:9a:91:3e:c6:79:5e:
22:9f:fb:6b:e9:b1:4a:ae:0a:69:f3:b0:53:2c:e6:
d0:3b:ff:5d:d5:90:6f:3c:2b:20:b0:c3:80:47:f2:
d4:08:83:70:d1:da:02:ac:7d:a0:6c:73:54:99:35:
4d:23:c3:9b:6b:59:b9:19:a9:16:b5:27:f6:19:63:
04:3b:93:81:fd:7b:d0:a5:49:71:c1:f2:0d:2d:4c:
ba:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8F:9E:54:5D:BA:C7:F0:CC:4C:85:4B:7F:40:C3:A5:35:AB:46:63
X509v3 Authority Key Identifier:
keyid:3A:D6:52:16:81:2E:D2:4F:D1:C7:19:87:1A:59:A9:71:DE:C3:0A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtZSFoEu0k_RxxmHGlmpcd7DCiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b8cae4-b5af-4380-9817-46538ca5383c/1/OtZSFoEu0k_RxxmHGlmpcd7DCiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:69:fe:20:36:84:c3:ef:2f:64:aa:00:2c:f3:39:55:e9:c6:
48:2d:0c:ba:b8:5e:14:de:af:39:b2:53:90:7d:13:28:7a:ed:
40:ee:bf:86:e3:5b:39:e2:33:41:b9:c2:45:8e:fb:70:5c:a6:
5b:ae:07:8f:f8:a5:c2:35:cb:06:fd:f5:ad:62:0c:31:cb:d6:
41:58:a3:fe:c3:56:8b:0c:41:13:d8:91:df:c7:c6:af:c2:f4:
5e:31:b8:b5:70:79:f1:54:ae:97:13:23:00:f2:a5:30:5b:da:
92:9f:be:ff:fc:c3:fb:7d:bf:2c:ea:54:e6:5d:ed:0c:fa:46:
b3:e7:c5:12:a2:c3:2c:1c:72:80:1a:c7:25:7e:17:e2:19:a9:
9f:63:31:66:5e:10:00:8b:cf:e8:63:b9:a3:b9:00:6b:c9:c0:
69:78:39:6a:f6:a2:a9:5d:ff:b6:e9:22:eb:bc:c8:6a:10:52:
48:6b:52:e1:96:18:1d:8c:61:21:3b:75:2a:b8:6e:59:7a:11:
65:93:c6:44:ac:81:85:ad:08:97:92:af:17:f8:39:6d:46:90:
bb:75:be:2f:c2:ae:55:f6:04:4e:71:89:d0:ac:57:12:27:24:
4d:79:6f:77:2e:02:f0:fb:0f:21:3b:10:29:91:45:d0:4f:68:
29:fa:4c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:45:49 2025 by rpki-client