Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
File: OQGfnAqym0Lg2xLprIezJ7_FWvk.mft (raw, json)
Hash identifier: c6E8uw8bYkFNIFZEmfvKwkOlerTEKj5hxcFe9gSG54g=
Subject key identifier: 94:C3:B4:CF:22:9E:39:79:1B:60:9E:6F:96:15:97:02:B7:E9:94:31
Authority key identifier: 39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
Certificate issuer: /CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Certificate serial: 0198D472A2D4C9CAABA0D2705684D65162FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 01:02:19 +0000
Manifest this update: Sat 23 Aug 2025 01:02:19 +0000
Manifest next update: Sun 24 Aug 2025 01:02:19 +0000
Files and hashes: 1: OQGfnAqym0Lg2xLprIezJ7_FWvk.crl (hash: xIDsKV79sVkIIBoZ7F6dv96MahxSnKirzfYctyQKrzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:a2:d4:c9:ca:ab:a0:d2:70:56:84:d6:51:62:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Validity
Not Before: Aug 23 01:02:19 2025 GMT
Not After : Aug 24 01:02:19 2025 GMT
Subject: CN=94c3b4cf229e39791b609e6f96159702b7e99431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:16:08:49:c2:c8:94:fa:c1:e3:6f:ea:c6:a5:
ac:45:20:6e:6b:d7:5d:c5:b0:67:38:5f:63:72:aa:
fd:23:ee:8e:fa:d2:48:ca:cf:b5:ae:ca:f7:53:c5:
ca:de:a9:d6:50:f7:a1:53:50:ab:4c:e6:86:cd:61:
78:d0:3e:2f:a6:13:b7:6d:4c:65:0f:bb:13:97:1e:
1b:7f:79:1f:bf:e2:17:2f:4a:6c:05:60:23:30:f4:
86:6d:44:83:b9:a3:28:3d:d5:5e:20:17:17:8a:c8:
f4:3a:fe:5a:bf:e8:37:6f:34:bf:1b:5d:69:0b:b4:
f1:ba:4e:36:a2:fe:f1:c8:95:9a:61:c4:05:12:07:
73:e6:7d:0d:a4:05:d1:1b:e3:f9:65:32:f7:d5:43:
f6:d5:86:52:7b:16:0b:1b:63:44:3a:9f:b7:27:c5:
bd:fa:01:4e:3a:0b:db:b5:aa:39:1d:1b:86:3a:4b:
59:02:2e:69:06:18:7f:06:e4:a8:ef:81:9c:f2:10:
ca:75:a5:5a:ce:c1:d5:e4:b2:bc:04:1e:63:c3:df:
3f:93:32:ec:80:f8:ef:ec:84:73:cc:1d:6d:54:02:
0a:df:1d:fb:e0:39:82:08:b0:43:af:2d:6b:f4:05:
c0:9a:af:02:91:b5:0b:e4:80:45:49:ec:1d:bd:02:
89:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C3:B4:CF:22:9E:39:79:1B:60:9E:6F:96:15:97:02:B7:E9:94:31
X509v3 Authority Key Identifier:
keyid:39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:94:44:f5:5c:22:c6:6a:c1:f7:b6:90:a2:37:6d:62:d8:3c:
5d:7b:57:36:56:98:2d:72:fa:83:78:bb:07:0c:e6:3e:49:0e:
72:5b:4c:7c:fa:e6:c1:98:5f:c7:13:32:b8:45:9d:b4:cc:22:
fb:86:22:a3:67:b4:c8:8b:b4:f4:f2:40:8c:2b:d3:61:b8:d3:
f9:52:9c:35:4c:81:a3:7b:d8:43:6a:55:2f:f5:c4:de:29:46:
3a:ed:ea:22:d9:e2:36:26:ac:76:69:6f:d9:39:ca:e5:72:07:
79:81:bf:8c:9e:f7:12:6b:c6:41:84:3b:ff:b8:bc:ba:3d:b8:
7b:91:cb:9c:b2:40:c4:9a:97:77:66:53:74:f4:4c:cf:2c:7e:
c1:b3:34:53:78:44:82:97:69:60:1f:52:d3:e9:c5:eb:2b:99:
89:00:f0:5f:ff:51:24:37:26:6c:9f:cc:c8:10:b6:01:44:13:
74:22:51:05:92:a2:3b:7a:1b:45:29:37:9c:5c:ca:3e:2d:f3:
f7:85:cf:90:82:9f:af:51:44:34:ea:c6:ca:50:0d:54:9f:25:
43:a9:95:4e:4d:89:7f:52:90:d4:ae:ab:53:5c:88:11:83:8b:
fe:49:cf:cc:c9:f8:9f:a1:ac:56:09:ef:ca:55:7d:47:36:b9:
e5:af:9b:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:13:12 2025 by rpki-client