Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
File: OExBksVwSp65aPXPUzuaH3pmYa0.mft (raw, json)
Hash identifier: VU55AeydOALLXNhQCACnpTz3r+hMwffxatepb2jOhCQ=
Subject key identifier: 50:4E:56:9C:56:67:EB:0B:A5:05:58:88:25:16:92:A5:D7:60:B5:E2
Authority key identifier: 38:4C:41:92:C5:70:4A:9E:B9:68:F5:CF:53:3B:9A:1F:7A:66:61:AD
Certificate issuer: /CN=384c4192c5704a9eb968f5cf533b9a1f7a6661ad
Certificate serial: 0198737455D1F4EEB37E1BFE0D16A4600537
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
Manifest number: 01F0
Signing time: Mon 04 Aug 2025 05:01:00 +0000
Manifest this update: Mon 04 Aug 2025 05:01:00 +0000
Manifest next update: Tue 05 Aug 2025 05:01:00 +0000
Files and hashes: 1: OExBksVwSp65aPXPUzuaH3pmYa0.crl (hash: +z370+w/efRlegJ2Bgy4XygxoLBTw2BiKaVpHLDhLis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:55:d1:f4:ee:b3:7e:1b:fe:0d:16:a4:60:05:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=384c4192c5704a9eb968f5cf533b9a1f7a6661ad
Validity
Not Before: Aug 4 05:01:00 2025 GMT
Not After : Aug 5 05:01:00 2025 GMT
Subject: CN=504e569c5667eb0ba5055888251692a5d760b5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c3:77:41:8e:61:a7:00:9e:03:1d:b0:2e:99:
b0:b5:d9:90:a9:b3:65:7f:91:e4:46:d8:11:12:52:
cb:7c:4c:87:34:18:43:c7:cc:2f:36:8a:9b:88:0f:
ec:78:a3:23:83:10:3d:dd:94:8a:18:a6:85:94:be:
ed:3e:a1:19:e7:24:8b:b5:2e:88:2a:53:57:30:64:
57:22:8b:35:03:12:ff:26:2c:e1:b3:87:29:1b:15:
86:39:33:10:66:79:a1:72:f2:c5:62:af:2b:59:9c:
0d:b2:2f:8e:04:5b:22:5d:f3:e2:de:2f:86:66:f3:
83:d8:80:36:00:b9:10:ef:a9:ae:0c:a4:6d:02:d2:
c4:a2:fe:be:82:78:78:c1:9d:3d:6c:3a:ba:1f:66:
85:2b:f0:70:1b:19:04:91:ac:38:09:73:dd:4a:b5:
c4:87:e5:8f:ca:43:cc:98:41:f6:69:f8:ff:ca:88:
b0:53:03:97:96:b1:78:c0:01:96:f8:6b:b2:4e:98:
49:cf:93:b9:9d:4c:74:f1:cc:a9:ed:61:64:01:c3:
9a:1e:85:f0:87:73:18:15:fa:ae:a8:17:2c:8e:41:
e6:62:71:8e:51:ae:f7:fa:b7:d5:f1:a0:00:ad:f0:
ed:d5:2d:90:ee:7e:fd:92:5d:38:42:20:f3:ae:b1:
19:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:4E:56:9C:56:67:EB:0B:A5:05:58:88:25:16:92:A5:D7:60:B5:E2
X509v3 Authority Key Identifier:
keyid:38:4C:41:92:C5:70:4A:9E:B9:68:F5:CF:53:3B:9A:1F:7A:66:61:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OExBksVwSp65aPXPUzuaH3pmYa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/620577-dfd8-4f23-a650-83be418aa7f4/1/OExBksVwSp65aPXPUzuaH3pmYa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:e9:71:38:b9:d0:f7:b7:65:28:20:8c:61:fc:a7:d6:db:eb:
68:28:25:9e:28:35:fb:a6:cd:ea:81:30:53:67:25:26:1d:cf:
d3:be:a7:ba:7a:2f:04:60:98:70:15:aa:59:e3:4e:d9:82:54:
67:22:03:22:c5:ed:6f:91:20:45:83:f6:7c:dd:fe:ec:49:3c:
75:36:d9:c1:ae:99:3f:ca:89:49:51:4c:ab:ef:16:e4:16:2a:
1c:f1:61:02:6a:5e:79:d2:b7:f9:26:5b:91:c1:0b:f1:42:10:
b2:1d:ca:b6:00:86:60:5f:e2:79:db:35:81:a1:36:73:6e:39:
85:75:07:ff:e8:33:f1:02:14:0f:b2:ea:18:8c:e1:97:75:1d:
80:25:ee:4a:41:70:22:b2:cb:5a:40:5f:c1:4e:76:31:f9:2e:
8b:c7:d7:de:d4:a2:aa:47:7d:c5:99:e8:73:c7:2a:88:b1:d7:
2a:b0:fe:63:ec:ec:5a:9e:3b:7f:b6:f8:37:c9:4f:72:ea:2b:
b1:31:5f:93:9a:cc:35:32:85:71:b2:29:84:78:25:b6:98:7b:
9c:94:a8:e9:c6:c7:93:93:c9:b5:7f:06:ea:9c:97:39:0a:f9:
a8:e7:a6:d0:a1:08:aa:5e:b0:20:86:e1:85:cd:4f:d7:fc:5d:
9c:09:d8:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:09:05 2025 by rpki-client