Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft
File: oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft (raw, json)
Hash identifier: fr6VRiQG1/v82rNw4+4MmX/xSv8jsWMf43VwE+anSg0=
Subject key identifier: E9:9F:C2:17:EC:E5:79:C0:1D:E2:70:F0:DB:9B:4D:D9:89:B2:CD:3C
Authority key identifier: A2:23:D1:53:44:C0:2A:55:1E:63:F8:31:C6:04:F8:0D:BE:C4:BA:10
Certificate issuer: /CN=a223d15344c02a551e63f831c604f80dbec4ba10
Certificate serial: 0198DA3DB7724712D5BA79F4BB45510B2563
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft
Manifest number: 0AA1
Signing time: Sun 24 Aug 2025 04:02:14 +0000
Manifest this update: Sun 24 Aug 2025 04:02:14 +0000
Manifest next update: Mon 25 Aug 2025 04:02:14 +0000
Files and hashes: 1: oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl (hash: 5UTKEhlZaXp49TKlUB0lXQbWS1wXQj19Xg0JzV4xv5Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 23:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:da:3d:b7:72:47:12:d5:ba:79:f4:bb:45:51:0b:25:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a223d15344c02a551e63f831c604f80dbec4ba10
Validity
Not Before: Aug 24 04:02:14 2025 GMT
Not After : Aug 25 04:02:14 2025 GMT
Subject: CN=e99fc217ece579c01de270f0db9b4dd989b2cd3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c2:fe:30:b4:ea:ce:d0:a0:3f:11:5c:8f:d4:
70:cb:8f:e8:b7:1c:72:8d:bb:5b:cd:fa:4c:7d:6a:
42:f8:69:0e:2e:c8:f0:fd:a8:cf:76:03:c9:be:6c:
25:28:c2:aa:61:54:a0:51:9c:24:f3:15:4f:7f:1e:
fb:55:fe:d4:4c:70:99:15:58:8b:9f:89:73:35:99:
1e:df:41:7f:4d:4c:0c:7e:86:98:b7:36:08:f2:bb:
98:53:93:ff:be:11:30:4f:3f:82:a7:39:70:63:63:
f6:b7:1c:de:22:14:e4:3d:ea:66:35:67:2a:52:78:
e5:d8:cc:d3:8f:1c:bf:fb:f7:c8:73:62:f5:79:b6:
12:cf:c5:d5:c0:7a:8c:c3:1a:0f:1a:ad:ee:ba:cb:
4d:de:1f:5d:b7:fa:a2:fb:28:96:0a:7b:b2:bd:3d:
2e:9a:d6:47:53:98:95:d3:6c:01:86:4c:15:65:b9:
83:f9:55:ae:7e:35:ad:aa:63:87:55:1b:cb:2c:d3:
f5:2a:85:5d:17:b1:ff:ba:c7:dd:f7:ac:a4:b6:c7:
48:a4:b9:bd:41:84:23:a5:d2:70:a0:af:4b:9b:9d:
e2:3a:6b:c0:87:79:d5:8c:51:c3:94:56:c2:b4:b0:
ae:06:28:cc:cd:4a:a0:8c:71:0e:e6:e1:7e:6c:bb:
13:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:9F:C2:17:EC:E5:79:C0:1D:E2:70:F0:DB:9B:4D:D9:89:B2:CD:3C
X509v3 Authority Key Identifier:
keyid:A2:23:D1:53:44:C0:2A:55:1E:63:F8:31:C6:04:F8:0D:BE:C4:BA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiPRU0TAKlUeY_gxxgT4Db7EuhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8c2fae-bd49-4bf7-baa7-809a2d7ff348/1/oiPRU0TAKlUeY_gxxgT4Db7EuhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:d4:ed:2c:fd:42:62:7a:85:3a:dd:0c:a2:00:82:85:cf:6c:
86:0f:e4:94:40:dd:3d:1e:7a:3e:09:55:ed:ef:ef:ab:bd:f9:
3e:df:13:bc:ec:de:a2:11:0e:41:1b:d2:ef:dd:77:45:56:2a:
c7:3d:a3:49:b2:f0:d7:8a:f5:43:24:08:27:81:c1:df:47:c5:
ef:fb:ce:bf:7c:ba:a1:1a:79:36:c3:aa:66:30:47:a2:fe:90:
ad:16:cb:98:2c:6b:c1:d4:72:27:74:3b:1e:6d:86:1b:ce:a7:
47:e4:db:fd:a1:a8:95:7e:59:17:22:de:ad:78:bd:e8:21:23:
07:dd:e2:14:5b:16:1b:42:d4:5f:e1:72:44:18:43:1b:b6:68:
5b:e1:b8:b2:9c:9c:37:7b:0e:52:f1:80:36:d6:1b:e3:16:aa:
32:5f:16:d5:ba:42:f2:ba:c6:1c:41:d5:3f:76:d3:6b:14:ce:
fe:00:5a:ad:c2:c5:6f:e5:ca:76:7f:22:9f:d8:1b:5d:6e:82:
9d:d8:a5:f2:ab:b4:d6:b5:9c:e9:ef:30:f6:fd:f3:64:e9:3e:
fc:97:7a:ad:d5:a1:e5:bd:0a:d3:c2:bb:28:a7:79:ef:5b:84:
bc:4e:2f:56:2d:cb:ea:be:10:52:4d:56:86:9f:25:5a:55:33:
a9:9a:45:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 06:26:29 2025 by rpki-client