Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft
File: oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft (raw, json)
Hash identifier: 1tMDuf8/Fol3s39t5w8ReA8yBapzUgC9JfxViNFVTW0=
Subject key identifier: B1:63:FF:1D:95:B7:8D:71:C9:09:6D:F1:CB:9E:56:A0:38:F3:2F:0E
Authority key identifier: A2:23:D1:53:44:C0:2A:55:1E:63:F8:31:C6:04:F8:0D:BE:C4:BA:10
Certificate issuer: /CN=a223d15344c02a551e63f831c604f80dbec4ba10
Certificate serial: 0199FDDA541BCBCF0783DD23F63193CF224F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft
Manifest number: 0B38
Signing time: Sun 19 Oct 2025 19:02:47 +0000
Manifest this update: Sun 19 Oct 2025 19:02:47 +0000
Manifest next update: Mon 20 Oct 2025 19:02:47 +0000
Files and hashes: 1: oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl (hash: vA2HjvlfBMEyfHAwl1RiyaoppFZvnM12QIHfFki/bEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:54:1b:cb:cf:07:83:dd:23:f6:31:93:cf:22:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a223d15344c02a551e63f831c604f80dbec4ba10
Validity
Not Before: Oct 19 19:02:47 2025 GMT
Not After : Oct 20 19:02:47 2025 GMT
Subject: CN=b163ff1d95b78d71c9096df1cb9e56a038f32f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e9:03:32:97:7a:ab:6a:cc:25:35:e4:15:f9:
10:77:73:cc:43:5b:eb:34:f0:b7:f7:a3:23:f5:22:
cd:f9:ee:9a:24:50:de:42:5c:4f:24:03:23:da:a6:
b3:e5:66:c3:89:ec:1a:52:e4:b3:6f:e1:29:58:a7:
26:53:7c:29:e4:68:3a:1b:40:c3:d0:77:56:e4:76:
c3:be:de:d1:73:e7:e0:f3:75:2b:43:1d:53:15:59:
61:3c:48:1e:dd:33:6f:bc:2b:f4:b5:04:47:9d:65:
2d:ff:41:c6:00:0f:26:46:e8:e5:3d:c1:d4:1d:b7:
86:47:a8:6f:aa:fc:ae:83:ea:70:2e:ae:65:7d:39:
9e:6b:a0:a8:e8:90:0e:45:f4:9a:76:3b:33:b2:40:
43:1d:e7:89:2f:39:d0:46:89:8f:1f:20:5f:56:e6:
5b:b4:26:e7:27:9a:94:cd:98:e1:dc:7a:09:56:30:
46:6e:f4:c0:a0:c4:af:e5:c7:06:18:e6:9b:89:86:
4c:ce:a2:e0:0e:93:fb:36:d4:ae:71:24:a1:20:6c:
5e:31:f0:8a:64:e7:8a:95:2d:df:8e:45:4b:70:6b:
7e:53:e8:ec:8b:9d:3b:cf:b3:2b:8b:5d:b6:98:db:
0e:c9:f2:f5:c9:3d:0d:8a:dd:79:c8:93:44:4c:cd:
85:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:63:FF:1D:95:B7:8D:71:C9:09:6D:F1:CB:9E:56:A0:38:F3:2F:0E
X509v3 Authority Key Identifier:
keyid:A2:23:D1:53:44:C0:2A:55:1E:63:F8:31:C6:04:F8:0D:BE:C4:BA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:cc:1b:b4:b2:f2:1f:80:24:61:bf:c1:dd:15:f6:5e:3a:60:
c1:ea:ad:c8:e5:56:e8:ac:60:c3:6f:23:2e:ee:a9:c8:7d:71:
