Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
File: OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft (raw, json)
Hash identifier: Of61MI+kgzrVWpyAbSGP7h1/6aujCHrm+XIAIrN5Ub8=
Subject key identifier: 24:96:9B:6A:AC:29:56:3D:3C:E2:09:FE:FE:F7:EA:BA:E7:C2:5A:9A
Authority key identifier: 39:34:88:67:DC:B2:95:6A:CA:65:D0:83:48:E4:40:D4:72:7A:37:43
Certificate issuer: /CN=39348867dcb2956aca65d08348e440d4727a3743
Certificate serial: 0197722CFA9988E99DEFB8E19019C2D2EEAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
Manifest number: 0335
Signing time: Sun 15 Jun 2025 06:00:39 +0000
Manifest this update: Sun 15 Jun 2025 06:00:39 +0000
Manifest next update: Mon 16 Jun 2025 06:00:39 +0000
Files and hashes: 1: OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl (hash: BUL9BXV3u/3y8Y30oTX4V3krJSQz3eoItg9nyaPJP4w=)
2: c6YXeFcziXYV8oA7IxxFWWIl7jo.roa (hash: 772kO8FIL8B9L379YEWTLwC21iJYKEhsMHuMIDdHwY4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 06:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:2c:fa:99:88:e9:9d:ef:b8:e1:90:19:c2:d2:ee:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39348867dcb2956aca65d08348e440d4727a3743
Validity
Not Before: Jun 15 06:00:39 2025 GMT
Not After : Jun 16 06:00:39 2025 GMT
Subject: CN=24969b6aac29563d3ce209fefef7eabae7c25a9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e4:77:cf:72:50:b9:37:cc:53:9b:c4:e3:92:
c2:21:74:d9:67:d1:1b:4f:8f:8c:d8:90:65:a0:e0:
b1:e4:33:73:18:5b:8e:4e:03:b4:98:4a:73:4f:7c:
25:61:18:56:b1:84:07:78:ef:e9:16:1e:22:5d:f2:
ea:bd:6a:3a:03:fd:14:f7:e9:99:75:fd:75:77:ab:
7e:22:90:b5:fa:b5:97:d1:c3:15:09:05:d8:b6:9e:
f1:0e:cd:2b:21:bf:3b:a8:7e:36:85:91:e3:9c:94:
91:3f:fc:70:57:8f:d1:02:84:ad:5c:4e:d7:74:dc:
fe:da:f9:d9:c5:1e:31:a7:be:d9:4e:88:1f:73:b9:
da:46:75:d7:5c:0d:70:7e:ae:4b:e7:01:75:7b:f7:
22:ae:52:58:60:c0:ac:0f:d6:f4:0e:8f:06:eb:78:
d2:dd:52:44:6b:d1:8f:1b:1c:47:6d:39:b8:93:ec:
66:61:29:5b:8f:a1:c9:cd:0c:59:5f:14:9c:0a:1c:
97:37:98:3f:d3:f8:85:24:c1:c8:3b:19:82:52:6d:
ca:68:55:2f:b4:6b:81:5c:4d:2a:55:2d:cc:98:fa:
ab:fc:82:44:f7:dd:a0:f9:89:58:a0:bc:d9:7c:c8:
f2:e9:72:60:00:06:97:d9:1b:ab:c8:ca:5f:3b:de:
c8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:96:9B:6A:AC:29:56:3D:3C:E2:09:FE:FE:F7:EA:BA:E7:C2:5A:9A
X509v3 Authority Key Identifier:
keyid:39:34:88:67:DC:B2:95:6A:CA:65:D0:83:48:E4:40:D4:72:7A:37:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTSIZ9yylWrKZdCDSORA1HJ6N0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/1dffe1-c8ff-466b-9dc2-bfc6f48e96ab/1/OTSIZ9yylWrKZdCDSORA1HJ6N0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:ba:72:e8:d0:2a:8c:0d:58:88:f4:62:3b:f9:7c:e9:2a:f0:
ba:b9:a4:3d:c0:47:13:d9:5c:9f:71:62:30:3a:9a:6d:c1:74:
60:8a:e9:1e:28:f9:bc:f1:58:92:04:3c:ac:7b:50:f9:fe:5b:
aa:3a:ac:8b:7c:e8:99:d3:7c:4e:de:cd:63:95:87:4d:ab:74:
d9:ff:b6:1d:2b:f5:87:58:96:29:a5:db:17:0f:02:6e:48:97:
25:40:8f:fd:41:81:ab:f3:8c:97:a6:24:aa:f0:c9:72:a5:6b:
82:b4:78:01:2a:43:13:6b:e1:2f:63:5a:90:35:ce:5f:3a:37:
20:47:bc:36:fe:8a:38:5f:02:52:81:d8:81:58:af:e9:9b:7d:
55:9b:0d:62:71:18:c1:fe:73:4a:6a:50:44:aa:9d:fa:11:84:
8f:c2:ce:51:cb:f6:13:b1:35:20:61:95:75:47:0f:e6:6c:2f:
85:09:55:9d:59:35:61:41:fc:5d:10:c0:9f:c2:df:ec:2f:3b:
89:f2:c2:f0:57:c7:79:2a:0e:8d:1e:15:41:f0:72:07:cd:22:
51:c4:d8:f1:b5:ec:63:b1:76:80:98:56:01:58:2c:f7:4f:24:
49:a4:29:17:e0:54:00:89:8e:23:3a:cf:1d:40:30:65:0c:fc:
e7:f9:54:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 15:37:00 2025 by rpki-client