Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft
File: oqodRGKTg8rfx1F9733ikpWuObQ.mft (raw, json)
Hash identifier: uHM66anglmRF/BwcZKsj7iXtilLxKWVzmdcgMXKNF4k=
Subject key identifier: 52:D7:4C:EC:59:2E:99:A6:84:CB:78:DD:40:E5:0C:2C:0B:F8:5B:A5
Authority key identifier: A2:AA:1D:44:62:93:83:CA:DF:C7:51:7D:EF:7D:E2:92:95:AE:39:B4
Certificate issuer: /CN=a2aa1d44629383cadfc7517def7de29295ae39b4
Certificate serial: 0199FC8FBEE507DE1E8D93999232EB4C37DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oqodRGKTg8rfx1F9733ikpWuObQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft
Manifest number: 0E58
Signing time: Sun 19 Oct 2025 13:01:42 +0000
Manifest this update: Sun 19 Oct 2025 13:01:42 +0000
Manifest next update: Mon 20 Oct 2025 13:01:42 +0000
Files and hashes: 1: oqodRGKTg8rfx1F9733ikpWuObQ.crl (hash: puQFTb+yMmya2SSg6DU9tyFAJRhBj1AZRIzjOZ2SGJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/oqodRGKTg8rfx1F9733ikpWuObQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:be:e5:07:de:1e:8d:93:99:92:32:eb:4c:37:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2aa1d44629383cadfc7517def7de29295ae39b4
Validity
Not Before: Oct 19 13:01:42 2025 GMT
Not After : Oct 20 13:01:42 2025 GMT
Subject: CN=52d74cec592e99a684cb78dd40e50c2c0bf85ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:03:60:b0:50:de:48:db:0a:cb:41:2e:57:0c:
d7:e5:b6:4b:3e:59:2a:2a:e5:b8:83:10:5e:00:1e:
25:c7:8d:81:58:28:ac:55:c3:c8:7d:ad:d9:75:f6:
24:e9:79:85:d3:67:8c:18:d5:24:5c:cb:46:6f:5a:
48:4c:1a:18:8d:2e:7a:a3:4b:a8:3a:b0:c4:fe:0a:
58:77:17:a0:18:32:de:2a:a9:a2:b3:ab:dc:63:dd:
cd:d1:08:02:7f:83:1e:ae:4b:dd:49:0f:e2:83:05:
a7:1b:6c:67:56:ab:be:fa:3c:42:d9:11:c1:27:84:
fe:9e:ba:e3:1c:3c:10:bd:3e:31:d6:47:40:27:79:
b1:74:22:76:fb:52:5e:7f:5f:3b:3d:9d:9c:10:9e:
cf:af:1b:bf:dd:3c:d8:5d:12:e7:ee:3f:59:bb:62:
6b:86:b2:84:5e:a5:76:8c:f7:3c:bf:a6:59:df:b3:
c4:19:bb:84:3b:55:c6:bb:ee:80:39:31:45:f6:81:
d4:93:fd:6f:0c:67:c0:02:3f:01:e8:e5:16:de:96:
d9:81:58:94:c1:6e:30:9c:e9:ed:ad:73:63:5a:19:
20:9f:92:08:69:aa:53:e4:37:d2:f5:6a:57:29:41:
f5:a8:d3:3a:af:ae:c1:b6:cc:d2:1f:d3:79:ed:86:
d7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D7:4C:EC:59:2E:99:A6:84:CB:78:DD:40:E5:0C:2C:0B:F8:5B:A5
X509v3 Authority Key Identifier:
keyid:A2:AA:1D:44:62:93:83:CA:DF:C7:51:7D:EF:7D:E2:92:95:AE:39:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oqodRGKTg8rfx1F9733ikpWuObQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:b2:7f:59:19:80:54:2c:14:ee:28:3d:67:0a:1f:95:08:b1:
58:9e:62:88:b6:b4:e7:34:d5:28:74:6f:ab:58:ed:25:96:f8:
91:91:f0:1e:65:c5:e5:09:73:df:35:e5:68:5e:27:b8:5b:0e:
40:f4:5b:1c:af:da:54:ae:a8:f1:f8:80:3c:f9:df:ce:42:39:
d7:42:52:8d:a9:ac:65:37:29:c7:75:26:cc:9f:5e:95:9f:e7:
18:95:0b:f9:a3:0c:05:1d:83:ac:66:d7:ab:b9:17:e1:fe:3d:
41:0f:3c:07:3a:e6:38:db:a2:af:47:af:cf:38:0b:8f:96:b7:
7f:a9:59:00:17:4b:4f:c6:92:b5:31:f1:a4:12:11:d7:f0:0b:
29:f9:80:be:e9:ea:d2:4d:78:2e:08:68:77:17:6c:80:82:e5:
bf:da:f0:1e:4f:76:31:dc:bb:d9:c0:05:24:c3:98:bb:80:29:
e6:23:52:3a:3f:11:7f:13:74:0f:03:40:08:66:f1:0d:f6:c6:
8c:2f:95:df:1f:79:34:52:46:f9:ca:24:76:fd:30:d2:9b:f8:
14:a4:44:87:83:e1:e3:a6:1d:e7:74:81:cb:48:a3:3e:c6:dc:
73:b6:3a:26:a1:03:64:12:ec:51:d2:44:18:86:64:e1:b1:37:
59:04:18:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:59:39 2025 by rpki-client