Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
File: OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft (raw, json)
Hash identifier: XzBzwLJZFwNxXP198V7+cu4vsKtIMRAn5rDynWQpdm4=
Subject key identifier: A2:10:CE:C3:06:A6:79:2B:46:3B:5B:86:1C:62:E3:5A:1C:7A:B0:A8
Authority key identifier: 3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
Certificate issuer: /CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Certificate serial: 0199FD3437C47439492A3BA128094C5805FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
Manifest number: 0715
Signing time: Sun 19 Oct 2025 16:01:21 +0000
Manifest this update: Sun 19 Oct 2025 16:01:21 +0000
Manifest next update: Mon 20 Oct 2025 16:01:21 +0000
Files and hashes: 1: OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl (hash: Ni1QTqeU5UGLd5iK3YOMZ8bOuM4JEkn7XGZkvmIpjkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:37:c4:74:39:49:2a:3b:a1:28:09:4c:58:05:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Validity
Not Before: Oct 19 16:01:21 2025 GMT
Not After : Oct 20 16:01:21 2025 GMT
Subject: CN=a210cec306a6792b463b5b861c62e35a1c7ab0a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ca:41:4d:47:05:02:92:bb:91:ed:30:16:50:
40:c6:b5:7a:66:45:2f:2a:48:03:98:6e:8e:b2:6a:
eb:34:5d:eb:00:4b:34:4a:2e:da:f8:bf:3e:62:a3:
9a:28:13:64:1b:ee:18:91:9b:7d:a4:f2:e5:cc:dc:
d0:c0:f0:95:d4:38:9a:5f:ac:f1:f1:f5:57:de:8d:
60:40:a8:89:54:34:f9:b3:2f:8e:2b:93:36:37:fc:
56:66:df:79:09:05:f0:5f:27:1a:a8:3e:b0:f6:e0:
3f:cf:cc:2a:8c:82:6c:99:dd:5d:93:4e:59:c4:dd:
a2:93:38:3d:ed:f2:8a:88:7f:e3:91:f3:9d:28:ed:
fb:46:59:21:dd:ea:70:ad:17:7e:33:28:1e:a1:b1:
41:d6:a8:8f:ff:6b:a7:08:52:4a:38:b5:68:fb:ba:
70:f0:69:70:28:06:d4:89:43:f9:0f:89:63:4b:ee:
ac:35:39:e9:f9:d8:dc:98:f1:4d:f1:e8:15:37:af:
ff:76:ba:95:91:eb:a8:26:5a:33:b0:4e:24:ad:2d:
07:05:2a:8c:cd:46:82:07:3b:a3:02:21:ae:2c:9d:
3a:39:d8:47:36:ef:31:9b:48:cc:54:3a:01:4c:03:
03:32:3c:ee:da:6b:8c:96:8e:e2:4e:55:89:a4:f5:
de:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:10:CE:C3:06:A6:79:2B:46:3B:5B:86:1C:62:E3:5A:1C:7A:B0:A8
X509v3 Authority Key Identifier:
keyid:3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:51:d0:e2:90:d5:0c:bb:fb:51:cc:21:c7:3f:bb:bf:8d:6f:
1a:47:88:e2:a3:c5:85:1b:8d:a0:01:24:fe:11:a7:69:f8:99:
e7:6d:2c:bb:a5:8c:28:21:5b:14:60:53:ff:ab:3e:e7:c8:42:
be:0f:16:3f:42:58:82:7a:62:72:e0:93:73:9d:0a:d6:43:6a:
e1:41:d2:85:08:24:29:8c:f2:33:17:ea:7b:20:e2:14:af:65:
e5:80:80:cf:94:1c:a0:c4:20:9b:da:c5:8a:05:8e:e0:45:2d:
01:a8:86:f0:79:a8:ee:8f:fd:3f:64:f4:3f:c6:87:e8:89:ab:
d3:ea:5e:d7:a4:67:a2:fb:fc:57:de:2e:52:99:cc:f8:41:d2:
57:dd:44:c1:30:ae:77:c6:d7:45:c9:6c:eb:91:51:69:fc:5b:
b5:50:f8:eb:33:bf:b8:9b:d7:8e:8d:d0:fd:d1:69:3c:55:31:
df:f5:6b:a0:4c:cf:b7:05:8f:26:75:cd:a8:de:1b:f4:fa:5b:
43:66:68:24:a4:5c:e2:d3:e9:b5:07:ab:e5:a9:90:91:4f:66:
51:bf:d3:86:5d:04:c5:10:71:49:3d:e1:6a:33:75:c6:e1:1d:
f2:ba:49:89:e3:6b:56:de:ba:8f:38:88:fd:18:c4:ee:69:40:
df:94:68:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:32:03 2025 by rpki-client