Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft
File: oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft (raw, json)
Hash identifier: LUYmx3oaufuxkGHKrIvZjALeU2jEUxhfoMWRhdwKtpY=
Subject key identifier: 43:79:D2:4F:2F:E4:F8:95:94:23:CD:BD:54:EB:3C:19:EE:EE:EA:7A
Authority key identifier: A3:23:E0:41:DD:45:96:53:33:E2:B1:47:4F:C5:0B:E2:F0:FA:95:0E
Certificate issuer: /CN=a323e041dd45965333e2b1474fc50be2f0fa950e
Certificate serial: 0198733DA634489036EB35425D5FD63E01D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft
Manifest number: 0A27
Signing time: Mon 04 Aug 2025 04:01:16 +0000
Manifest this update: Mon 04 Aug 2025 04:01:16 +0000
Manifest next update: Tue 05 Aug 2025 04:01:16 +0000
Files and hashes: 1: oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl (hash: qR1aQoOHHNIlxPwazr6j3bkjsp/E74xMa30TErZl+sI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:a6:34:48:90:36:eb:35:42:5d:5f:d6:3e:01:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a323e041dd45965333e2b1474fc50be2f0fa950e
Validity
Not Before: Aug 4 04:01:16 2025 GMT
Not After : Aug 5 04:01:16 2025 GMT
Subject: CN=4379d24f2fe4f8959423cdbd54eb3c19eeeeea7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c0:e3:a0:ba:c2:d2:1b:d7:8e:c5:ed:a3:d0:
6c:0b:18:89:9c:18:b7:fa:10:d0:ea:89:2d:da:8f:
a5:6e:ea:c9:02:03:83:83:9b:73:02:80:05:a8:ca:
6c:aa:70:92:eb:e4:2f:3e:6f:73:dc:0e:dd:01:b1:
bf:90:3d:ba:0d:00:b1:76:e7:05:41:1b:1d:4f:6c:
d8:8a:cd:9c:a7:c1:12:92:b2:2d:c9:d0:25:d9:bf:
7a:b4:8e:ae:0f:41:b3:fd:7d:8f:d3:d6:47:c4:96:
44:96:82:98:18:09:ee:6f:ba:12:fe:4d:65:13:92:
1c:a3:60:85:db:18:7c:7b:2e:81:f3:8e:bd:0f:ec:
1c:80:29:da:d2:72:d5:25:c9:73:66:19:57:ec:74:
ef:65:e2:16:41:3c:dd:06:5b:fd:a2:61:cc:0a:ae:
aa:37:d6:22:e9:7b:32:94:89:3d:3f:b3:a3:75:4e:
48:65:ad:ef:26:34:15:71:49:c1:5c:29:88:f2:63:
d3:8a:9b:ae:47:46:3e:22:68:30:dd:89:17:a1:3c:
ea:46:92:36:e9:c1:86:a8:bd:aa:14:e0:36:94:0f:
74:22:df:58:91:f5:f9:61:ba:51:eb:5b:66:bc:d1:
46:dd:e2:1b:df:db:6e:b5:dd:21:b5:07:af:d0:7f:
82:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:79:D2:4F:2F:E4:F8:95:94:23:CD:BD:54:EB:3C:19:EE:EE:EA:7A
X509v3 Authority Key Identifier:
keyid:A3:23:E0:41:DD:45:96:53:33:E2:B1:47:4F:C5:0B:E2:F0:FA:95:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oyPgQd1FllMz4rFHT8UL4vD6lQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/e8339e-fd6d-404d-a64c-cadc514ace72/1/oyPgQd1FllMz4rFHT8UL4vD6lQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:08:ee:60:2e:0b:2f:3a:27:75:e6:94:b0:d3:aa:d1:86:61:
9a:d9:85:ab:1f:e0:d1:89:64:f8:54:f7:3f:a3:6b:8f:a8:f7:
fb:53:d3:f4:0d:67:f1:d0:65:af:5b:a5:b6:ef:79:83:de:9a:
c2:11:e8:b8:f8:6f:28:f4:51:e7:54:eb:60:4f:52:3f:6c:2b:
27:98:2d:6f:a5:e3:c0:9a:4b:0d:76:41:d8:d0:47:8a:dd:37:
01:56:3f:71:5c:eb:ce:47:87:b6:99:d8:82:33:a1:8b:06:af:
a5:7f:30:26:3c:d5:75:b6:bb:70:d7:f2:66:37:30:a0:3b:06:
0d:73:f6:ab:36:7e:0b:b8:97:b0:6e:96:82:fe:c3:e1:38:97:
60:e5:08:d3:85:40:4a:7f:13:f3:85:ca:28:3f:16:39:5c:b7:
b8:31:45:b3:a4:a4:60:02:32:fc:45:a1:15:69:1a:c1:0c:c4:
1a:53:0a:2f:4d:58:da:7e:ba:e3:7f:89:5c:d9:5f:fb:66:65:
2a:e6:67:65:e3:ef:dc:69:3a:3b:d5:03:8e:2f:ed:8d:22:7c:
ac:5c:42:a9:e0:0c:bb:eb:1f:49:f2:4c:c8:e9:b3:42:65:27:
ad:b8:10:8b:ad:34:a8:e3:55:d7:7a:bf:e9:e1:b6:54:0a:13:
cb:3a:31:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:09:49 2025 by rpki-client