Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.mft
File: kOphmXVeYwDwQCwqCO1DegpzAB4.mft (raw, json)
Hash identifier: bHOe9y77HiWtVg8fidoddxaQBDnA8V28kWNbvcTTPw0=
Subject key identifier: E2:4D:0B:78:93:39:DF:E4:70:4F:6D:74:35:94:7F:C6:34:A6:CA:DC
Authority key identifier: 90:EA:61:99:75:5E:63:00:F0:40:2C:2A:08:ED:43:7A:0A:73:00:1E
Certificate issuer: /CN=90ea6199755e6300f0402c2a08ed437a0a73001e
Certificate serial: 0198D4E01AD4FF8D603E3FC39B81ED9B570D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kOphmXVeYwDwQCwqCO1DegpzAB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 03:01:53 +0000
Manifest this update: Sat 23 Aug 2025 03:01:53 +0000
Manifest next update: Sun 24 Aug 2025 03:01:53 +0000
Files and hashes: 1: kOphmXVeYwDwQCwqCO1DegpzAB4.crl (hash: q+x/jVt2QDj2wsjIEaVbG07z2PS5KOZxjhlLwEZjKj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kOphmXVeYwDwQCwqCO1DegpzAB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:1a:d4:ff:8d:60:3e:3f:c3:9b:81:ed:9b:57:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ea6199755e6300f0402c2a08ed437a0a73001e
Validity
Not Before: Aug 23 03:01:53 2025 GMT
Not After : Aug 24 03:01:53 2025 GMT
Subject: CN=e24d0b789339dfe4704f6d7435947fc634a6cadc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:93:06:73:a0:46:50:e8:4a:8d:99:d2:ec:8b:
97:59:9b:f2:17:da:85:8e:a2:20:a8:74:34:9b:35:
75:a8:de:24:02:02:b4:c7:f0:15:41:4d:7a:c4:53:
cd:5a:e3:f2:05:61:76:8a:3f:f5:d0:39:be:1f:33:
60:67:7e:58:26:eb:79:98:d8:5e:ed:4f:6b:26:57:
a1:00:3e:cb:c3:9e:f5:02:f6:8f:4d:d0:c1:41:2c:
b4:12:8e:87:c4:84:2c:7a:d4:51:7f:39:76:08:c4:
84:4f:16:92:57:98:86:11:7f:dc:01:2a:1a:82:84:
78:d2:ae:a6:d8:4f:52:23:30:32:2e:bb:44:78:ac:
77:65:b6:21:39:e8:e5:08:3b:c6:e1:d5:07:17:9d:
64:28:5a:ea:17:71:dc:05:d7:95:64:5a:c0:ae:5f:
02:20:24:28:3f:6d:22:35:bc:4a:c3:76:45:ae:1f:
9e:2c:15:6f:cc:7c:68:67:55:fd:19:18:63:27:f7:
e9:0d:c7:49:06:2a:86:ef:72:8f:86:09:1b:0e:bf:
eb:71:b4:c7:42:0f:10:51:77:3b:5f:0d:ea:9e:88:
95:12:27:e5:d2:fc:5a:17:41:c0:aa:53:e1:1c:b9:
8c:9f:f9:66:f5:c4:7f:6b:ef:c4:3d:1c:ee:d8:92:
1d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:4D:0B:78:93:39:DF:E4:70:4F:6D:74:35:94:7F:C6:34:A6:CA:DC
X509v3 Authority Key Identifier:
keyid:90:EA:61:99:75:5E:63:00:F0:40:2C:2A:08:ED:43:7A:0A:73:00:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kOphmXVeYwDwQCwqCO1DegpzAB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6d2a8f-cf90-46fb-8259-c39808d03a18/1/kOphmXVeYwDwQCwqCO1DegpzAB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6b:52:d4:7b:67:5c:67:65:b1:fe:e8:02:0e:c5:07:4c:96:
be:07:60:44:71:26:d0:ce:8a:2d:82:cb:a8:e9:5c:33:a0:8d:
cb:0e:b2:09:47:a5:60:68:d0:90:51:67:b6:96:45:65:c2:38:
04:23:ce:b0:c9:ba:76:31:52:72:61:25:4a:94:18:28:ab:4a:
e8:bc:2b:b1:14:b3:ac:ee:0d:c4:77:a5:2f:b3:59:aa:d4:68:
0f:6a:2a:62:8f:79:fd:98:2f:e5:9e:4d:03:6f:4e:af:04:b2:
87:e0:a2:de:2d:38:9a:a5:5e:71:ee:e4:2f:c4:be:f4:ff:b0:
5a:e8:61:f0:ee:83:4a:d9:9a:93:11:bd:df:62:36:84:a0:f7:
05:35:02:26:ab:42:2c:c0:c4:f8:67:62:f8:a8:5e:97:e5:85:
9d:aa:86:2b:dc:da:0d:92:85:2a:a1:d9:5c:52:14:3a:41:36:
2d:5a:c0:46:7e:e5:49:9c:b1:43:45:df:18:b5:9a:e1:43:58:
6d:d9:fb:55:77:11:9a:68:f9:b0:75:39:c2:26:b5:47:96:a4:
15:63:92:61:43:62:18:b7:28:c0:74:56:57:cb:5c:d7:45:1e:
82:ab:89:8c:84:46:82:43:ab:a8:a2:2a:c4:de:3d:c7:c6:a9:
6d:1b:19:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:18:19 2025 by rpki-client