Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
File: OQlq7uS6fDS4EkCtSRrEba90wx0.mft (raw, json)
Hash identifier: g+5xZvlD4wAqcpO1FKDn50kks3K5c5Ryde9ePVniuWk=
Subject key identifier: F1:0E:73:2D:4A:EA:C1:38:CB:D8:7B:69:6F:FA:BE:50:5E:7B:8A:47
Authority key identifier: 39:09:6A:EE:E4:BA:7C:34:B8:12:40:AD:49:1A:C4:6D:AF:74:C3:1D
Certificate issuer: /CN=39096aeee4ba7c34b81240ad491ac46daf74c31d
Certificate serial: 0198D705A230499575DBEDFDF6C8C377EC9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 13:02:06 +0000
Manifest this update: Sat 23 Aug 2025 13:02:06 +0000
Manifest next update: Sun 24 Aug 2025 13:02:06 +0000
Files and hashes: 1: OQlq7uS6fDS4EkCtSRrEba90wx0.crl (hash: +cgFnS8aRH+7uRWmWms05ntbwk2zEQlMGlUYPM/p/w0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:a2:30:49:95:75:db:ed:fd:f6:c8:c3:77:ec:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39096aeee4ba7c34b81240ad491ac46daf74c31d
Validity
Not Before: Aug 23 13:02:06 2025 GMT
Not After : Aug 24 13:02:06 2025 GMT
Subject: CN=f10e732d4aeac138cbd87b696ffabe505e7b8a47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5e:4c:40:fe:6e:cf:35:aa:a8:e9:c6:5b:23:
52:7d:c1:48:10:29:3b:88:7d:13:fa:48:4d:19:64:
64:17:56:7b:23:64:3c:8b:46:bd:40:dc:b4:1b:57:
0b:eb:d4:d7:5b:d8:1b:40:b0:6a:d9:91:06:aa:53:
ba:1e:04:96:0c:a6:62:80:16:c6:30:7e:ba:93:b7:
b4:6d:45:ff:e2:32:45:40:7c:b6:f3:15:f0:7d:2d:
bc:19:d1:3b:16:26:6b:fc:f8:2d:84:bc:0a:f0:9e:
b9:7a:d4:d0:80:c6:8c:af:96:97:f3:b3:80:26:ae:
28:3c:65:42:05:87:e1:bb:cc:5d:58:fd:0c:a3:54:
0f:d7:6a:d2:8b:c8:47:ba:11:ce:c5:69:14:49:04:
24:16:8b:83:80:87:0a:68:23:b0:c7:bc:84:5a:31:
5f:81:75:06:8c:b0:e4:ec:81:f8:09:99:be:41:73:
f3:e4:7d:85:d0:0f:76:c9:4e:61:66:44:a1:b1:d2:
ec:9e:0e:61:7c:99:f6:12:73:b8:81:65:3d:88:74:
e3:60:00:b1:bd:c0:17:a9:0a:c2:18:50:93:fe:93:
0a:63:de:13:01:1c:bf:6f:55:62:40:47:78:15:ec:
8d:1d:f2:4d:ef:f7:6a:fc:ff:de:b2:c0:d9:b3:3b:
15:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:0E:73:2D:4A:EA:C1:38:CB:D8:7B:69:6F:FA:BE:50:5E:7B:8A:47
X509v3 Authority Key Identifier:
keyid:39:09:6A:EE:E4:BA:7C:34:B8:12:40:AD:49:1A:C4:6D:AF:74:C3:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:61:fe:29:78:51:dd:d3:4b:0b:21:6e:3b:64:f1:dc:f5:c1:
61:6a:37:4b:17:00:e0:d5:8b:fb:27:91:d9:25:11:dc:2f:2a:
62:1d:2b:a2:37:66:11:50:22:4d:2d:b3:10:eb:1c:56:20:2f:
5a:71:42:c2:1c:6d:b0:ac:47:f9:d0:c4:f3:34:2c:68:de:aa:
04:b0:1e:c2:42:3d:3e:89:98:b2:f0:e3:49:80:8c:88:7b:d6:
dd:05:80:48:44:c0:f5:eb:91:3a:98:45:26:5c:20:f7:92:b1:
75:ac:ef:1e:c0:48:46:19:5d:94:7a:f7:94:49:60:b2:ad:d5:
83:83:64:b4:7a:f0:ad:cb:f2:74:34:48:29:0a:64:6c:2b:79:
9a:37:b1:95:77:50:72:c7:7a:70:56:09:3c:33:05:15:21:d9:
c8:35:82:ba:e8:22:a9:e4:28:a2:91:fe:c8:41:59:5f:ff:ad:
55:57:5f:6c:7a:ce:60:48:c6:81:0d:ec:4c:d6:85:61:ba:58:
72:9b:dc:06:64:59:68:0a:46:41:9e:85:bf:81:9e:8f:b7:a8:
ea:e4:5d:cf:f7:6d:a3:0f:fa:85:0a:71:61:85:9d:53:53:43:
25:8f:f0:1b:04:70:97:be:f9:bb:80:15:45:e3:5f:63:d1:b4:
4c:55:dc:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 23:57:41 2025 by rpki-client