Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
File: OpzyvclyZDBARldYsyWap8kubhw.mft (raw, json)
Hash identifier: hyAAojLqf/+rVRSMybnFwhnVU8Bo6tlRrzUX6RxwyBM=
Subject key identifier: FE:E5:CC:2F:3A:C6:55:D5:4F:7A:FB:46:23:AB:AC:7E:AB:B8:82:88
Authority key identifier: 3A:9C:F2:BD:C9:72:64:30:40:46:57:58:B3:25:9A:A7:C9:2E:6E:1C
Certificate issuer: /CN=3a9cf2bdc972643040465758b3259aa7c92e6e1c
Certificate serial: 0198D4E06A5A0C9CF89D208A9B7B10615EF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OpzyvclyZDBARldYsyWap8kubhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
Manifest number: 1644
Signing time: Sat 23 Aug 2025 03:02:13 +0000
Manifest this update: Sat 23 Aug 2025 03:02:13 +0000
Manifest next update: Sun 24 Aug 2025 03:02:13 +0000
Files and hashes: 1: OpzyvclyZDBARldYsyWap8kubhw.crl (hash: NS9XHXTql320Kn8AzP/L7OxyL1p7r9KTnVnLLLJOORI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
rsync://rpki.ripe.net/repository/DEFAULT/OpzyvclyZDBARldYsyWap8kubhw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:6a:5a:0c:9c:f8:9d:20:8a:9b:7b:10:61:5e:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a9cf2bdc972643040465758b3259aa7c92e6e1c
Validity
Not Before: Aug 23 03:02:13 2025 GMT
Not After : Aug 24 03:02:13 2025 GMT
Subject: CN=fee5cc2f3ac655d54f7afb4623abac7eabb88288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fe:70:ad:ea:ce:01:4a:f4:eb:75:23:e5:f1:
74:64:81:28:66:53:53:21:a0:54:6e:65:b2:7c:b9:
ca:77:44:40:2b:a9:26:12:e6:6b:1e:46:c8:65:e9:
af:aa:d1:eb:cc:0d:51:d8:2b:83:69:7c:95:75:a9:
6e:e2:c9:00:47:84:47:82:87:b4:15:ef:27:5f:e1:
a9:d2:e8:de:c7:90:a0:45:83:9b:63:e3:32:59:81:
0e:85:29:9d:c0:45:f7:c5:0f:ab:89:7b:81:f2:8a:
1b:fa:db:9d:b0:93:62:58:39:7d:35:4d:4d:d1:8c:
7d:c6:1f:70:e6:08:63:e4:2d:83:97:97:db:ad:f0:
15:3d:5d:03:11:22:25:ed:41:5e:15:8f:72:09:fa:
ff:96:f0:36:c7:97:00:25:2c:66:33:dd:70:56:61:
78:e4:4b:1e:72:9f:c5:db:51:43:d5:f8:2f:b4:0f:
96:c7:45:b7:ff:df:fb:1a:2f:4c:fc:3a:6d:f4:9e:
0b:41:f3:b2:d9:49:03:3e:fe:3c:1c:0b:37:fe:fd:
17:b9:3c:61:7a:42:0f:b9:c6:c6:54:73:15:51:98:
2d:db:7b:d3:06:ed:b3:62:cc:18:1b:6b:84:77:6d:
44:10:f2:e6:ba:af:4c:9f:c6:e5:7a:e1:40:26:f7:
24:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E5:CC:2F:3A:C6:55:D5:4F:7A:FB:46:23:AB:AC:7E:AB:B8:82:88
X509v3 Authority Key Identifier:
keyid:3A:9C:F2:BD:C9:72:64:30:40:46:57:58:B3:25:9A:A7:C9:2E:6E:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpzyvclyZDBARldYsyWap8kubhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/71c579-5080-41fe-8653-024f7c50f428/1/OpzyvclyZDBARldYsyWap8kubhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:77:8c:6f:dc:77:12:57:a0:36:ce:e5:8a:56:5c:c3:da:2b:
ff:33:b9:81:9e:ac:1a:d4:5b:5a:04:d1:86:ed:57:78:60:2a:
ba:36:9a:51:8b:d4:c7:be:39:af:6e:b7:0f:29:f0:f4:cf:c1:
e6:de:57:b8:83:09:9a:40:8f:47:9b:63:b1:9c:7e:51:fa:37:
aa:67:87:87:73:69:1f:99:0b:48:be:41:7b:77:38:16:85:c3:
be:f6:8b:d5:f2:72:7e:d1:34:c1:6c:7c:c7:be:bf:5e:20:4c:
c5:a2:24:37:a1:3b:53:03:f2:71:e2:22:83:77:b6:a5:4c:c6:
40:2a:3f:ba:66:06:ef:88:bc:6a:69:8a:cb:4a:78:1e:16:10:
3c:d4:f4:85:1f:54:11:4f:f6:07:cb:42:dd:76:05:90:c9:d8:
36:61:57:31:ee:84:cf:d1:39:6a:cf:d8:d4:5f:be:40:c1:ff:
17:c4:0d:d0:89:a2:aa:1c:6c:00:e8:43:24:ae:8d:18:76:52:
57:d2:19:c0:1d:ad:b8:2f:85:ae:a0:55:fb:d8:4c:4a:b8:69:
bc:07:85:a3:4e:ab:4b:98:d4:77:32:a5:12:87:b4:30:86:60:
3d:7a:71:8c:ba:56:05:ad:b9:29:c1:19:8c:6a:68:9e:e4:63:
0e:7a:65:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:46:08 2025 by rpki-client