Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
File: OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft (raw, json)
Hash identifier: DeGL9cLVCAYrRRxpNGlKCReYCKJNV4FLF7PX5BN3IXw=
Subject key identifier: 97:6B:11:C7:60:32:79:C1:AC:E8:0C:B9:69:C1:F4:FD:74:E2:BA:CC
Authority key identifier: 3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
Certificate issuer: /CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Certificate serial: 0198D5BB7E4121F97AADD9E5010B29DCB1FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
Manifest number: 067C
Signing time: Sat 23 Aug 2025 07:01:31 +0000
Manifest this update: Sat 23 Aug 2025 07:01:31 +0000
Manifest next update: Sun 24 Aug 2025 07:01:31 +0000
Files and hashes: 1: OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl (hash: l37eRZ8+9Ey0eXJ2Bsi7yYHo5VHrzbT8aD2JFtx0cdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:7e:41:21:f9:7a:ad:d9:e5:01:0b:29:dc:b1:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Validity
Not Before: Aug 23 07:01:31 2025 GMT
Not After : Aug 24 07:01:31 2025 GMT
Subject: CN=976b11c7603279c1ace80cb969c1f4fd74e2bacc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1a:f2:23:5a:bb:08:97:49:d1:ae:cf:ad:d0:
c2:83:ac:34:50:17:9b:0d:c9:4f:ac:6a:b0:e8:37:
29:3a:74:87:2b:2f:75:af:60:11:a7:25:77:a8:f4:
f8:21:d5:57:56:83:e2:d4:e7:73:e1:1a:d5:95:9f:
a3:60:13:c9:d9:a4:a3:27:b2:07:59:85:af:59:70:
9f:86:d9:da:2a:94:6e:f0:1f:48:ac:63:02:22:35:
ae:ff:6c:bf:bc:ae:e2:67:b6:f4:b7:38:e9:bc:1d:
0d:a0:43:a4:1e:b2:f1:13:9b:5e:2f:2f:0b:6e:25:
d3:2a:e4:91:d2:cf:ad:e4:6e:f4:23:a4:fb:fe:33:
55:81:8d:ec:8e:62:c8:92:9a:16:fc:35:2f:65:0e:
d6:25:4f:ff:e3:38:c9:5d:b5:f4:6f:03:cd:36:77:
57:52:ad:06:37:c5:65:8f:d3:29:7c:fa:63:b1:22:
54:53:f6:e9:6a:dd:f2:0e:a4:74:da:25:01:7b:88:
8f:5c:55:26:3d:b0:60:07:4c:13:79:65:8a:05:1c:
09:e0:10:b9:13:7c:fb:e4:c1:aa:0c:44:0b:54:4b:
12:a9:7f:d3:51:fa:ff:0e:41:3e:f8:1b:01:5a:23:
f3:3b:e5:c8:90:7e:16:89:b2:7a:c4:66:f8:69:c9:
f6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:6B:11:C7:60:32:79:C1:AC:E8:0C:B9:69:C1:F4:FD:74:E2:BA:CC
X509v3 Authority Key Identifier:
keyid:3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:45:98:b1:3a:55:08:6f:0a:27:24:34:45:1d:80:bd:de:5d:
ce:7b:ce:ec:b0:d5:71:23:2b:01:f0:a9:56:e6:ea:e9:f0:09:
4e:eb:84:e0:86:57:a1:19:ea:d1:35:e8:ab:26:88:b7:c8:ae:
f2:4c:4d:7f:8e:cf:f0:44:1d:e0:43:24:d5:1c:6d:34:ca:35:
9e:10:1a:8b:18:3f:91:96:bb:fd:91:5f:d4:56:be:a0:25:2e:
17:ba:b6:4a:c4:cd:95:65:e5:eb:b4:c7:4b:5b:25:a3:25:9b:
e7:3f:54:21:19:7d:a1:6f:f0:d8:20:f6:c1:82:94:c5:dc:2f:
2b:fb:b5:62:f9:4a:a3:0e:6d:26:64:c8:e7:69:3a:31:a4:bb:
58:b0:32:72:39:79:cd:da:c6:7f:c5:d4:d8:12:ba:c6:36:3e:
99:0a:11:fe:fa:80:98:ae:17:e3:3f:fc:3b:15:e7:50:95:46:
4f:b5:bd:bf:a5:3d:b6:28:d2:35:27:5f:34:0b:92:d8:49:68:
74:47:10:12:07:36:72:82:89:3e:1a:e5:a3:26:fe:52:7f:68:
79:96:04:21:cd:af:58:1a:45:6f:76:4e:25:5b:06:70:32:f2:
38:72:08:b7:69:ee:a2:8a:7b:b3:93:2f:96:6b:e7:cc:72:b5:
3f:f9:05:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:09:32 2025 by rpki-client