Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.mft
File: OXsxr3cA59mVkO39nVhKG1A46tc.mft (raw, json)
Hash identifier: 6gWNeNnxt0jJMMeNcftukzlTOMw8pCmuf7ZWt++R/j4=
Subject key identifier: 35:24:74:D4:B1:59:FB:7F:FC:5D:27:D5:E8:DB:D1:02:B8:1C:31:C8
Authority key identifier: 39:7B:31:AF:77:00:E7:D9:95:90:ED:FD:9D:58:4A:1B:50:38:EA:D7
Certificate issuer: /CN=397b31af7700e7d99590edfd9d584a1b5038ead7
Certificate serial: 0198D773604B08F8FCC29F1D4A6EA4F69F40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXsxr3cA59mVkO39nVhKG1A46tc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.mft
Manifest number: FF
Signing time: Sat 23 Aug 2025 15:01:59 +0000
Manifest this update: Sat 23 Aug 2025 15:01:59 +0000
Manifest next update: Sun 24 Aug 2025 15:01:59 +0000
Files and hashes: 1: OXsxr3cA59mVkO39nVhKG1A46tc.crl (hash: HSukrSTiUfrv8ebf5qcVVjTflajuksVTMI2VU2xcZSI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXsxr3cA59mVkO39nVhKG1A46tc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:60:4b:08:f8:fc:c2:9f:1d:4a:6e:a4:f6:9f:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397b31af7700e7d99590edfd9d584a1b5038ead7
Validity
Not Before: Aug 23 15:01:59 2025 GMT
Not After : Aug 24 15:01:59 2025 GMT
Subject: CN=352474d4b159fb7ffc5d27d5e8dbd102b81c31c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a9:df:ad:99:7e:fb:a8:84:bf:49:8a:bc:12:
7a:9a:f3:98:f5:1e:e1:c9:0a:9c:5f:1a:7b:ab:98:
0c:21:58:e4:68:cd:e1:2e:16:7d:0f:17:2f:df:cc:
1a:a4:18:25:7b:68:05:95:ee:a3:8d:89:b5:07:8f:
22:f6:35:b9:f6:6e:50:d6:75:0c:01:c7:4b:f7:aa:
5a:3a:17:b2:d5:29:2e:e7:7e:da:13:db:8b:a7:04:
f6:9d:46:1c:23:80:5d:81:23:c3:80:78:b4:c0:c2:
17:7e:70:7c:22:ed:11:70:29:67:a9:18:d7:f8:55:
b9:39:05:42:4d:da:66:f6:61:44:d5:e2:81:d9:b4:
95:a6:3f:bf:5f:b8:30:85:14:32:70:9e:a0:0e:49:
08:33:93:7e:17:ac:89:14:c0:85:76:86:77:c4:1c:
47:96:ca:b4:cf:78:b5:03:b1:ad:88:cf:e7:c9:34:
fa:80:35:a4:51:1a:bd:70:cb:1b:cc:12:72:ab:27:
48:c5:f5:59:4a:f6:46:ef:f9:7b:72:ca:7b:13:e7:
df:0d:0e:9e:47:46:80:bc:45:1c:45:84:c3:a1:33:
11:44:43:39:91:42:7c:35:cc:d1:66:6a:54:d0:37:
b0:89:9c:60:e8:36:9e:46:52:f5:45:a9:1d:9d:c3:
81:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:24:74:D4:B1:59:FB:7F:FC:5D:27:D5:E8:DB:D1:02:B8:1C:31:C8
X509v3 Authority Key Identifier:
keyid:39:7B:31:AF:77:00:E7:D9:95:90:ED:FD:9D:58:4A:1B:50:38:EA:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXsxr3cA59mVkO39nVhKG1A46tc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/0d9d3b-d790-4ae8-a23d-b202e05ac84a/1/OXsxr3cA59mVkO39nVhKG1A46tc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:fe:96:2e:9b:b3:e8:85:b5:1f:15:8c:85:9f:58:af:2c:a3:
ae:d6:69:5e:59:ff:59:57:39:72:c9:23:98:b1:00:90:c2:24:
a8:4f:d0:0b:d4:79:3f:07:1e:ef:7f:49:07:7b:46:2d:69:33:
b2:0b:3b:4b:72:bd:66:9c:81:0f:1b:51:a4:55:da:b3:f6:8f:
b3:e3:38:32:0e:6e:27:ef:77:a3:02:f9:d3:37:af:a3:c4:6e:
51:c9:4f:37:5c:ff:8d:b7:3d:0e:7a:c3:cf:7d:2a:db:4b:55:
fc:42:8c:63:f5:e1:2b:cc:02:95:00:a7:f9:52:8e:9d:5e:5a:
3e:11:1e:ce:dd:bf:31:09:86:2d:60:58:84:97:96:f5:7f:d6:
f7:fc:ac:13:e0:fc:a2:ca:0b:a2:31:ac:17:f4:e6:f7:29:97:
d2:62:a0:bf:87:11:48:3c:61:c5:75:2b:bc:9e:00:c2:99:08:
1b:52:09:8d:04:ba:df:de:06:fd:4e:e3:e0:9f:c2:d5:b5:b6:
ee:45:93:54:27:bd:de:69:00:d7:3a:cf:7d:11:b9:1b:84:88:
ab:6a:66:27:00:2d:58:71:74:cf:45:ce:75:4f:8e:77:01:7f:
a9:b6:4b:49:02:c7:7f:f6:e2:42:c2:17:ba:39:2e:69:7a:f2:
77:b5:92:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:44:32 2025 by rpki-client