Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
File: fJ1n8CerKw_yajV1FHOa_ogDesk.mft (raw, json)
Hash identifier: gKGGRPOyGFJdjnCWyuEF8HZKAIXzHsuv0SgPu3FG/L0=
Subject key identifier: 9D:76:72:02:99:A4:FB:92:38:D4:44:CE:08:F5:5C:65:40:E1:B6:18
Authority key identifier: 7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9
Certificate issuer: /CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
Certificate serial: 019A4FD008BD6D6DECC008BB776B42C8F545
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
Manifest number: 1624
Signing time: Tue 04 Nov 2025 17:00:24 +0000
Manifest this update: Tue 04 Nov 2025 17:00:24 +0000
Manifest next update: Wed 05 Nov 2025 17:00:24 +0000
Files and hashes: 1: fJ1n8CerKw_yajV1FHOa_ogDesk.crl (hash: XGyaWQwemG03r22UwEfD74ojq9EQHwD62bg1ELSVfEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:08:bd:6d:6d:ec:c0:08:bb:77:6b:42:c8:f5:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
Validity
Not Before: Nov 4 17:00:24 2025 GMT
Not After : Nov 5 17:00:24 2025 GMT
Subject: CN=9d76720299a4fb9238d444ce08f55c6540e1b618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:90:10:c3:d3:d0:f0:60:7f:ac:68:d8:64:72:
a2:4a:90:6e:2e:df:6f:0a:ea:ef:0c:f5:d3:a3:b3:
63:3d:0c:a0:50:03:9a:f5:7c:a8:3e:d7:12:6d:ad:
c6:ee:eb:8e:60:97:18:58:15:5f:ca:34:5e:8a:49:
e4:dc:94:c2:d6:89:e1:86:ad:cc:af:3d:59:81:7f:
c7:21:79:45:1f:89:a5:eb:aa:e6:f4:00:eb:fe:1a:
48:fb:ae:14:24:b7:a8:32:e2:66:f8:47:42:f7:f4:
ff:e5:48:e1:83:ee:ad:20:d8:b0:cd:92:94:40:f6:
e9:41:49:59:d5:f6:05:b9:33:5c:67:eb:38:d5:1b:
07:e3:4f:69:fd:95:ba:bb:fe:e4:ef:65:6f:69:00:
e1:df:7e:1c:e9:0f:89:b3:76:db:a6:4f:36:6b:a1:
07:2d:26:01:7e:a6:d1:84:bb:0f:31:98:df:11:2c:
f8:27:b1:29:a2:55:56:6d:7e:ec:a8:ea:10:a2:41:
03:b4:46:b8:e0:0c:cc:1f:c7:c2:7a:09:d9:3f:24:
1f:a3:03:f9:88:14:80:eb:59:05:3c:a4:04:8d:7f:
69:3a:db:b8:2e:d1:54:2b:b1:96:f0:ac:43:1b:3e:
b2:2f:1a:5b:07:9d:dd:e8:14:c0:a0:d2:6d:3a:a0:
61:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:76:72:02:99:A4:FB:92:38:D4:44:CE:08:F5:5C:65:40:E1:B6:18
X509v3 Authority Key Identifier:
keyid:7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:50:60:5a:02:4e:38:32:44:c9:d8:82:4d:2b:ab:35:8d:c6:
4c:f1:ef:ae:5a:2a:0d:7a:27:5b:16:13:3f:60:6d:b3:7c:35:
d7:5f:4b:d5:d8:3c:c8:d2:08:5e:cc:b7:f1:74:7a:e5:51:40:
73:28:83:09:31:6a:05:cc:cf:79:85:bb:2d:ed:10:17:a6:ae:
ea:a7:bc:82:0e:dc:bc:87:e1:23:54:21:bb:96:65:8f:66:86:
62:2f:7c:3a:ca:f3:e1:77:14:61:31:77:17:b3:e3:59:c8:f1:
c6:3d:e0:ae:71:10:52:d4:33:99:e7:76:1d:cb:1e:08:b8:2e:
99:12:65:bb:d8:a1:4c:81:a3:e7:04:40:35:80:91:15:03:34:
80:28:1b:d1:16:ed:34:1d:e1:3d:68:87:7f:c6:84:87:b1:28:
1b:c9:ef:93:28:d5:ec:70:65:ca:d1:fb:b9:cc:4f:37:53:a3:
1e:e9:28:91:c3:ed:53:cc:08:d0:d0:8a:db:04:0e:7e:63:74:
57:50:16:2c:d8:e5:0d:27:af:75:b4:18:ca:3d:ca:0d:1a:a9:
c3:49:a7:c0:62:2f:fc:f5:0e:81:60:44:ed:a8:67:55:1d:04:
67:06:3e:46:51:00:a4:95:2c:78:bd:2d:93:46:3f:6a:d5:ab:
5c:ec:b7:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 01:55:42 2025 by rpki-client