Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/608ede-09ae-4811-b109-e797b2d82b39/1/O5keroXFJmJwwx30GBqgerLge1Q.mft
File: O5keroXFJmJwwx30GBqgerLge1Q.mft (raw, json)
Hash identifier: 5UZkBrbwSUeMXnCB1aKHMiWE8Sp29041Kn5iu2WuUO4=
Subject key identifier: 3B:26:E3:02:03:FC:BD:E5:DA:7A:2B:1A:C6:36:E6:97:8C:DA:9F:8B
Authority key identifier: 3B:99:1E:AE:85:C5:26:62:70:C3:1D:F4:18:1A:A0:7A:B2:E0:7B:54
Certificate issuer: /CN=3b991eae85c5266270c31df4181aa07ab2e07b54
Certificate serial: 019896A4D3C4C407EEF080785039F9B250B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5keroXFJmJwwx30GBqgerLge1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/608ede-09ae-4811-b109-e797b2d82b39/1/O5keroXFJmJwwx30GBqgerLge1Q.mft
Manifest number: 07BA
Signing time: Mon 11 Aug 2025 01:00:41 +0000
Manifest this update: Mon 11 Aug 2025 01:00:41 +0000
Manifest next update: Tue 12 Aug 2025 01:00:41 +0000
Files and hashes: 1: O5keroXFJmJwwx30GBqgerLge1Q.crl (hash: XKM/SK75GIOF9iXY2oE6jZsZ5i4Oub5rBGNO2Mt47rY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/608ede-09ae-4811-b109-e797b2d82b39/1/O5keroXFJmJwwx30GBqgerLge1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/608ede-09ae-4811-b109-e797b2d82b39/1/O5keroXFJmJwwx30GBqgerLge1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/O5keroXFJmJwwx30GBqgerLge1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a4:d3:c4:c4:07:ee:f0:80:78:50:39:f9:b2:50:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b991eae85c5266270c31df4181aa07ab2e07b54
Validity
Not Before: Aug 11 01:00:41 2025 GMT
Not After : Aug 12 01:00:41 2025 GMT
Subject: CN=3b26e30203fcbde5da7a2b1ac636e6978cda9f8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4f:2c:25:b5:de:55:50:08:2a:fa:56:f2:d7:
22:f0:cd:b5:2f:86:21:a4:07:a9:67:a0:10:25:c1:
f8:c5:39:d7:42:df:34:8a:8d:30:64:ca:3c:1f:be:
0a:2a:de:d2:db:a1:aa:2a:6e:7c:08:c3:3b:de:3d:
5b:41:92:94:6a:6a:9d:83:9c:3f:7d:5c:b6:8d:f6:
be:c6:32:0f:73:64:88:45:83:20:84:cb:98:01:9f:
49:c0:2b:e1:fd:96:f0:6e:90:64:de:6b:da:bb:c0:
9e:0a:f7:9c:ee:5b:4e:f4:9d:dc:b8:7b:2b:75:b3:
88:1d:36:02:d0:46:0e:97:a6:b2:e5:f8:6c:30:3f:
74:72:cc:e3:df:d2:d7:22:71:1e:21:33:c8:34:cd:
51:98:0b:2e:e8:d0:5a:99:7f:02:19:5e:28:3e:8b:
de:ba:65:b0:a0:bb:a7:5b:4f:09:c7:5a:33:88:2c:
9c:38:68:b8:96:01:53:b2:7b:db:98:b6:20:66:63:
18:9d:11:9f:1c:c7:13:ef:04:a6:07:4d:5d:6d:3c:
6f:a6:d5:64:21:ee:1c:51:bb:a7:d0:75:a1:9c:01:
8c:5f:af:f8:a2:1c:41:53:df:41:c4:4b:32:65:20:
e0:10:46:db:db:30:3d:ce:48:2e:42:db:2f:c9:be:
de:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:26:E3:02:03:FC:BD:E5:DA:7A:2B:1A:C6:36:E6:97:8C:DA:9F:8B
X509v3 Authority Key Identifier:
keyid:3B:99:1E:AE:85:C5:26:62:70:C3:1D:F4:18:1A:A0:7A:B2:E0:7B:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5keroXFJmJwwx30GBqgerLge1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/608ede-09ae-4811-b109-e797b2d82b39/1/O5keroXFJmJwwx30GBqgerLge1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/608ede-09ae-4811-b109-e797b2d82b39/1/O5keroXFJmJwwx30GBqgerLge1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:e3:3c:63:53:79:27:3e:55:56:f8:ae:08:e7:e9:18:2e:a2:
e4:0b:76:9f:2d:67:3d:12:84:4e:43:bb:19:05:7b:aa:e4:44:
f5:6d:61:dd:d9:67:5a:be:da:72:fb:b8:1d:1d:61:5c:d7:bf:
7d:2a:8a:e0:23:d7:ce:a7:2b:58:d4:6d:4e:f0:b8:00:5f:d3:
5e:f9:e6:57:25:f5:a6:b6:f1:92:5c:94:8b:52:f5:ba:00:66:
5d:46:85:c6:f2:44:cb:16:b1:f8:3d:fa:1b:90:1f:e0:39:b9:
19:f4:29:89:98:fb:fb:97:f5:ee:0b:42:47:64:66:dd:27:9a:
4b:3e:7e:77:b7:5c:23:25:83:fa:35:b3:fb:bc:35:db:37:df:
83:69:5f:dc:2f:28:d9:27:0b:55:fa:fc:39:19:3d:eb:6a:2f:
37:de:19:9e:fa:e8:d1:a7:2b:ff:6e:22:1d:0e:70:16:2b:f7:
8c:6e:9c:da:cf:fa:65:a4:57:80:42:41:61:ae:f8:1e:a4:c9:
00:f2:5b:b2:0b:6c:b2:78:1a:ce:ce:4d:4f:d6:a7:11:f7:17:
e4:c5:9e:30:2f:a5:7f:4d:1d:f7:5f:09:b4:d7:07:3a:cb:d2:
9f:0e:b0:92:0b:f1:e2:17:51:34:87:1f:b8:b8:50:c4:0b:79:
9d:f9:ee:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:13:04 2025 by rpki-client