Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
File: OQlq7uS6fDS4EkCtSRrEba90wx0.mft (raw, json)
Hash identifier: pTCvVXup3kXifonuuG85b05MoQC9sPULqsLBfQif+4w=
Subject key identifier: E5:60:55:F7:4A:EC:46:02:29:81:BB:21:57:F7:79:45:3F:00:2F:81
Authority key identifier: 39:09:6A:EE:E4:BA:7C:34:B8:12:40:AD:49:1A:C4:6D:AF:74:C3:1D
Certificate issuer: /CN=39096aeee4ba7c34b81240ad491ac46daf74c31d
Certificate serial: 0198917EBD38884BA2FC67464FF952F05245
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
Manifest number: 1624
Signing time: Sun 10 Aug 2025 01:00:58 +0000
Manifest this update: Sun 10 Aug 2025 01:00:58 +0000
Manifest next update: Mon 11 Aug 2025 01:00:58 +0000
Files and hashes: 1: OQlq7uS6fDS4EkCtSRrEba90wx0.crl (hash: FucLqeeL00eSmihOA4sfHXyroV4Vzce6eeZrzZx7KCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:7e:bd:38:88:4b:a2:fc:67:46:4f:f9:52:f0:52:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39096aeee4ba7c34b81240ad491ac46daf74c31d
Validity
Not Before: Aug 10 01:00:58 2025 GMT
Not After : Aug 11 01:00:58 2025 GMT
Subject: CN=e56055f74aec46022981bb2157f779453f002f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:78:ac:89:e4:22:9c:a0:49:38:d0:39:66:ea:
4d:a6:5f:67:19:ce:95:13:48:bb:6d:72:21:91:c8:
c0:5d:ed:5d:89:fa:d3:82:21:79:3c:6e:9d:2c:a5:
38:6d:21:69:36:24:b9:34:9a:db:41:0b:b8:dc:d0:
0a:24:8a:ce:e6:22:1b:a1:b2:b2:bb:2d:2f:35:1e:
32:eb:ec:92:f0:ec:13:3a:c3:b2:e4:98:35:22:20:
0e:58:87:f9:11:85:25:53:22:3c:c1:ec:91:e6:a3:
94:a5:e4:de:cb:11:b0:a0:b8:65:e2:7b:e1:49:e2:
c3:16:87:b1:6f:e0:63:96:22:7a:be:9b:59:73:be:
17:d8:7c:41:97:43:26:e6:11:1e:c4:87:df:0c:d6:
58:5c:ea:db:36:dd:65:96:42:f1:3c:87:00:39:23:
da:1a:79:ab:01:b4:63:6f:3b:7a:68:1c:d5:ea:22:
e1:15:64:a5:24:19:3c:68:5c:4a:5e:2c:8c:9a:fb:
0e:82:5c:43:4e:a8:ce:4e:4b:a7:6f:d7:ab:90:8a:
84:83:20:83:60:06:ee:e5:21:5e:fe:44:af:3d:a1:
9c:f2:86:59:7f:db:52:e6:b5:43:e1:3b:e5:18:24:
31:92:ff:28:5c:e8:c0:1f:52:c0:27:3c:df:52:60:
ee:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:60:55:F7:4A:EC:46:02:29:81:BB:21:57:F7:79:45:3F:00:2F:81
X509v3 Authority Key Identifier:
keyid:39:09:6A:EE:E4:BA:7C:34:B8:12:40:AD:49:1A:C4:6D:AF:74:C3:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:5e:ae:fb:28:5c:fd:25:0a:bd:be:1a:0f:f1:97:ee:31:58:
ae:d7:ac:87:44:df:d9:47:00:6e:40:d9:2c:48:5d:d8:c6:83:
29:c6:ed:d4:d4:d3:27:ee:0d:00:ed:00:60:2b:bd:20:cb:be:
d6:79:a9:82:93:f3:c9:ec:aa:b2:94:64:b9:9e:0d:60:d2:01:
b9:a0:a7:a2:a6:4b:51:77:98:56:cf:04:40:37:f2:cc:f8:7d:
e3:35:87:e9:36:6a:96:a3:0f:f0:34:1f:85:fa:51:ba:ad:fe:
13:cc:aa:a8:5e:28:2a:d2:ba:28:86:97:66:a9:a7:2c:ad:c1:
0b:db:cb:1d:b9:7e:b8:2e:b9:e1:81:78:fe:0d:f7:df:92:35:
63:d4:09:9a:d1:8a:85:8f:2f:1b:05:2b:05:14:71:83:04:a5:
59:00:0f:60:04:71:19:97:e0:76:54:a3:4d:38:4a:e5:81:ed:
bc:40:42:e4:7c:4a:78:4b:e7:de:d5:0b:d5:02:f0:7c:f8:18:
47:2f:6b:3c:a3:8a:41:72:ff:df:c7:f6:99:11:f2:ce:5e:4a:
83:d2:1e:09:28:4f:cc:d3:3e:f0:b0:93:49:d0:b8:b9:40:56:
40:e5:3f:f9:2a:41:af:8b:ca:ce:3c:40:ed:2d:26:bd:86:12:
38:4e:c5:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 03:47:13 2025 by rpki-client