Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.mft
File: oewv8gIW07xkdbhQpGXjYvTs7s0.mft (raw, json)
Hash identifier: YR4qI+fw45NKTxggbZOomqFfoGYWsEa46Fg1fSLWFNk=
Subject key identifier: 3B:B7:8F:AB:3F:24:1C:87:C2:93:15:55:B2:2B:07:8C:5A:48:6C:42
Authority key identifier: A1:EC:2F:F2:02:16:D3:BC:64:75:B8:50:A4:65:E3:62:F4:EC:EE:CD
Certificate issuer: /CN=a1ec2ff20216d3bc6475b850a465e362f4eceecd
Certificate serial: 0199FCC6805C988387ECB6367CB128240EBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oewv8gIW07xkdbhQpGXjYvTs7s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.mft
Manifest number: 0364
Signing time: Sun 19 Oct 2025 14:01:31 +0000
Manifest this update: Sun 19 Oct 2025 14:01:31 +0000
Manifest next update: Mon 20 Oct 2025 14:01:31 +0000
Files and hashes: 1: oewv8gIW07xkdbhQpGXjYvTs7s0.crl (hash: SB7QnfrK5Lt851vw1BQmv1T8v+VfVX8ZSpICvfeU0+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oewv8gIW07xkdbhQpGXjYvTs7s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 14:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:80:5c:98:83:87:ec:b6:36:7c:b1:28:24:0e:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ec2ff20216d3bc6475b850a465e362f4eceecd
Validity
Not Before: Oct 19 14:01:31 2025 GMT
Not After : Oct 20 14:01:31 2025 GMT
Subject: CN=3bb78fab3f241c87c2931555b22b078c5a486c42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ec:67:58:fa:b4:2b:0f:ba:fa:dd:3e:5a:06:
24:30:6a:66:8d:65:12:78:d7:7d:bf:41:14:88:ba:
91:69:78:46:bc:3a:9a:1a:47:af:21:e1:ab:8c:7a:
fd:1e:14:01:2a:1c:10:23:ff:de:01:70:f1:f4:9b:
71:fc:76:18:02:2d:ff:08:e0:30:d8:1c:4c:07:28:
66:de:d2:3b:5b:dd:02:41:69:28:34:38:80:4e:2d:
91:ae:5c:c2:dd:bc:ea:92:c1:1c:5b:c7:b3:ef:af:
82:38:b5:4e:13:40:1b:8b:5a:bf:af:56:60:0f:04:
de:85:2d:00:e1:6d:81:d2:96:38:bf:e1:b8:02:72:
e6:a8:91:5a:95:ce:51:1b:3e:14:f3:ae:a8:f3:17:
ad:ba:0f:4d:99:0d:f9:a4:50:2e:81:e2:72:df:6a:
af:ed:ad:3a:8d:87:f0:48:3d:c4:01:ed:51:a2:26:
bc:ce:ea:9b:53:25:b7:0a:79:df:68:24:12:d9:31:
a2:70:e9:e9:86:be:14:81:b6:11:e8:7e:eb:db:7a:
4a:63:b4:d6:21:47:7f:a6:57:7e:37:1f:10:d8:9b:
ce:c2:84:e2:39:cc:4c:02:16:87:5d:ac:a8:8d:81:
13:3c:5a:16:be:30:25:c4:50:03:d7:99:d5:24:6e:
a6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B7:8F:AB:3F:24:1C:87:C2:93:15:55:B2:2B:07:8C:5A:48:6C:42
X509v3 Authority Key Identifier:
keyid:A1:EC:2F:F2:02:16:D3:BC:64:75:B8:50:A4:65:E3:62:F4:EC:EE:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oewv8gIW07xkdbhQpGXjYvTs7s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/23bd5e-f7e4-4d9d-b573-507563885403/1/oewv8gIW07xkdbhQpGXjYvTs7s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:fc:9d:15:48:1f:27:05:1e:19:ec:dc:15:0f:30:85:6f:9d:
cb:27:a9:52:63:6b:56:00:b9:40:c0:84:59:00:01:b5:86:a2:
79:0a:8a:62:e9:bb:6a:8a:2a:db:4e:35:79:7c:6f:02:b9:72:
bb:1d:a5:9a:35:cc:44:5a:dd:0c:0b:74:94:55:ae:3b:c0:b5:
18:eb:89:2c:ba:c1:ab:bf:47:64:1f:10:0e:19:cb:1e:1e:a6:
4a:97:00:72:82:73:93:46:0e:e8:80:b4:93:6a:0f:cb:67:d2:
21:66:c4:77:03:70:3b:60:fc:0c:81:c3:03:f3:b7:58:cb:54:
28:93:c4:28:d4:72:18:db:3e:87:39:28:f6:73:f4:49:81:44:
1e:d8:43:6b:86:fa:d7:f8:6f:dc:94:9d:9d:43:e7:21:9c:56:
d3:8e:35:fa:f1:56:77:c5:90:0e:7b:2b:e7:86:30:69:0c:f7:
9b:2d:5a:cb:98:ba:fb:78:54:f1:10:c1:13:df:8c:3a:4c:33:
02:e2:f2:9c:53:ed:ae:6b:47:5d:d8:7a:cb:02:cf:a9:ab:1a:
61:07:13:59:cd:53:bc:55:9a:28:d4:42:34:c8:8a:4b:a4:98:
3c:3e:24:52:97:d1:d5:63:6e:ec:2c:67:a9:cc:e8:dd:7b:71:
63:c0:4a:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:20 2025 by rpki-client