Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.mft
File: O1Xn_rkHE3KZ9XksNjle-6mzS2I.mft (raw, json)
Hash identifier: BkC7muV1I8+3yPAqRszVixbJe97DlHshC/qKpyRD20M=
Subject key identifier: 3D:0D:64:41:94:E8:FA:49:2A:AB:F2:5A:0B:10:15:E8:48:72:CF:AB
Authority key identifier: 3B:55:E7:FE:B9:07:13:72:99:F5:79:2C:36:39:5E:FB:A9:B3:4B:62
Certificate issuer: /CN=3b55e7feb907137299f5792c36395efba9b34b62
Certificate serial: 0198729881F4D9FD5CD086C8532E109B61E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1Xn_rkHE3KZ9XksNjle-6mzS2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.mft
Manifest number: 0EBD
Signing time: Mon 04 Aug 2025 01:00:54 +0000
Manifest this update: Mon 04 Aug 2025 01:00:54 +0000
Manifest next update: Tue 05 Aug 2025 01:00:54 +0000
Files and hashes: 1: O1Xn_rkHE3KZ9XksNjle-6mzS2I.crl (hash: I2t0rkhRclhiEfzZ1aLhCr0lkcrwmUdD4PHzhMziLwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/O1Xn_rkHE3KZ9XksNjle-6mzS2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:81:f4:d9:fd:5c:d0:86:c8:53:2e:10:9b:61:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b55e7feb907137299f5792c36395efba9b34b62
Validity
Not Before: Aug 4 01:00:54 2025 GMT
Not After : Aug 5 01:00:54 2025 GMT
Subject: CN=3d0d644194e8fa492aabf25a0b1015e84872cfab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1d:f2:9f:9a:4f:fb:4e:f2:be:32:bd:44:7d:
e0:46:00:c7:ea:27:12:d9:68:8b:13:06:80:95:59:
ed:e8:0c:79:40:a2:0e:23:8e:6c:db:b7:5f:bd:6a:
1d:4c:13:16:34:64:52:e5:53:64:c7:ed:5d:eb:a3:
8b:5a:81:f3:9e:a7:65:b9:68:b2:07:2e:64:d8:29:
47:82:c0:57:7b:c6:b8:2a:10:18:c7:9f:c0:fc:b8:
00:6a:95:5a:e5:8a:6a:70:51:dd:6a:a5:ad:7a:27:
2f:96:fa:42:cc:13:b2:da:5b:55:c1:95:62:61:a1:
7f:ce:c3:a4:f6:15:22:8f:a0:a7:f5:d8:a9:9d:3c:
8a:f2:ec:84:cb:bb:5c:7d:35:c8:ee:c4:b1:05:9d:
22:a6:5c:4a:2e:ee:89:0e:cf:c4:5b:11:30:89:12:
56:e0:03:f0:f0:bb:d4:9c:47:72:fd:b4:3f:b1:43:
09:0f:a0:99:9c:c9:9e:69:69:a6:bd:0f:15:a5:8b:
da:68:9b:99:a7:a4:ae:f3:d5:ff:b3:c4:63:18:cf:
f3:6a:2f:d7:cc:92:c7:98:c8:00:c2:c0:56:e1:f6:
e7:7e:7c:12:30:f5:e8:20:9c:2f:6a:38:23:61:2c:
07:2a:a6:d3:1e:f5:1f:13:32:5b:d7:8a:fc:4b:85:
2a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:0D:64:41:94:E8:FA:49:2A:AB:F2:5A:0B:10:15:E8:48:72:CF:AB
X509v3 Authority Key Identifier:
keyid:3B:55:E7:FE:B9:07:13:72:99:F5:79:2C:36:39:5E:FB:A9:B3:4B:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1Xn_rkHE3KZ9XksNjle-6mzS2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8b768c-0e0a-4ad3-9100-a441e24be036/1/O1Xn_rkHE3KZ9XksNjle-6mzS2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:ae:03:41:5e:b3:74:74:78:f8:52:a8:9b:99:7d:19:a5:98:
7b:35:a0:b0:cc:68:fc:4c:11:26:d4:01:ad:07:0d:34:51:7a:
b9:15:ee:51:5b:ec:a7:ea:ca:dc:a1:dd:8c:a5:19:ba:53:d8:
84:75:c7:0f:5a:4b:57:f6:27:aa:9a:82:33:8c:75:77:67:18:
cb:75:38:5c:ed:66:58:6b:7f:87:5b:4b:2a:4a:d6:79:bf:1d:
0b:2f:50:19:38:e5:f9:d3:93:fc:ff:ff:b9:18:fe:74:0c:f9:
da:30:d9:df:f1:15:21:48:41:3e:3a:13:16:bc:a2:08:59:75:
d6:ea:a6:45:6e:62:ba:86:08:c8:c4:9a:ba:a0:c9:3f:5e:78:
51:3f:ba:a5:e4:94:fc:3d:be:20:bb:69:f2:52:82:92:18:17:
49:5c:f6:b1:f3:16:5f:50:fb:87:61:42:f5:bf:16:a5:9b:27:
24:62:bd:98:e1:95:05:75:4c:1b:a0:0a:dd:4e:cc:18:eb:34:
fa:d1:ab:a0:a7:fd:e9:73:64:5c:55:49:03:87:5c:a0:35:76:
b4:07:eb:52:38:3a:7b:4f:42:88:04:72:a0:2f:1f:32:d2:20:
63:22:15:88:bc:09:a8:32:23:2e:98:42:db:92:6b:c2:e0:34:
97:ae:2f:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:11:11 2025 by rpki-client