Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
File: otP5vJZWutwm594auw-nLD1yjdg.mft (raw, json)
Hash identifier: aPAL9RxABHgkt6Bi5OMGhkdCojQhWgcypBIgVaprX/I=
Subject key identifier: 2F:4D:37:06:DC:14:69:45:3D:D1:51:2C:8E:A6:66:2C:6B:2F:53:3A
Authority key identifier: A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
Certificate issuer: /CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Certificate serial: 019769CE59A55E302B57574D58EF86B818F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
Manifest number: 01F2
Signing time: Fri 13 Jun 2025 15:00:20 +0000
Manifest this update: Fri 13 Jun 2025 15:00:20 +0000
Manifest next update: Sat 14 Jun 2025 15:00:20 +0000
Files and hashes: 1: otP5vJZWutwm594auw-nLD1yjdg.crl (hash: z97C8ccDSL0KDvH62teeYBn7XrIZUJxCawxiKh/xjGY=)
2: yntKueGdh_gRYfTjbFRGz4s6BD8.roa (hash: 8wVmYZSgIm0dCsPvd2oqoO7MS+FukiT5t5Ke1EaX2FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:ce:59:a5:5e:30:2b:57:57:4d:58:ef:86:b8:18:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d3f9bc9656badc26e7de1abb0fa72c3d728dd8
Validity
Not Before: Jun 13 15:00:20 2025 GMT
Not After : Jun 14 15:00:20 2025 GMT
Subject: CN=2f4d3706dc1469453dd1512c8ea6662c6b2f533a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:51:1a:e3:7c:4b:74:46:94:3b:27:4c:92:61:
e3:c3:fa:58:38:85:13:2e:bc:2a:4d:48:30:fd:a6:
2a:0d:6e:f2:fe:cd:d2:46:58:53:6f:62:3c:dd:fe:
e6:34:0c:b7:23:3a:84:f3:fe:08:8f:43:ee:70:00:
8f:67:71:64:df:c9:26:9e:8c:22:ec:6e:33:5d:cb:
e2:a9:2f:51:2d:c6:57:d8:21:7c:80:b1:8c:5c:45:
60:b2:e5:7b:72:78:cb:3c:9a:b3:db:1a:80:3b:ca:
39:16:e8:05:d8:15:28:7a:06:89:e7:63:d8:f6:aa:
0d:76:4f:b2:11:43:c1:c8:ab:d9:61:4e:81:65:03:
36:d3:8e:9e:f9:f9:f2:17:75:c4:51:7d:f5:d2:f5:
d9:da:10:d9:85:c9:86:39:d5:e5:23:81:40:5f:a0:
4c:9d:c3:2d:9c:68:61:37:b8:ea:0d:44:03:1a:f3:
6c:1b:43:b1:f6:f4:9b:5d:e3:65:4a:4e:3e:09:e6:
1e:59:42:d5:b2:01:53:f7:55:ae:c1:ef:0a:d6:5e:
3c:86:0c:fb:28:ad:0c:b5:9c:b3:ee:77:31:84:be:
93:09:41:9f:b8:6a:2f:f0:ac:bf:5c:dc:77:b2:4b:
a3:cf:d3:16:39:d8:a6:d9:09:d9:12:62:0a:8c:31:
b1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:4D:37:06:DC:14:69:45:3D:D1:51:2C:8E:A6:66:2C:6B:2F:53:3A
X509v3 Authority Key Identifier:
keyid:A2:D3:F9:BC:96:56:BA:DC:26:E7:DE:1A:BB:0F:A7:2C:3D:72:8D:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otP5vJZWutwm594auw-nLD1yjdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/68fd0f-2b87-4704-a32f-d711e84c29a1/1/otP5vJZWutwm594auw-nLD1yjdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:a6:17:0a:bb:2a:9e:fa:ff:73:e0:9b:82:6a:98:e2:1d:f1:
65:57:b7:5d:1f:94:ab:49:0c:b5:33:4b:87:76:16:aa:d5:19:
f4:15:39:bc:5b:06:97:77:13:8f:e8:e6:b1:8a:2d:f4:e1:9f:
7a:e2:60:e5:cb:96:88:f1:54:b8:eb:9b:7b:bd:0d:3c:43:92:
41:8e:47:6f:38:cd:20:ed:31:b7:20:0c:71:2d:ae:87:4d:7a:
23:d0:f8:c3:ad:d6:0f:5e:ef:57:4b:19:4a:1a:6d:a7:7d:41:
45:cd:b0:b8:5b:f0:37:20:94:e6:c2:4d:26:a6:6c:1f:8d:a1:
66:23:01:04:4d:4a:ad:c3:7d:f2:c2:06:5f:a5:b7:d8:31:0c:
2b:d6:04:33:6f:a2:2d:b8:ad:ba:05:4e:05:76:50:64:c4:44:
c6:38:95:f5:e8:3c:80:5b:f4:e1:f4:b9:3f:51:69:53:d2:fe:
87:1d:ee:72:5f:3e:7d:ad:c7:25:a6:b0:2d:8a:34:bb:0a:8c:
65:d9:61:c3:ea:43:1f:25:10:fd:ae:e5:b0:c7:6a:5a:0c:5b:
ba:35:f6:f3:b8:c1:6d:50:a9:56:14:0e:ef:4b:07:b6:a9:c1:
b1:0b:ae:2a:37:50:cf:92:f4:85:d5:78:12:8e:02:80:fd:97:
42:ce:88:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:28:28 2025 by rpki-client