Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
File: OTioGkQSd0HZSaNVpH88tZk4mng.mft (raw, json)
Hash identifier: 6CRdCpVzlT2HXq3FNQZVpgQBAqnL3O6Wbeij+eglyjU=
Subject key identifier: D5:15:08:02:7F:2F:C4:26:AB:B9:85:30:81:08:0F:8F:3B:68:47:81
Authority key identifier: 39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
Certificate issuer: /CN=3938a81a44127741d949a355a47f3cb599389a78
Certificate serial: 01987FE60F71654DDCECF2D4AC29031A79A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
Manifest number: 1070
Signing time: Wed 06 Aug 2025 15:00:40 +0000
Manifest this update: Wed 06 Aug 2025 15:00:40 +0000
Manifest next update: Thu 07 Aug 2025 15:00:40 +0000
Files and hashes: 1: OTioGkQSd0HZSaNVpH88tZk4mng.crl (hash: Rbbun2Uw7LmOWkfOnX88yN8FuYKqceTcoCynEDbT6RI=)
2: SyALsZDSYtge1NmYRoKzwbP5Vv8.roa (hash: rjh76rxbo7HoAknp3g/P2hhQiBIAvMqHmifN8tVtg/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 15:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:e6:0f:71:65:4d:dc:ec:f2:d4:ac:29:03:1a:79:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3938a81a44127741d949a355a47f3cb599389a78
Validity
Not Before: Aug 6 15:00:40 2025 GMT
Not After : Aug 7 15:00:40 2025 GMT
Subject: CN=d51508027f2fc426abb9853081080f8f3b684781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:20:8d:a7:93:11:45:05:88:18:7b:5c:ff:5f:
89:44:62:f0:f6:64:57:d5:b1:91:c5:f2:19:7b:f3:
2b:33:ad:a5:7d:8c:f0:6c:b6:4b:ab:84:d4:89:d9:
8a:3c:b1:18:7c:79:b6:5e:6f:f0:f2:55:fb:1a:b9:
d0:bf:c9:10:8d:a5:50:c4:f6:cd:90:9f:51:3f:b9:
40:26:9b:7c:c9:3b:d5:8b:09:a1:f3:65:c2:43:8a:
d4:69:4d:10:46:c8:7c:32:a3:bd:11:f1:30:f8:c6:
32:2a:10:4f:fa:49:ce:f3:07:60:ca:f6:b9:42:55:
e5:b3:20:c5:38:95:6d:f2:96:4c:f0:81:95:ab:b2:
74:d9:5c:f4:26:bb:60:34:4a:f2:0f:ff:1e:b5:d0:
cf:40:66:2d:41:6c:66:60:44:e8:74:99:0f:7a:6f:
e8:b1:ec:53:0a:1a:02:cb:92:80:b5:24:6a:2e:42:
86:ec:01:72:96:b3:7d:73:d5:f5:b3:11:a5:51:a3:
c3:0b:e1:4e:89:3e:4b:43:09:0c:d3:26:66:27:70:
8e:84:78:6a:4b:29:07:f0:fd:a1:9c:8e:4e:77:dc:
14:d9:3a:5e:d9:55:21:14:c9:75:57:a6:d3:ef:a6:
f0:b6:8c:e4:0b:5c:70:63:85:ae:9d:ff:d6:73:81:
b4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:15:08:02:7F:2F:C4:26:AB:B9:85:30:81:08:0F:8F:3B:68:47:81
X509v3 Authority Key Identifier:
keyid:39:38:A8:1A:44:12:77:41:D9:49:A3:55:A4:7F:3C:B5:99:38:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTioGkQSd0HZSaNVpH88tZk4mng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/02cab5-59b4-4d90-a5db-fd214cacfb62/1/OTioGkQSd0HZSaNVpH88tZk4mng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:fe:00:4e:52:f1:40:99:b2:dc:2e:e6:48:81:fe:87:c0:41:
78:a4:25:bb:d7:bc:cb:97:e6:8f:f9:08:5f:13:38:fa:82:3e:
f6:5a:75:55:ac:57:f4:8d:21:91:24:3e:fb:1a:3d:4e:5a:68:
e9:43:f4:4d:5c:37:56:51:8d:b3:ad:63:a5:be:0d:1f:5c:c9:
93:fd:63:96:eb:aa:a5:83:1d:cc:10:5d:52:af:e8:14:79:e5:
f1:54:eb:4e:7a:61:af:c6:b8:55:8e:f1:f9:24:9a:c1:ec:df:
7e:b7:34:bf:7f:fb:11:c3:3a:66:10:2e:0d:2d:c4:5c:54:83:
bb:76:65:04:13:95:f6:a3:82:ac:03:84:4a:2c:94:49:b0:3a:
de:1b:c7:f5:99:0d:73:6e:0d:de:f6:bf:ed:96:88:e6:3e:1c:
73:2a:f8:71:31:74:c4:b4:61:66:84:24:f4:50:06:ef:d9:11:
c0:f2:b6:6b:cb:56:a1:74:37:f8:ea:03:94:67:31:14:4e:a6:
9b:fa:aa:48:38:6b:e4:64:96:c9:82:47:94:b5:1d:ab:2c:5c:
59:55:7f:3e:a5:e1:59:02:55:05:a0:08:5f:6b:64:83:d2:dd:
57:2f:01:95:56:f3:6e:03:cc:1e:86:7f:78:f1:96:21:18:04:
6a:25:40:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:27:00 2025 by rpki-client