Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
File: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft (raw, json)
Hash identifier: w9ZQGszIm2yofpCUl6IFSfClPw56BvuLTnS9mgwJBU8=
Subject key identifier: EE:86:AF:8F:C9:E8:F2:00:2C:54:7E:26:54:28:80:C7:09:BC:33:A7
Authority key identifier: 39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
Certificate issuer: /CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Certificate serial: 0199FCFD4D13103AA1289984B7B36E3A8023
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
Manifest number: 0439
Signing time: Sun 19 Oct 2025 15:01:22 +0000
Manifest this update: Sun 19 Oct 2025 15:01:22 +0000
Manifest next update: Mon 20 Oct 2025 15:01:22 +0000
Files and hashes: 1: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl (hash: RsUUV3E8PXY1cZHvL8NhCYjsBoIbcRz+YBKDxBFB/vk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:4d:13:10:3a:a1:28:99:84:b7:b3:6e:3a:80:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Validity
Not Before: Oct 19 15:01:22 2025 GMT
Not After : Oct 20 15:01:22 2025 GMT
Subject: CN=ee86af8fc9e8f2002c547e26542880c709bc33a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:71:30:8f:d8:01:95:cf:10:70:4f:1a:e1:e0:
8c:69:dd:2e:45:c9:dc:fa:db:89:bf:53:ce:f7:f2:
eb:be:10:93:bc:f5:0f:cd:c1:29:79:d7:b3:4b:93:
ae:16:c4:6c:81:fe:e1:18:0d:37:28:4d:05:6f:03:
e9:2b:88:83:ac:24:09:c4:a3:ab:dc:a4:e6:5e:5a:
ec:fe:07:4d:87:32:12:15:18:8d:e3:af:5f:cb:9c:
6d:a2:d4:fe:08:1f:91:95:02:75:ed:2c:22:63:9d:
63:98:8b:2b:5b:c7:62:d0:07:1c:d8:20:66:0c:66:
45:76:a1:d4:c7:80:7f:e4:6b:9f:2e:18:a0:89:d0:
e1:76:09:c9:7a:0c:9d:de:93:6e:ca:0d:7c:28:c5:
10:f0:a8:2f:89:63:53:c6:45:c0:46:16:84:c3:cf:
6e:2d:39:43:96:d3:db:aa:95:4b:d2:97:8b:6d:5a:
dd:77:ad:e6:f3:be:36:97:b8:37:5a:20:71:c0:8f:
0e:72:77:a9:99:4a:3c:12:74:b1:89:99:fb:d8:b9:
75:de:f3:d8:64:72:c9:0e:0e:81:a8:f8:c9:5f:39:
ef:74:89:60:a4:9b:2e:93:40:3c:6b:b1:b9:62:27:
9f:42:20:4b:48:b6:e0:e5:dc:52:1a:1c:39:e1:2d:
36:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:86:AF:8F:C9:E8:F2:00:2C:54:7E:26:54:28:80:C7:09:BC:33:A7
X509v3 Authority Key Identifier:
keyid:39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:8c:39:66:9b:c7:66:bf:c4:23:be:4e:25:9b:45:2d:1c:1a:
67:ee:04:fd:49:72:09:97:a9:94:ff:24:fb:10:b7:2e:16:f1:
f1:d7:87:a3:08:35:d9:fa:80:8a:59:51:6d:79:18:b6:fa:d8:
2d:4c:14:b3:71:59:a6:48:82:cf:2c:46:d1:59:4c:d5:08:46:
b6:62:54:aa:d4:7b:7b:2c:eb:79:f4:01:5d:6a:f0:f7:bd:10:
d2:3b:65:9f:c8:f5:52:d7:da:a0:eb:30:e0:09:53:36:a7:5a:
24:84:5b:fa:dc:a9:8c:b9:2b:07:64:26:02:6b:80:35:87:fd:
19:87:84:46:e8:c2:7e:8a:d5:da:f0:1c:c1:92:b7:28:f3:fb:
a3:6e:cd:4a:34:27:f7:53:5f:a6:4d:cc:34:12:7b:40:58:88:
19:ea:74:6a:5b:aa:8d:5e:3f:64:a8:71:f4:dc:af:11:8a:f0:
e6:62:49:0b:e3:15:c3:10:c3:f7:98:59:65:33:a2:5b:a0:92:
e5:8f:43:91:ad:4b:67:1d:4e:fe:d5:8c:8b:3e:3c:21:d7:48:
64:83:39:e7:f5:69:c9:37:f4:83:e1:c6:ad:9a:3e:be:b1:20:
51:da:f9:15:bb:d0:ab:a0:04:bb:3b:78:ce:7e:c9:2f:b7:f0:
6e:d9:7a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:22:58 2025 by rpki-client