Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
File: OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft (raw, json)
Hash identifier: wLBUrgapa0i+ejTFeMYMYJhC1nhJicA4k0WDGKPDVQQ=
Subject key identifier: AA:06:07:49:5F:50:8B:4D:01:70:E3:CD:7E:B6:46:0E:9E:CB:20:F4
Authority key identifier: 3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
Certificate issuer: /CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Certificate serial: 0197B7EA363E97926A5A2633F4A63EDAAB92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
Manifest number: 05E8
Signing time: Sat 28 Jun 2025 19:01:08 +0000
Manifest this update: Sat 28 Jun 2025 19:01:08 +0000
Manifest next update: Sun 29 Jun 2025 19:01:08 +0000
Files and hashes: 1: OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl (hash: uHL0gsXT3k3v8c6zVe3idkGSgA5R+AGjhYqpfwD98BY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:36:3e:97:92:6a:5a:26:33:f4:a6:3e:da:ab:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Validity
Not Before: Jun 28 19:01:08 2025 GMT
Not After : Jun 29 19:01:08 2025 GMT
Subject: CN=aa0607495f508b4d0170e3cd7eb6460e9ecb20f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:e9:81:e5:b0:8c:db:c7:eb:0a:5e:81:8b:1b:
83:c3:7c:61:95:d8:bf:1a:ec:ca:d6:a9:a2:aa:51:
7e:72:14:4f:3c:38:cf:f4:77:c5:38:77:10:76:dc:
66:7b:60:a9:e9:54:bd:1b:9f:87:87:0b:6f:b7:6b:
15:9b:02:21:4d:f0:a1:89:4d:2f:35:09:dc:af:d7:
4c:2c:e2:14:23:de:d8:cd:14:b7:3e:f5:1a:a4:d6:
ec:d5:d6:a3:2e:02:ec:2e:8c:e0:5c:d3:a3:7a:59:
9e:c4:43:81:7c:10:cd:81:ba:e9:85:2d:d7:65:55:
e8:05:45:ea:24:f9:7e:70:62:51:36:f9:55:cd:45:
1e:53:15:44:f7:e7:a8:4c:af:e4:30:6d:69:a6:2d:
b1:dc:84:66:25:fa:60:89:27:f4:0c:b7:6f:92:93:
97:15:61:bf:61:9b:a5:e2:27:bb:9f:3c:c1:e1:d9:
a1:89:5e:90:c8:22:09:07:1a:e0:f7:65:7e:f8:52:
4b:06:61:3e:de:8e:ec:93:9d:81:94:d2:95:dc:98:
bb:2d:d7:18:de:5f:a0:0e:1b:ee:55:dc:ad:83:ed:
07:05:7a:1c:76:62:be:c0:96:96:3a:4c:4c:bb:b5:
92:09:d2:3c:d5:49:27:74:7e:28:6f:42:39:75:44:
e8:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:06:07:49:5F:50:8B:4D:01:70:E3:CD:7E:B6:46:0E:9E:CB:20:F4
X509v3 Authority Key Identifier:
keyid:3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:4b:b4:e1:70:e3:72:71:0d:da:fc:46:1e:e7:17:78:2c:37:
05:25:9f:03:46:e3:da:8e:50:5b:f3:e0:d1:44:e9:7a:8e:8e:
c9:ed:6a:24:20:28:b8:d5:4d:97:1d:44:8f:29:d9:e5:c3:e3:
be:74:00:99:25:ef:45:87:33:0c:ef:3a:9c:99:2c:86:8c:a3:
18:ce:31:c6:c6:ce:64:92:c5:07:39:37:9a:9a:d3:78:cd:fb:
21:54:bf:d6:0a:fa:4d:7f:90:60:fd:db:05:cc:6b:34:b7:8c:
2f:87:df:33:b0:39:5c:1a:02:b9:bf:1f:ce:d0:7f:7c:81:a6:
6d:86:ed:da:25:8d:0b:04:97:dc:f6:ae:45:f5:0e:f0:12:7a:
c7:2a:d5:43:68:f7:0b:30:69:15:6a:37:e3:4f:66:d4:35:b6:
fc:b2:5c:9a:f8:31:cd:06:7c:0f:66:33:2e:b7:6c:bd:a3:84:
d4:98:00:7e:0d:d4:91:ae:f9:fe:8a:6e:68:41:32:d9:a3:92:
5c:0b:24:fb:35:44:af:c6:d4:bf:40:8a:8d:43:61:7c:6b:ad:
bb:77:18:f2:8d:9c:58:54:ca:ab:40:96:10:5e:42:fd:d7:56:
e0:12:db:a1:77:f2:a5:85:af:9b:e4:7f:3f:90:38:8a:be:fb:
d0:3a:49:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:46:30 2025 by rpki-client