Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.mft
File: Ou5vE-TaDy5DIqGnWqfn189xekI.mft (raw, json)
Hash identifier: eYYMeWjO2SpVTxHDggAOZf0bkHSOZgONe1O+yb61+a4=
Subject key identifier: 51:33:B7:E1:B4:BA:57:61:E2:B6:78:2D:F7:14:70:05:77:93:E6:0A
Authority key identifier: 3A:EE:6F:13:E4:DA:0F:2E:43:22:A1:A7:5A:A7:E7:D7:CF:71:7A:42
Certificate issuer: /CN=3aee6f13e4da0f2e4322a1a75aa7e7d7cf717a42
Certificate serial: 0198D6602F661CFEA31D05456F224492BAEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ou5vE-TaDy5DIqGnWqfn189xekI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 10:01:24 +0000
Manifest this update: Sat 23 Aug 2025 10:01:24 +0000
Manifest next update: Sun 24 Aug 2025 10:01:24 +0000
Files and hashes: 1: Ou5vE-TaDy5DIqGnWqfn189xekI.crl (hash: 4/fDao0THwxw0dcBNW+ky98EMz5W6ViEFfe224LWpkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ou5vE-TaDy5DIqGnWqfn189xekI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:2f:66:1c:fe:a3:1d:05:45:6f:22:44:92:ba:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aee6f13e4da0f2e4322a1a75aa7e7d7cf717a42
Validity
Not Before: Aug 23 10:01:24 2025 GMT
Not After : Aug 24 10:01:24 2025 GMT
Subject: CN=5133b7e1b4ba5761e2b6782df71470057793e60a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ed:4f:44:5d:a9:60:ea:7f:c7:79:dd:df:7e:
21:3e:32:73:f2:f9:e7:c4:e0:7c:9a:b4:48:5b:21:
8c:94:6f:19:80:69:1a:a6:13:25:75:e1:7e:ce:12:
df:6f:1c:9a:57:1e:1d:4e:b2:ac:8a:5b:2d:49:53:
d4:ed:75:4e:02:f3:59:10:00:22:89:ea:68:2a:7d:
ca:37:6b:dc:28:ad:03:fb:29:b2:59:ee:a7:19:55:
3f:ea:d5:b1:bc:ce:6d:77:f1:59:73:57:ed:7c:ff:
f9:21:9b:7a:58:d3:d9:40:90:61:44:bf:66:09:59:
e4:e6:ea:98:18:11:86:c4:36:ac:ae:ad:88:4e:3b:
0e:53:e1:33:11:d0:c1:c8:a9:5f:1d:b5:4c:e4:7b:
bb:f8:1d:06:77:5c:47:f7:15:37:52:30:cf:5b:df:
d8:ea:12:dd:fa:87:80:a9:79:67:13:0c:98:bc:41:
4d:c7:58:21:ad:ec:e3:10:b3:64:f7:9a:fc:ea:a3:
f3:30:41:96:45:9d:9a:c6:81:f1:26:20:3f:2a:ce:
d7:cd:0a:4c:e9:c6:15:40:59:c4:e3:88:5a:cd:86:
21:df:c9:c7:64:af:54:f9:62:90:6a:a4:c1:b8:98:
84:eb:d4:dd:c9:de:d2:2d:25:33:43:12:54:c4:eb:
05:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:33:B7:E1:B4:BA:57:61:E2:B6:78:2D:F7:14:70:05:77:93:E6:0A
X509v3 Authority Key Identifier:
keyid:3A:EE:6F:13:E4:DA:0F:2E:43:22:A1:A7:5A:A7:E7:D7:CF:71:7A:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ou5vE-TaDy5DIqGnWqfn189xekI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/ba0b0e-7cea-4b9a-9b6d-0c0292167f95/1/Ou5vE-TaDy5DIqGnWqfn189xekI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:4a:3d:49:a5:91:eb:15:73:42:80:30:c5:f0:2b:bb:2d:e7:
7c:63:54:39:cf:b2:36:6d:28:9f:f2:0f:9a:e3:83:20:1a:2f:
ba:12:e4:ec:2b:4a:16:c0:bd:b0:24:c3:be:cc:53:97:1a:7d:
70:46:20:1b:82:be:6b:c3:ab:1a:06:80:42:47:21:18:02:7a:
04:b7:eb:f3:b9:c7:fa:2a:da:b1:a9:df:06:40:9c:08:67:6a:
40:b3:32:83:d4:11:00:ac:84:3e:f0:0e:ff:83:7f:36:1e:3c:
a7:1b:4f:2c:0c:65:1f:d5:74:98:f6:aa:ca:f0:e5:4c:bd:97:
d6:ae:c7:8f:fd:19:ac:ef:c0:20:4e:c1:31:64:38:65:bf:15:
b2:cc:5a:84:e8:cd:52:78:9e:7c:d6:94:f2:7f:ff:7f:41:be:
0f:07:1b:21:8a:22:af:f1:10:f3:56:59:d4:c0:22:0a:71:b8:
d8:25:89:ae:e0:ce:e5:37:3a:65:94:b1:15:16:61:01:a2:fa:
16:89:7b:b7:e8:95:61:e0:47:d8:35:93:43:f6:69:33:12:bc:
d5:0d:15:02:10:e8:00:da:43:56:8e:55:b2:8a:60:f3:80:c5:
77:da:5b:bb:c6:57:27:99:a7:20:e4:cc:a8:8c:c6:70:81:4c:
d7:31:11:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:36:07 2025 by rpki-client