Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
File: Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft (raw, json)
Hash identifier: Yh5X2r2VYf4nSNeFTXOPTbqLJz9hjLoQ8hCNkq9r/KM=
Subject key identifier: CA:F7:E4:49:3B:70:51:7E:C7:E6:59:27:03:34:58:6F:69:B0:9B:34
Authority key identifier: 39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
Certificate issuer: /CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Certificate serial: 0198D4732543AF9CF1A0DA61208EA53CD7BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 01:02:52 +0000
Manifest this update: Sat 23 Aug 2025 01:02:52 +0000
Manifest next update: Sun 24 Aug 2025 01:02:52 +0000
Files and hashes: 1: Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl (hash: wKa1unTeiEjlM88ycE2QfMhSPY4I+/ujSILJlDNfSUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:25:43:af:9c:f1:a0:da:61:20:8e:a5:3c:d7:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39cd1d5bb88958c69cbdde90a9e056b48c4fabf8
Validity
Not Before: Aug 23 01:02:52 2025 GMT
Not After : Aug 24 01:02:52 2025 GMT
Subject: CN=caf7e4493b70517ec7e659270334586f69b09b34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:35:d8:c0:4f:24:be:08:ce:fd:7a:6a:ea:d9:
be:de:b3:ed:10:1e:aa:b9:57:fe:dd:f5:f4:d7:e4:
8e:3e:d2:0f:77:f6:d0:5c:b4:7d:19:99:7c:5b:87:
c4:45:bc:29:c9:ea:3b:ef:08:70:df:5c:a8:a4:1b:
ab:6d:c9:2e:19:f7:ae:4c:23:32:fd:98:7a:d7:79:
a9:ed:71:a5:3a:78:7b:c1:d3:f9:07:19:bc:3c:d8:
96:bf:0c:81:50:2a:eb:96:fb:60:38:c1:d0:2d:88:
61:51:4a:71:c7:36:f2:a6:9b:4d:1e:e8:5f:9e:9d:
cb:1b:56:f3:6e:96:c7:9c:79:c0:61:7f:77:da:e2:
39:89:a7:6e:68:64:fb:a0:e0:dd:f3:24:fa:ac:cd:
61:82:8e:19:81:e0:92:f8:36:53:a3:22:20:b0:79:
db:9c:82:85:d9:91:77:3e:f0:c7:7b:3b:13:a1:47:
6b:5b:df:d0:7f:e1:08:1c:14:6b:68:ff:ea:9e:19:
6b:e8:79:e2:46:ed:06:72:f2:d7:09:86:08:2f:fd:
94:ad:c9:b6:9a:1d:7c:9a:06:9c:89:3d:8c:0e:3b:
d2:df:0e:74:56:e9:9e:e3:05:17:5f:2e:97:45:2c:
e0:75:15:e9:f9:0c:31:f8:79:a6:74:40:7f:31:73:
af:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F7:E4:49:3B:70:51:7E:C7:E6:59:27:03:34:58:6F:69:B0:9B:34
X509v3 Authority Key Identifier:
keyid:39:CD:1D:5B:B8:89:58:C6:9C:BD:DE:90:A9:E0:56:B4:8C:4F:AB:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oc0dW7iJWMacvd6QqeBWtIxPq_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/57ac7f-f5c8-40ff-825c-46a85a28e749/1/Oc0dW7iJWMacvd6QqeBWtIxPq_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:f4:2e:04:ff:c4:1f:08:58:fd:f9:49:4d:ec:91:56:a3:6f:
f9:cd:db:20:91:c1:ea:98:71:5f:2b:50:c6:bc:e0:89:67:c6:
50:06:74:fa:54:28:a5:b8:5f:f7:52:86:bf:a3:6c:4d:3c:02:
60:db:53:5b:82:77:35:86:67:bc:8e:21:55:b9:fb:74:f8:fa:
c4:5a:0f:e2:bb:6f:0f:03:ed:92:8f:2d:da:0b:bb:c5:59:0d:
78:2e:c3:75:c4:01:58:f5:d8:8f:2f:6f:37:a3:66:1b:f2:e2:
4d:c8:75:2c:d3:44:f1:ae:24:84:33:75:ea:01:e0:6c:a5:02:
0a:38:66:26:2a:a9:2c:b1:2b:8a:2b:3b:1d:c7:f8:ea:79:2c:
2e:a5:7b:18:40:a6:ec:bb:93:20:03:f2:35:eb:43:26:2c:94:
ff:8e:a9:8f:a1:7c:13:38:12:83:64:09:c7:b8:2b:75:d1:ac:
74:32:28:6f:76:2c:ed:83:66:bc:77:4d:bd:f6:e9:59:44:36:
d1:12:a9:c3:26:41:09:e8:1f:b0:91:28:b3:ee:c4:7a:5e:2a:
9a:be:e7:a0:7f:5a:1e:51:79:63:25:1e:8e:fd:78:fc:17:a8:
ed:bb:18:eb:60:b4:ec:42:38:8a:7f:12:5c:b7:a8:99:db:b3:
b1:e5:77:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:13:40 2025 by rpki-client