
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
File: OExBksVwSp65aPXPUzuaH3pmYa0.mft (raw, json)
Hash identifier: M1pjJXEvitGOSyuMB3UGgKLGFtunwuv3cM89+xbuESw=
Subject key identifier: 4E:7C:D1:1B:F8:32:8D:E9:B5:C7:68:06:57:4E:72:07:64:84:D3:81
Authority key identifier: 38:4C:41:92:C5:70:4A:9E:B9:68:F5:CF:53:3B:9A:1F:7A:66:61:AD
Certificate issuer: /CN=384c4192c5704a9eb968f5cf533b9a1f7a6661ad
Certificate serial: 0199FB7CAFA8323BD23F32BB045966FC0FE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
Manifest number: 02BB
Signing time: Sun 19 Oct 2025 08:01:16 +0000
Manifest this update: Sun 19 Oct 2025 08:01:16 +0000
Manifest next update: Mon 20 Oct 2025 08:01:16 +0000
Files and hashes: 1: OExBksVwSp65aPXPUzuaH3pmYa0.crl (hash: 1WdZ4NAf2JFbSRPo6w98WxZiwsqY43apfMg8U/MD09o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:af:a8:32:3b:d2:3f:32:bb:04:59:66:fc:0f:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=384c4192c5704a9eb968f5cf533b9a1f7a6661ad
Validity
Not Before: Oct 19 08:01:16 2025 GMT
Not After : Oct 20 08:01:16 2025 GMT
Subject: CN=4e7cd11bf8328de9b5c76806574e72076484d381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:70:3a:0a:12:bf:6e:7b:c4:11:6e:b0:08:86:
3e:ef:f1:cc:b6:6e:f8:28:99:54:b2:9e:b7:01:51:
04:6d:8b:0d:0f:b6:f3:86:72:a0:70:f6:87:8d:54:
a5:8d:f0:95:b9:ad:d6:a2:d3:ea:a6:2e:59:30:31:
da:86:16:5f:f3:8c:59:ae:05:57:c0:80:fe:76:13:
2d:df:ea:af:e0:14:ba:2c:21:78:90:33:67:14:b3:
88:be:9c:bf:c1:33:eb:7c:63:7a:6c:63:83:4d:f0:
ca:cd:4e:de:12:fe:4a:4f:f9:b7:6d:ed:03:3e:60:
f7:24:34:92:b2:2c:c6:23:19:1c:60:9a:9f:ff:00:
f3:44:9e:1c:ca:2f:b5:f1:9e:d8:ca:2f:35:5e:36:
b8:82:0f:1b:f8:7a:4f:f7:e7:40:75:b3:a7:68:07:
82:56:fe:36:8d:ee:ed:56:43:6b:39:b0:6f:f2:ec:
09:f9:07:33:81:e8:f4:7d:3b:c0:b1:37:7d:a3:b3:
9a:20:72:7c:14:27:b0:68:b6:cb:ec:12:2c:42:af:
eb:d2:ee:19:10:36:0c:32:c8:1f:94:dc:f3:c1:80:
f8:27:36:c5:53:a4:97:f3:31:87:2b:6b:7a:b4:d7:
40:16:64:28:0b:6d:55:7b:33:13:f7:a2:d9:fe:8a:
ce:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:7C:D1:1B:F8:32:8D:E9:B5:C7:68:06:57:4E:72:07:64:84:D3:81
X509v3 Authority Key Identifier:
keyid:38:4C:41:92:C5:70:4A:9E:B9:68:F5:CF:53:3B:9A:1F:7A:66:61:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:b2:8f:c3:67:72:2b:8c:27:f4:7d:69:0b:00:1c:4b:fa:14:
61:c5:aa:de:5b:f1:03:bb:a6:ed:4f:58:8e:14:01:e7:a9:54:
f7:2f:62:b9:01:0c:1b:42:86:4f:63:7b:39:f2:cf:04:e6:9d:
99:7b:0f:e8:bd:14:e0:a9:00:11:7d:2d:34:cc:ad:8f:f6:40:
e7:b7:bd:52:e7:eb:e0:a2:62:e3:92:ef:7f:0f:f2:7c:7c:6e:
2e:5c:89:e8:0f:8c:92:3d:6b:fe:ef:9f:8d:fd:94:eb:6f:b6:
8d:94:31:a5:4e:86:d0:9e:15:6b:7c:bd:af:55:4f:b5:c3:0d:
cd:b0:00:f2:3b:7e:a1:1b:28:fb:02:16:c2:b7:4e:5f:dc:73:
dc:70:ca:5e:b9:a2:52:06:c1:d7:b0:47:49:25:40:87:f2:6f:
1c:f3:4a:48:35:25:3c:58:86:18:d2:22:12:95:58:55:78:bd:
a6:85:28:b6:23:b0:51:76:0e:c6:3f:31:04:99:f7:0c:65:d0:
d4:2f:8e:f3:1e:88:45:d5:32:39:5e:19:ad:4f:6e:86:b7:ae:
23:f5:1e:2a:d2:24:c0:cd:b9:d8:35:35:22:9b:97:46:30:0e:
d1:8a:11:8d:35:5d:a3:30:8e:54:e6:6f:02:e7:6a:25:39:26:
00:68:14:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:14:18 2025 by rpki-client