Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
File: OWpY9F0OyAFfoyauWP9YAzKJv50.mft (raw, json)
Hash identifier: VCJk92P5/CGpr1Z/GlvommrEbEtBAaVC5ZTtOp/B5gw=
Subject key identifier: 75:8E:A8:7B:6D:8E:03:10:57:46:6D:C4:B6:E2:E0:65:A7:C6:8D:C0
Authority key identifier: 39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
Certificate issuer: /CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Certificate serial: 0198D5156E72A275CA3D4534431E07229B4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 04:00:08 +0000
Manifest this update: Sat 23 Aug 2025 04:00:08 +0000
Manifest next update: Sun 24 Aug 2025 04:00:08 +0000
Files and hashes: 1: OWpY9F0OyAFfoyauWP9YAzKJv50.crl (hash: QLyk9i6j140uybvutza6pbWe8/cz5scMO9i67okT7XU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:6e:72:a2:75:ca:3d:45:34:43:1e:07:22:9b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Validity
Not Before: Aug 23 04:00:08 2025 GMT
Not After : Aug 24 04:00:08 2025 GMT
Subject: CN=758ea87b6d8e031057466dc4b6e2e065a7c68dc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:15:b8:4c:d2:56:50:5e:7c:4c:0d:89:bb:e4:
0d:3d:57:9b:f2:d9:6d:c6:93:47:ca:d8:6f:de:ae:
1a:fd:af:f4:6e:59:84:4a:e3:0f:71:ed:6d:86:cb:
3e:64:0e:4e:35:92:67:38:75:0d:4b:99:7d:2d:e2:
d6:ba:35:b0:66:eb:2b:17:e3:e0:6f:04:39:8e:5b:
b3:e7:68:58:5e:cb:5e:84:6d:1c:6b:01:5b:09:65:
7d:78:45:a0:07:18:d3:7e:48:99:07:e6:d3:4b:4e:
83:2d:31:b8:17:88:f6:93:76:29:7b:63:1b:25:c3:
27:ee:ad:da:65:6f:18:8e:0a:19:4f:2b:9a:15:69:
25:ca:05:77:e0:8c:86:2d:86:e6:22:41:38:31:f0:
75:19:63:cd:a2:2f:b7:f9:94:89:d1:38:2e:cf:33:
6a:30:f7:2e:a2:ff:40:6a:4e:9b:c6:f2:b8:fd:ed:
0c:c1:7e:c9:31:be:49:63:30:d6:2e:d9:13:d3:47:
73:94:ea:3b:22:84:7b:77:a6:e6:9f:f8:44:8d:00:
91:b9:9f:9e:51:75:b8:45:94:2d:5f:9f:d7:70:bd:
bc:36:f4:a4:08:f4:79:17:a5:34:b2:8f:de:6f:25:
ee:28:eb:7b:a7:d2:bf:85:8b:cc:4e:fe:41:c8:50:
93:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:8E:A8:7B:6D:8E:03:10:57:46:6D:C4:B6:E2:E0:65:A7:C6:8D:C0
X509v3 Authority Key Identifier:
keyid:39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:98:1c:d7:b3:45:ec:72:a8:96:4c:63:b4:72:69:0c:3a:de:
bf:c1:b2:d9:d1:d7:19:8f:81:65:20:4a:6d:c6:20:10:bb:24:
6c:9c:36:63:40:1e:ec:1b:90:cd:1a:70:46:5e:bf:37:5f:e3:
65:7a:8e:b9:7d:2e:5b:a2:7b:04:13:28:32:87:a7:c3:75:d8:
f5:80:9a:39:f8:45:f8:42:6c:3e:24:52:8b:07:38:08:2c:1d:
55:23:02:72:76:81:58:68:03:e1:1e:0b:ab:5f:19:10:dd:57:
5c:85:d9:33:d8:05:9f:61:52:87:ff:8e:8c:e6:9f:1d:90:96:
7e:3f:81:a8:e2:05:e6:2b:8f:fa:89:34:93:59:64:fb:de:20:
be:55:43:d0:9a:e4:25:53:75:56:e7:8c:7d:65:f5:44:db:02:
69:30:a1:06:59:1c:04:f2:c4:02:d0:de:76:01:54:6e:86:f1:
ea:7e:63:a2:3d:f4:d5:b9:b7:5f:ea:3a:47:9a:42:b9:fe:e2:
1b:d8:e2:45:68:63:28:4a:86:3e:03:aa:d8:03:1f:32:43:c6:
cc:9d:34:eb:61:ed:c5:5f:11:54:5e:84:00:0a:69:22:cb:34:
aa:67:62:c5:8c:bf:bc:ab:11:cd:e1:8c:37:be:6a:ec:73:f6:
3d:aa:9d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:32:21 2025 by rpki-client