Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.mft
File: OZ17KbLru-43WSMgfh2FZU8LV7o.mft (raw, json)
Hash identifier: hecGYcJ+e/YQUZhuRbeRMPoUP/TTOgLm8h9f06LwCQI=
Subject key identifier: AB:09:C4:1C:45:CF:D8:52:5A:AD:11:07:40:9F:42:23:11:98:BF:DA
Authority key identifier: 39:9D:7B:29:B2:EB:BB:EE:37:59:23:20:7E:1D:85:65:4F:0B:57:BA
Certificate issuer: /CN=399d7b29b2ebbbee375923207e1d85654f0b57ba
Certificate serial: 0198D516008A6781879BBD1C82BD70355C58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ17KbLru-43WSMgfh2FZU8LV7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.mft
Manifest number: 0293
Signing time: Sat 23 Aug 2025 04:00:45 +0000
Manifest this update: Sat 23 Aug 2025 04:00:45 +0000
Manifest next update: Sun 24 Aug 2025 04:00:45 +0000
Files and hashes: 1: OZ17KbLru-43WSMgfh2FZU8LV7o.crl (hash: LsKWSoIG7/HgR/U2M+7w7rAFKJN+QJ8xcYL/ZG4srac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ17KbLru-43WSMgfh2FZU8LV7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:00:8a:67:81:87:9b:bd:1c:82:bd:70:35:5c:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399d7b29b2ebbbee375923207e1d85654f0b57ba
Validity
Not Before: Aug 23 04:00:45 2025 GMT
Not After : Aug 24 04:00:45 2025 GMT
Subject: CN=ab09c41c45cfd8525aad1107409f42231198bfda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a5:d4:ef:07:33:74:ec:6b:b7:84:17:c8:41:
f9:93:10:24:37:db:94:fc:01:0c:f2:23:3f:ec:13:
81:57:28:8b:d8:60:1a:47:0f:ac:66:7e:82:e4:dc:
a9:97:e6:e9:6d:40:ac:b9:06:e0:46:b1:1f:af:18:
77:af:fc:c6:47:3c:11:10:a9:f5:ac:6c:f4:b6:1c:
19:cc:eb:7e:e5:fa:ee:d9:92:80:10:fd:20:b8:1e:
75:78:85:48:55:f4:f8:2a:e7:11:b3:17:bb:01:a8:
a6:8e:5c:e6:3d:42:46:db:59:d6:56:d2:a1:68:3b:
4e:b8:16:c6:ae:be:aa:9e:96:43:a2:0e:30:b8:1d:
f9:7c:2a:7b:b2:54:4f:8d:ee:7a:56:e2:33:94:d6:
7c:b9:67:17:fb:c3:80:44:b3:dc:fd:3b:55:65:1a:
8f:1a:07:36:d4:8c:d8:9a:c7:5c:0a:6a:fb:dd:f8:
05:44:d1:6c:e1:d0:80:f6:3f:3c:dd:7d:56:76:e8:
cf:b4:3c:c3:2b:90:6b:06:e3:9a:8a:89:8d:46:c8:
f3:81:64:e2:9a:53:c1:58:d8:34:77:1e:60:f6:41:
cb:94:0a:c4:4e:fe:8c:ba:8d:a5:06:b4:54:98:c9:
10:81:c7:b8:0e:d1:10:ae:e6:1a:45:87:84:06:fc:
51:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:09:C4:1C:45:CF:D8:52:5A:AD:11:07:40:9F:42:23:11:98:BF:DA
X509v3 Authority Key Identifier:
keyid:39:9D:7B:29:B2:EB:BB:EE:37:59:23:20:7E:1D:85:65:4F:0B:57:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ17KbLru-43WSMgfh2FZU8LV7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/391c8d-6ac6-4c06-9a40-a6b5a8be1113/1/OZ17KbLru-43WSMgfh2FZU8LV7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:32:4e:57:50:da:9f:40:77:85:f9:6a:78:5f:f4:ca:7c:46:
f4:a7:82:33:8f:53:8e:03:5a:ce:e4:8c:4c:98:25:11:5a:1b:
d0:53:f9:f3:c0:66:25:98:60:20:21:67:cd:b5:f9:62:d5:70:
b7:e4:0a:b7:91:04:a9:23:fc:f5:af:28:8d:a0:1f:5e:1d:29:
fb:2b:1f:50:ec:0f:1e:bc:0b:5d:3a:1b:ee:ea:86:0c:7c:a1:
e8:c9:7b:e9:3c:06:56:11:f3:ba:ca:9d:c9:9d:45:de:33:98:
cb:92:6a:8f:78:14:33:f1:38:8f:81:04:92:02:b2:9d:20:e4:
f1:07:13:77:54:c0:a1:5d:1b:ad:80:d9:ad:9c:58:e9:5a:31:
79:99:20:6e:4e:c8:cb:b3:b3:61:ad:47:9c:4e:3b:3d:f7:b6:
aa:48:24:85:5d:f2:a1:cc:70:0f:06:23:02:75:f1:d9:ac:7a:
16:5b:2f:73:30:0a:13:df:57:f4:90:2a:52:36:78:5e:cb:49:
bb:18:d5:df:72:f1:e6:a1:0e:64:3f:07:f3:7e:f4:80:c2:94:
5f:f2:ee:45:4e:38:dd:d4:9f:b6:7f:f8:cd:5f:73:6f:12:33:
78:a5:a8:75:75:11:cd:31:d6:c0:8f:a7:73:cf:47:ba:00:d5:
78:55:f7:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:05:18 2025 by rpki-client