Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
File: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft (raw, json)
Hash identifier: SlcS99yLRtTBPENFpillh3uC11X39fNh68I/SerSfpo=
Subject key identifier: 3E:D1:27:01:94:C9:72:4D:DD:86:E4:01:50:48:D2:28:0B:76:1F:6A
Authority key identifier: 68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2
Certificate issuer: /CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2
Certificate serial: 0199FFC751548B1694A2DD1A6AB0E2F6B2A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
Manifest number: 16C8
Signing time: Mon 20 Oct 2025 04:01:16 +0000
Manifest this update: Mon 20 Oct 2025 04:01:16 +0000
Manifest next update: Tue 21 Oct 2025 04:01:16 +0000
Files and hashes: 1: aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl (hash: VR+YLWkJWUrsY4YU9OoBtFP4rSLRrWexxaOga6VaVXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 04:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c7:51:54:8b:16:94:a2:dd:1a:6a:b0:e2:f6:b2:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e1e6ea527dc385a79a3e08827dbf690c91c4c2
Validity
Not Before: Oct 20 04:01:16 2025 GMT
Not After : Oct 21 04:01:16 2025 GMT
Subject: CN=3ed1270194c9724ddd86e4015048d2280b761f6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bc:1c:92:4e:33:62:10:d1:ed:e6:44:0d:9b:
71:bc:c2:8e:5a:97:04:6f:6b:44:47:ed:27:e3:11:
11:f9:a0:5b:ee:63:59:97:02:ac:6f:d7:0b:e2:79:
57:44:79:56:6a:bd:ca:3f:41:b1:11:3b:59:ca:b5:
2f:2b:a8:c7:11:77:bf:10:1f:6c:ce:b3:25:74:be:
42:18:37:19:0d:20:e9:56:e9:fd:4f:9e:80:96:11:
58:58:43:60:18:83:b5:b3:18:a6:d1:db:0e:43:19:
24:07:4f:2d:99:94:55:c5:db:53:f8:ba:4e:65:1f:
6a:2b:26:59:7d:53:01:20:dc:66:2a:a8:9e:d0:8c:
5c:c7:7d:cf:3b:86:a4:08:6d:49:e8:80:81:aa:2b:
8e:d0:6b:81:58:8a:59:69:4f:7a:67:87:93:82:9f:
3e:f9:49:5f:a3:3a:02:b6:3b:78:02:53:d5:e4:16:
de:ca:fc:39:62:12:e9:1c:bb:b1:21:15:50:e0:20:
3b:09:05:2f:03:37:dc:65:e8:3e:b2:04:f7:8c:1a:
00:64:aa:40:6a:04:77:e0:f9:25:6f:09:ac:c2:58:
d3:09:9f:53:99:63:27:f2:70:47:2c:ec:b2:37:fa:
21:b4:1b:74:27:3b:5a:ec:ce:55:06:0b:ce:fd:bf:
b2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D1:27:01:94:C9:72:4D:DD:86:E4:01:50:48:D2:28:0B:76:1F:6A
X509v3 Authority Key Identifier:
keyid:68:E1:E6:EA:52:7D:C3:85:A7:9A:3E:08:82:7D:BF:69:0C:91:C4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/9331c9-e164-4d2e-b839-17d097ff89c2/1/aOHm6lJ9w4Wnmj4Ign2_aQyRxMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:73:70:04:19:87:7f:32:7a:eb:d0:24:18:f4:42:dc:65:e7:
1a:5a:14:da:7d:30:e2:59:68:2d:bb:e1:92:49:3e:1e:4e:bb:
86:2c:54:b4:11:44:1d:05:53:08:33:31:04:b2:98:ef:ef:c6:
8e:86:a1:19:4e:91:ee:9e:91:85:23:c3:ac:42:3d:48:95:c1:
d9:78:11:d1:6a:b4:35:82:ae:5d:0e:43:2d:2b:9e:a0:ef:56:
1a:af:15:e4:83:6c:05:21:bc:bb:8b:25:95:24:20:21:f4:c3:
1a:49:fe:d6:49:65:f7:33:a5:db:f5:b7:f4:8b:76:50:79:20:
74:af:e2:41:f7:83:29:07:0e:a7:5b:6b:37:58:5c:71:8f:7a:
e2:a2:3e:c4:ed:06:1f:8b:6c:82:04:10:b4:e8:1c:59:4a:1a:
ca:56:a9:01:5e:93:59:9b:03:65:f9:a0:77:85:7b:cd:27:45:
04:b2:47:c5:fd:e6:94:ce:ad:04:dd:94:b6:9c:84:c8:cb:d6:
1d:73:a8:ef:6a:26:ed:f2:76:25:73:e6:60:02:00:5c:06:46:
cf:ae:e9:2b:7c:90:04:c0:8d:8c:cc:f5:cf:e6:3a:bd:bc:85:
3a:ce:e3:e0:bd:ef:3e:f4:40:c5:d0:b1:62:63:9d:33:52:cb:
7e:51:05:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:39:00 2025 by rpki-client