Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
File: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft (raw, json)
Hash identifier: O3MUFEIopuQKq1ngDsD2ZAvmVueUY1IZgz4s9dShEWA=
Subject key identifier: 65:63:42:91:8C:55:DF:37:51:EF:AF:4D:EE:FB:66:5F:02:FD:94:EF
Authority key identifier: 39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
Certificate issuer: /CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Certificate serial: 0198D5834C983461D835E8DFDFEA255634DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
Manifest number: 03A0
Signing time: Sat 23 Aug 2025 06:00:08 +0000
Manifest this update: Sat 23 Aug 2025 06:00:08 +0000
Manifest next update: Sun 24 Aug 2025 06:00:08 +0000
Files and hashes: 1: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl (hash: v15IV1PCTU/9374/rxzqzKHCGYZZTDj5fv5SkeSMKkA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:4c:98:34:61:d8:35:e8:df:df:ea:25:56:34:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Validity
Not Before: Aug 23 06:00:08 2025 GMT
Not After : Aug 24 06:00:08 2025 GMT
Subject: CN=656342918c55df3751efaf4deefb665f02fd94ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:81:00:26:fe:87:16:e8:ef:e1:24:c8:06:58:
b2:76:77:a8:3c:f6:11:cc:26:bc:11:4e:4b:b8:a9:
00:dd:58:b3:94:ac:6e:97:d2:9e:40:25:03:3e:de:
44:49:77:d2:c8:84:13:ea:17:6b:f2:51:2c:f8:93:
c0:a2:4c:12:e9:db:57:f6:dd:f5:fb:84:fe:11:00:
84:23:d3:9b:49:5e:a3:e1:78:68:cf:5e:7d:84:b4:
e4:49:cc:65:70:37:e8:b0:d7:8f:70:f5:a2:51:94:
cf:0a:98:6c:4e:2a:0e:52:98:73:b5:99:20:32:b4:
0b:7d:39:3e:e2:23:0a:88:ac:c8:e2:6f:2a:a2:6c:
b9:cb:68:cf:98:df:32:3e:be:4e:45:0d:11:c7:94:
ad:2a:bb:7e:e3:18:62:21:02:88:ec:ca:e8:52:6e:
ed:fd:51:18:b8:0a:6a:2c:c6:b1:6d:0a:c0:6e:98:
6b:48:1c:98:3e:9f:74:73:eb:88:c1:1d:55:c5:9c:
2c:35:24:01:23:fe:97:11:fe:9d:d1:ab:84:19:c8:
19:ba:c1:8a:fc:7b:e7:ba:b0:a6:f8:63:36:e1:58:
bf:e8:83:18:ce:4e:06:10:3d:b5:0d:03:ec:09:f5:
e9:49:c8:ff:56:c0:9f:94:f6:5a:7f:3e:ea:1f:47:
02:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:63:42:91:8C:55:DF:37:51:EF:AF:4D:EE:FB:66:5F:02:FD:94:EF
X509v3 Authority Key Identifier:
keyid:39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:13:b3:f2:ba:2a:b8:90:d7:98:01:56:76:68:c1:b8:10:c2:
d9:99:94:5b:4d:12:f9:b9:d3:f7:14:93:43:cb:ba:41:45:82:
82:44:91:42:47:6e:af:e1:50:eb:ce:47:c1:59:4b:57:c3:80:
5d:3a:de:f5:75:3d:7c:17:9d:3f:fd:7d:69:7a:8c:39:e1:f4:
4c:1d:0b:84:ee:dd:f3:a8:b9:e2:88:f9:30:59:25:3a:96:66:
cd:e7:42:91:f6:4e:9c:ee:0d:80:43:e5:3e:84:aa:fc:50:bc:
d4:ee:a2:34:ac:5e:3e:93:99:fa:68:cf:b1:cf:29:a2:1a:02:
69:5b:3e:9c:ad:50:fd:13:68:2a:7e:a4:b2:18:63:8c:a3:ff:
a5:12:1f:9c:c9:0f:31:33:9e:ef:5c:8c:fb:17:4f:1d:0b:f5:
e3:22:9f:83:02:5c:71:a8:b8:62:1d:2f:55:a0:ca:d9:d0:4c:
89:5f:57:12:26:88:01:15:71:9a:5f:db:1b:ce:6f:c1:9d:29:
75:29:83:27:86:50:69:9f:d4:38:e4:ee:81:11:0d:65:1f:38:
a8:f3:de:a8:39:d1:ce:81:d0:9a:63:87:fb:da:52:8f:1b:58:
7c:88:f1:1d:ef:b5:ed:47:7e:9c:9e:f2:59:4d:a8:de:1c:03:
e6:c3:05:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg0yYNGHYNejf3+olVjTeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5ZWY0YWE1OTc3ZjFmMzcxMzNlNzMxMDgwOWZmZjg5MzVj
MGM4YmMwHhcNMjUwODIzMDYwMDA4WhcNMjUwODI0MDYwMDA4WjAzMTEwLwYDVQQD
Eyg2NTYzNDI5MThjNTVkZjM3NTFlZmFmNGRlZWZiNjY1ZjAyZmQ5NGVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYEAJv6HFujv4STIBliydneoPPYR
zCa8EU5LuKkA3VizlKxul9KeQCUDPt5ESXfSyIQT6hdr8lEs+JPAokwS6dtX9t31
+4T+EQCEI9ObSV6j4Xhoz159hLTkScxlcDfosNePcPWiUZTPCphsTioOUphztZkg
MrQLfTk+4iMKiKzI4m8qomy5y2jPmN8yPr5ORQ0Rx5StKrt+4xhiIQKI7MroUm7t
/VEYuApqLMaxbQrAbphrSByYPp90c+uIwR1VxZwsNSQBI/6XEf6d0auEGcgZusGK
/HvnurCm+GM24Vi/6IMYzk4GED21DQPsCfXpScj/VsCflPZafz7qH0cCTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGVjQpGMVd83Ue+vTe77Zl8C/ZTvMB8GA1UdIwQY
MBaAFDnvSqWXfx83Ez5zEICf/4k1wMi8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xNDhmNzEtYWIyYy00NDA5LWFlMWYt
ZTdkNWZjZTZiZmFjLzEvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8xNDhmNzEtYWIyYy00NDA5LWFlMWYtZTdkNWZjZTZiZmFj
LzEvT2U5S3BaZF9IemNUUG5NUWdKX19pVFhBeUx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcxOz8roq
uJDXmAFWdmjBuBDC2ZmUW00S+bnT9xSTQ8u6QUWCgkSRQkdur+FQ685HwVlLV8OA
XTre9XU9fBedP/19aXqMOeH0TB0LhO7d86i54oj5MFklOpZmzedCkfZOnO4NgEPl
PoSq/FC81O6iNKxePpOZ+mjPsc8pohoCaVs+nK1Q/RNoKn6kshhjjKP/pRIfnMkP
MTOe71yM+xdPHQv14yKfgwJccai4Yh0vVaDK2dBMiV9XEiaIARVxml/bG85vwZ0p
dSmDJ4ZQaZ/UOOTugRENZR84qPPeqDnRzoHQmmOH+9pSjxtYfIjxHe+17Ud+nJ7y
WU2o3hwD5sMFVA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:39 2025 by rpki-client