5c:52:5c:c0:12:79:6a:06:93:88:a2:bb:4a:4b:3a:80:6f:c6:
59:27:25:7d:0e:3f:92:20:3c:bc:3c:67:b6:19:6c:fa:58:1c:
f9:f5:7e:86:a5:94:14:eb:01:d5:f8:c4:38:a4:ef:db:91:7e:
74:cb:a5:4c:04:86:d3:2d:ea:47:f3:a4:88:5f:47:3e:12:a3:
34:c2:d4:50:27:d0:a2:78:bf:f6:92:a3:ba:2d:57:3d:8f:a1:
f7:37:af:dd:2b:fe:58:a1:d5:6a:08:1d:f3:d5:ba:ae:e0:3c:
05:2d:0e:42:1b:b6:de:54:71:52:87:6e:7e:3c:5c:0c:3c:bf:
9d:3c:69:9a:a3:b0:c5:22:61:65:67:f2:92:49:b0:b3:31:d3:
70:cc:55:49:ab:87:00:69:81:92:53:63:80:e8:00:58:68:70:
59:f7:74:22:ba:f6:1b:6f:b5:32:e6:61:ec:6b:bc:5f:c6:92:
b1:ce:3e:84:eb:99:91:f5:32:77:66:a4:b6:b8:cd:9f:de:b8:
d7:b8:72:49:52:9b:6c:32:ff:f9:ec:44:12:e2:ee:3d:c2:e8:
de:f1:18:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92lQby88Hg90j9jGTzyJPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyMjNkMTUzNDRjMDJhNTUxZTYzZjgzMWM2MDRmODBkYmVj
NGJhMTAwHhcNMjUxMDE5MTkwMjQ3WhcNMjUxMDIwMTkwMjQ3WjAzMTEwLwYDVQQD
EyhiMTYzZmYxZDk1Yjc4ZDcxYzkwOTZkZjFjYjllNTZhMDM4ZjMyZjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+kDMpd6q2rMJTXkFfkQd3PMQ1vr
NPC396Mj9SLN+e6aJFDeQlxPJAMj2qaz5WbDiewaUuSzb+EpWKcmU3wp5Gg6G0DD
0HdW5HbDvt7Rc+fg83UrQx1TFVlhPEge3TNvvCv0tQRHnWUt/0HGAA8mRujlPcHU
HbeGR6hvqvyug+pwLq5lfTmea6Co6JAORfSadjszskBDHeeJLznQRomPHyBfVuZb
tCbnJ5qUzZjh3HoJVjBGbvTAoMSv5ccGGOabiYZMzqLgDpP7NtSucSShIGxeMfCK
ZOeKlS3fjkVLcGt+U+jsi507z7Mri122mNsOyfL1yT0Nit15yJNETM2FBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLFj/x2Vt41xyQlt8cueVqA48y8OMB8GA1UdIwQY
MBaAFKIj0VNEwCpVHmP4McYE+A2+xLoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2lQUlUwVEFLbFVlWV9neHhnVDREYjdFdWhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84YzJmYWUtYmQ0OS00YmY3LWJhYTct
ODA5YTJkN2ZmMzQ4LzEvb2lQUlUwVEFLbFVlWV9neHhnVDREYjdFdWhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84YzJmYWUtYmQ0OS00YmY3LWJhYTctODA5YTJkN2ZmMzQ4
LzEvb2lQUlUwVEFLbFVlWV9neHhnVDREYjdFdWhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIswbtLLy
H4AkYb/B3RX2XjpgweqtyOVW6Kxgw28jLu6pyH1xXFJcwBJ5agaTiKK7Sks6gG/G
WSclfQ4/kiA8vDxnthls+lgc+fV+hqWUFOsB1fjEOKTv25F+dMulTASG0y3qR/Ok
iF9HPhKjNMLUUCfQoni/9pKjui1XPY+h9zev3Sv+WKHVaggd89W6ruA8BS0OQhu2
3lRxUodufjxcDDy/nTxpmqOwxSJhZWfykkmwszHTcMxVSauHAGmBklNjgOgAWGhw
Wfd0Irr2G2+1MuZh7Gu8X8aSsc4+hOuZkfUyd2aktrjNn96417hySVKbbDL/+exE
EuLuPcLo3vEYwQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:51 2025 by rpki-client