Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
File: x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft (raw, json)
Hash identifier: DPng56W8O5pMXGzrrJ5rtOJn8+Qx/y5IDBS0r8VFajs=
Subject key identifier: C3:6F:D6:DA:07:D8:99:BC:EF:9F:0A:32:3A:AF:9D:7E:DE:9A:BD:11
Authority key identifier: C7:71:FB:42:49:FC:51:88:A9:8B:62:B0:D4:0B:BA:9B:F7:E3:39:23
Certificate issuer: /CN=c771fb4249fc5188a98b62b0d40bba9bf7e33923
Certificate serial: 019872CFD1135DDE71E75BEAA870F27C1372
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
Manifest number: 036D
Signing time: Mon 04 Aug 2025 02:01:18 +0000
Manifest this update: Mon 04 Aug 2025 02:01:18 +0000
Manifest next update: Tue 05 Aug 2025 02:01:18 +0000
Files and hashes: 1: x3H7Qkn8UYipi2Kw1Au6m_fjOSM.crl (hash: h3jRxVkPxbtZ+zsrsGSKQjLNoyEtVj8yFgBzZ1vB6xM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
rsync://rpki.ripe.net/repository/DEFAULT/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:d1:13:5d:de:71:e7:5b:ea:a8:70:f2:7c:13:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c771fb4249fc5188a98b62b0d40bba9bf7e33923
Validity
Not Before: Aug 4 02:01:18 2025 GMT
Not After : Aug 5 02:01:18 2025 GMT
Subject: CN=c36fd6da07d899bcef9f0a323aaf9d7ede9abd11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bc:96:9f:ca:07:06:25:dd:55:a7:51:67:31:
8a:11:37:0c:80:b1:53:11:bf:d2:39:0a:a5:9d:44:
ec:cb:6c:ba:09:77:e1:ee:7e:e9:fa:c2:9a:cd:ab:
c5:c0:c4:95:91:c1:81:b0:e1:b1:f5:88:45:9a:ed:
1b:8c:47:11:38:c1:28:05:e2:ab:27:54:1b:24:a0:
63:02:52:f3:58:af:0e:85:30:66:51:32:14:2e:1a:
55:a9:44:d7:32:1d:af:d6:74:df:86:c6:58:7a:22:
3a:b4:e4:da:00:36:d2:19:dc:78:ec:73:40:62:1a:
6b:1b:42:18:1e:ba:94:41:78:44:a2:ad:6d:42:a5:
93:f5:8e:4b:aa:0d:02:37:73:b7:e8:17:01:6c:f5:
fb:1f:07:f0:32:13:83:48:26:ae:e6:f0:5d:da:06:
8a:1f:85:76:fc:cc:84:bd:23:e9:76:a3:c8:19:10:
e7:4b:28:31:1d:5d:de:84:76:d8:fb:ab:3b:2a:39:
41:4e:7b:bb:30:3b:d1:14:1a:6c:b1:eb:1f:86:5f:
0c:e6:e7:a9:4a:f8:8b:52:9a:60:e2:19:3c:30:09:
6f:53:f0:f8:a2:48:c1:c6:d0:26:12:92:c3:15:3d:
26:6c:48:16:5a:fa:fa:88:3e:a4:d2:7a:09:db:b5:
0b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:6F:D6:DA:07:D8:99:BC:EF:9F:0A:32:3A:AF:9D:7E:DE:9A:BD:11
X509v3 Authority Key Identifier:
keyid:C7:71:FB:42:49:FC:51:88:A9:8B:62:B0:D4:0B:BA:9B:F7:E3:39:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/a878ae-e977-45b0-923c-c90fa345c66e/1/x3H7Qkn8UYipi2Kw1Au6m_fjOSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:d5:ca:ec:7b:e6:80:31:cf:78:2e:39:f0:98:47:82:05:98:
fa:20:c6:b7:48:24:e8:d6:22:a6:92:4d:9b:dd:02:d3:9b:4c:
ce:4e:95:be:d5:00:2f:25:9a:52:ac:21:c0:74:ec:b4:95:24:
f1:65:85:2f:9e:2d:a1:97:aa:8c:7a:b9:82:0e:a1:54:2b:8b:
0e:eb:7d:79:32:32:18:d2:50:33:00:6c:07:e0:c9:a7:68:bd:
09:76:29:21:74:27:01:cb:09:40:b4:27:dc:1e:23:cc:c9:f6:
ed:73:a2:5f:e8:e7:a6:b8:10:29:9d:89:3b:94:10:89:a9:d8:
bf:af:f4:3a:dd:3b:39:b7:5d:55:7f:66:9e:87:3b:61:12:3d:
ce:70:8a:bc:18:ec:c5:a2:0e:25:b4:42:e1:9d:6c:11:e9:91:
b6:5d:e1:2a:d5:e1:3f:d9:40:a6:a3:77:97:08:8a:58:c5:97:
41:3e:5d:d7:95:09:17:50:16:13:1f:74:53:23:33:08:ef:d5:
36:79:7b:b3:3e:99:c9:2b:e5:78:1c:f7:bb:45:f9:f2:9a:24:
aa:ef:c9:15:04:f0:83:a8:6a:fd:f2:ef:0b:0e:97:e1:9b:56:
bd:ff:1c:52:dd:bf:17:4c:f9:eb:ff:80:ec:11:66:35:06:b0:
d5:fc:70:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:17:05 2025 by rpki-client