Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
File: OQGfnAqym0Lg2xLprIezJ7_FWvk.mft (raw, json)
Hash identifier: Ycm5X8vpww7jskWwcBLR2Nfa7L2sZh2CUY9hVF/8IOw=
Subject key identifier: 8B:B5:D2:C8:76:D1:29:AC:1F:1D:7F:36:6A:AE:BD:FB:E3:DC:C8:26
Authority key identifier: 39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
Certificate issuer: /CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Certificate serial: 0199FBEC4E897BF498F22A2EAF74884ED01C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 10:03:11 +0000
Manifest this update: Sun 19 Oct 2025 10:03:11 +0000
Manifest next update: Mon 20 Oct 2025 10:03:11 +0000
Files and hashes: 1: OQGfnAqym0Lg2xLprIezJ7_FWvk.crl (hash: SosT4etvCoZ65HBjpLI5gQCldakSVWoc9tzSh+B+bFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:4e:89:7b:f4:98:f2:2a:2e:af:74:88:4e:d0:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39019f9c0ab29b42e0db12e9ac87b327bfc55af9
Validity
Not Before: Oct 19 10:03:11 2025 GMT
Not After : Oct 20 10:03:11 2025 GMT
Subject: CN=8bb5d2c876d129ac1f1d7f366aaebdfbe3dcc826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e7:80:d3:39:fe:f0:ef:f8:a3:7f:b6:11:de:
ca:6c:27:d4:f3:73:80:6f:86:3b:a5:95:53:a0:ef:
9b:05:f9:c6:34:9c:f2:a0:67:93:18:75:94:a1:ef:
46:af:7a:ac:f6:5f:b0:6c:50:d6:75:fd:96:e3:38:
9b:38:ce:24:19:d4:57:f2:e3:cb:d3:04:df:3f:24:
24:e9:cb:87:c9:af:83:f1:f0:40:3e:0e:03:4a:4d:
22:ef:2c:76:66:fb:1b:e3:54:6b:eb:72:7c:11:12:
ab:6d:69:22:ea:80:bb:3a:f0:09:22:bc:e0:35:0b:
7e:13:29:97:38:60:ac:86:a6:54:1f:35:aa:dc:16:
e5:d9:36:24:37:83:d0:be:5d:54:5d:2f:99:b5:bc:
38:90:71:a3:42:b6:28:69:3c:ea:72:4e:45:78:97:
84:0a:32:cf:3a:8e:86:26:bf:73:41:99:8f:db:9d:
ac:cf:5c:cb:78:82:88:ef:fd:a8:7a:83:86:7f:5a:
d7:15:7b:fb:f3:7b:34:59:87:f9:fc:32:3e:5a:8b:
a5:4e:6e:e1:89:eb:93:f5:3a:7a:9a:c2:e3:fc:68:
5a:05:3d:95:4c:29:56:75:75:39:93:27:30:e8:f0:
35:1b:6b:99:c3:56:83:0e:35:84:3b:56:6d:5b:0c:
c3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B5:D2:C8:76:D1:29:AC:1F:1D:7F:36:6A:AE:BD:FB:E3:DC:C8:26
X509v3 Authority Key Identifier:
keyid:39:01:9F:9C:0A:B2:9B:42:E0:DB:12:E9:AC:87:B3:27:BF:C5:5A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQGfnAqym0Lg2xLprIezJ7_FWvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/430c81-ee4b-4e88-a36f-788f5a58044f/1/OQGfnAqym0Lg2xLprIezJ7_FWvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:f8:1e:e0:20:29:13:18:ee:43:7d:7d:69:3f:69:5f:39:05:
e6:b2:8d:c6:12:17:c5:9f:e9:23:d7:48:a0:be:ea:dd:e1:16:
04:48:c4:b5:62:0e:5c:87:d5:83:19:6c:fc:b6:8f:91:e0:6a:
92:ba:2b:c5:73:b4:48:57:2e:43:3f:04:fe:98:5b:7e:ed:b9:
89:7e:a5:ee:e3:f3:0c:bf:47:f7:c9:71:ce:9e:e3:95:26:cf:
bf:1f:8f:1f:99:bb:8a:eb:9e:77:23:0f:58:5a:42:d0:71:9c:
3b:04:e2:cb:bf:0c:7b:9a:60:5a:d7:65:26:b7:6b:e8:ae:88:
7a:f0:b4:f1:df:3a:30:96:84:73:2b:52:df:fd:b3:40:bc:c8:
de:94:11:b9:98:a4:5f:d4:78:ea:d6:a0:94:c8:74:eb:18:35:
22:23:16:90:2e:5c:f9:cd:82:ba:09:56:0e:07:b7:62:23:bc:
54:2a:2c:24:44:2d:66:87:e7:bc:b6:dd:de:58:8c:0a:58:bd:
d7:ca:96:ae:86:53:4e:e8:a7:40:26:f2:1e:b5:f7:79:23:a3:
a8:20:b6:c8:67:0b:68:fc:03:fa:0c:b3:89:ec:09:60:e3:77:
3b:29:b2:f1:c0:61:62:81:8f:d8:15:66:bd:7d:91:16:39:78:
d6:05:ae:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:21 2025 by rpki-client