Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: mRHDtLwXtldDOpmo+F613DbItHrFMZmoshHBC+XdUek=
Subject key identifier: 52:89:22:1B:83:FF:A4:A2:24:73:0A:B9:C3:58:F7:EC:52:67:45:2E
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 019788469326C1FC83EADE63314392C2BB3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 152D
Signing time: Thu 19 Jun 2025 13:00:15 +0000
Manifest this update: Thu 19 Jun 2025 13:00:15 +0000
Manifest next update: Fri 20 Jun 2025 13:00:15 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: LbsuPDu8/48kpmQ1d8E/5bikg8iepNhqZJoi3dS4Kls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 10:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:88:46:93:26:c1:fc:83:ea:de:63:31:43:92:c2:bb:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: Jun 19 13:00:15 2025 GMT
Not After : Jun 20 13:00:15 2025 GMT
Subject: CN=5289221b83ffa4a224730ab9c358f7ec5267452e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f2:af:c6:5c:a7:92:21:ce:ea:d2:35:26:75:
b7:0e:ce:59:f0:3a:5c:1b:4b:f5:5f:5f:b2:cb:ca:
36:c7:63:bd:81:a7:72:9a:c4:43:0d:ad:8b:03:c7:
19:6a:5c:69:e0:b9:63:44:95:7d:87:81:60:bf:19:
6f:4c:f0:62:12:85:d4:ca:84:92:aa:58:6c:80:97:
99:46:ce:22:18:00:86:f6:2b:f0:1b:5a:71:4c:2a:
0d:ea:ed:c8:43:b5:86:4d:f1:48:c5:21:dd:d8:85:
82:86:fe:97:11:f7:5e:11:70:99:24:e6:76:ab:d2:
e4:64:af:fe:62:dd:e1:46:85:b5:40:dd:a1:6e:76:
57:16:a9:75:ef:6c:13:1b:7e:1f:f4:4e:66:f8:10:
b7:d9:5e:3e:46:c9:e1:1e:a0:6d:7e:fd:44:6b:7c:
ea:09:0c:23:73:26:5c:9d:72:5c:8c:0a:6e:f8:ea:
48:bd:65:c3:11:a4:3a:21:8e:81:0c:ed:3d:5c:90:
4c:c1:ac:69:ac:d0:e7:90:af:9d:45:ba:ad:36:d6:
2e:cd:63:88:f3:0c:98:81:f5:9f:10:e9:7b:aa:d2:
43:fd:5c:23:c6:cd:64:7f:26:7d:00:58:3a:c8:55:
5c:76:75:61:f3:1d:fa:c0:5f:81:bf:31:1c:3c:aa:
49:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:89:22:1B:83:FF:A4:A2:24:73:0A:B9:C3:58:F7:EC:52:67:45:2E
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:5e:37:72:7a:6d:d1:a1:13:da:ea:f9:f5:2e:9a:a6:ec:28:
8d:36:7d:83:8d:b5:d0:65:94:0b:92:ba:94:4e:fc:c9:7e:ac:
92:7e:14:f5:10:7b:58:4d:a3:5b:81:4a:c2:99:49:ba:3e:be:
1d:56:17:66:fa:94:ec:d1:5c:fc:17:13:33:f7:42:50:fb:5c:
3c:08:4b:52:cb:4d:1c:ce:42:d2:ab:b2:c1:07:8e:1c:6c:05:
6c:da:00:57:3b:86:9e:2f:07:a6:33:5d:48:b3:97:2d:d6:3a:
a4:25:40:e7:0a:e6:49:e7:e7:ab:63:be:e9:34:76:d4:fd:e2:
cc:a2:93:d0:7a:7d:57:76:94:cc:a5:63:b5:cf:1d:2d:22:1e:
9d:57:13:c5:1f:66:19:eb:04:07:ab:7a:dc:40:7d:31:05:22:
b0:1b:93:d3:6e:52:0b:a6:8b:22:c4:3a:17:9b:3c:49:8e:2e:
36:5c:d0:0e:37:3a:bb:de:ca:3b:20:08:9f:61:97:60:2c:ee:
4d:00:35:ec:78:03:db:fc:9b:c0:15:73:1a:ba:a9:db:cf:4f:
3b:c7:30:5a:a1:91:bf:7d:e3:33:ea:eb:06:ce:9a:b5:40:11:
31:ef:ee:1a:33:a4:32:8b:50:30:96:ba:b6:2d:80:37:00:c6:
3b:25:d3:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 20:10:57 2025 by rpki-client