Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
File: _OTzlnKb9HjmNlSYIfb2lw2JP1I.mft (raw, json)
Hash identifier: 4ryj3Gl5EbhdvUeNJUrZY17x1EQSnh3bYxdxszqq6uA=
Subject key identifier: 40:E7:85:11:25:E9:30:ED:27:E6:77:42:1E:86:09:9C:EB:7B:E2:52
Authority key identifier: FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52
Certificate issuer: /CN=fce4f396729bf478e636549821f6f6970d893f52
Certificate serial: 01977865E6286E08B6B5750526ADA67F3358
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
Manifest number: 1595
Signing time: Mon 16 Jun 2025 11:00:33 +0000
Manifest this update: Mon 16 Jun 2025 11:00:33 +0000
Manifest next update: Tue 17 Jun 2025 11:00:33 +0000
Files and hashes: 1: _OTzlnKb9HjmNlSYIfb2lw2JP1I.crl (hash: gp0RKw8uwWFxKmttKA+SuBy/ssHXT15Iqcw5eXTbGjo=)
2: adNqeNQUFWI4IAHxy1r153UdECA.roa (hash: xLvUeb8ak+yii4A1TZl7dHrog2mgx9j4/AxydjM8K8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:65:e6:28:6e:08:b6:b5:75:05:26:ad:a6:7f:33:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce4f396729bf478e636549821f6f6970d893f52
Validity
Not Before: Jun 16 11:00:33 2025 GMT
Not After : Jun 17 11:00:33 2025 GMT
Subject: CN=40e7851125e930ed27e677421e86099ceb7be252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:46:0e:ca:c0:c0:7a:cf:d8:e6:33:f5:d1:e2:
4a:ed:79:db:e9:2e:64:3e:a6:ce:43:7c:d7:fd:14:
87:d4:8f:e3:af:65:cd:34:48:00:9d:04:34:11:42:
7c:94:9c:e2:bb:6b:53:28:2a:6e:20:8a:dd:e9:57:
88:33:75:aa:b1:2c:e7:93:14:27:63:a6:b2:c7:4f:
23:93:66:fb:24:ba:2a:9b:5b:67:de:21:8f:a8:42:
ec:1b:30:a4:0b:5b:86:9f:89:ed:0e:33:5d:d7:7d:
f5:c0:b9:9c:86:85:30:fa:2f:c0:ab:52:66:c6:fa:
06:18:5c:4b:36:16:82:9c:65:b2:45:1a:74:71:d1:
61:6d:f1:95:b4:f4:05:c0:d3:6e:f9:6e:21:84:66:
54:d0:1a:19:2c:50:ea:54:73:e8:5a:61:b7:4c:9c:
66:aa:17:6c:11:a0:b1:24:ff:3c:0b:5a:ad:2f:81:
52:c1:95:7b:2a:26:b0:f4:89:5d:46:f1:72:60:76:
33:00:50:6b:78:c0:c2:12:88:e2:f9:0e:c8:fb:97:
43:88:46:52:3e:79:33:a8:4f:7e:90:74:7b:5e:f6:
cc:29:e7:4c:3a:ea:ab:94:b6:6f:a0:be:5f:b3:a6:
92:b1:21:5b:8b:12:ef:af:67:8d:95:12:b2:5c:84:
55:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E7:85:11:25:E9:30:ED:27:E6:77:42:1E:86:09:9C:EB:7B:E2:52
X509v3 Authority Key Identifier:
keyid:FC:E4:F3:96:72:9B:F4:78:E6:36:54:98:21:F6:F6:97:0D:89:3F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OTzlnKb9HjmNlSYIfb2lw2JP1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/36275e-6759-4d52-b2d1-8c70de9e9b9d/1/_OTzlnKb9HjmNlSYIfb2lw2JP1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:f6:8f:63:e2:7f:ee:a6:ee:ad:b9:a4:30:24:66:e4:ab:77:
9f:d4:ee:23:80:31:f0:bf:ff:1f:4c:6c:c2:c6:fe:b6:1e:40:
eb:16:1d:05:4d:d1:b0:17:27:2f:c8:8b:41:d9:0c:23:e6:2a:
a6:ce:36:db:e3:98:a4:2f:af:7e:8d:09:78:e3:55:5f:1f:56:
a5:1d:7f:cf:61:1b:fb:79:70:8d:5c:c8:5c:f9:bf:73:2f:e6:
c1:43:0e:1b:97:33:da:10:06:39:24:44:01:a0:f1:10:60:be:
c5:8e:26:3f:cc:9b:a8:33:93:31:fc:20:f9:ed:fc:86:14:d9:
20:ce:50:5a:3f:f8:73:01:14:49:85:61:ed:e1:f1:c4:cb:33:
0a:d8:f6:44:37:fc:c9:5e:39:73:a2:58:59:33:6e:eb:79:cd:
e9:6f:83:08:9c:65:6a:27:55:d8:5e:7c:0c:fc:27:dc:bf:f6:
71:f1:d9:4c:a5:48:19:e7:b1:4f:0f:73:60:74:9a:7e:ad:16:
2e:b2:3e:8f:36:55:24:ec:bc:ba:17:58:c0:39:ac:8c:ec:5e:
7c:88:e9:0e:93:60:c6:d8:d1:1c:b9:fa:3c:5a:43:6f:b9:37:
77:64:e6:6d:14:0c:b5:38:66:d1:6b:dd:19:62:2c:6c:fb:fa:
53:56:b6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 20:03:13 2025 by rpki-client