Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: 9+ndcGqOoHrypE1X9IpuKh5JNfHR9+Dc/NZxSrL174g=
Subject key identifier: B5:53:A2:FA:1A:AF:73:B4:4A:C2:53:26:7F:E4:3A:6E:3B:01:C3:5C
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 0198A04EB8361667EB0789FB2DBB7D675E5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 15BE
Signing time: Tue 12 Aug 2025 22:02:50 +0000
Manifest this update: Tue 12 Aug 2025 22:02:50 +0000
Manifest next update: Wed 13 Aug 2025 22:02:50 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: AXFwRmpcp7UMaJxPQoe3fjCvsKk83g6SJ6ta7nnBvTE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4e:b8:36:16:67:eb:07:89:fb:2d:bb:7d:67:5e:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: Aug 12 22:02:50 2025 GMT
Not After : Aug 13 22:02:50 2025 GMT
Subject: CN=b553a2fa1aaf73b44ac253267fe43a6e3b01c35c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7b:af:52:60:dd:27:45:2f:06:29:e2:51:3b:
e0:38:43:4c:6b:89:4b:49:46:6e:8e:55:39:ef:d9:
42:b0:31:3f:06:4a:18:ed:c3:1f:9b:57:88:ff:0b:
9e:6c:6e:04:c8:8c:98:d0:30:df:9c:e5:1d:d4:a9:
0d:21:2e:c9:82:fd:3d:0a:82:6d:13:6c:49:4c:d5:
f3:63:b6:4d:00:62:f3:f4:1f:67:13:80:cf:96:e6:
9f:7a:b5:98:c9:50:b6:6c:ea:f6:50:68:c7:48:f5:
db:d9:1a:ec:4c:44:d8:06:89:8d:42:c7:61:71:27:
94:0a:ab:94:77:7a:b7:05:93:42:2a:13:02:b3:0e:
ae:81:8c:fb:eb:c7:89:27:46:25:b0:84:5c:19:ac:
46:01:54:77:2f:73:28:e7:64:3b:6c:b1:17:9f:25:
8c:6a:b7:49:69:18:8a:2a:d6:a3:4a:f8:ad:7c:33:
13:c0:94:4d:75:41:b9:dc:8b:16:70:3b:a2:12:f7:
c1:45:d5:bd:52:d2:dc:6b:50:1b:2e:0f:7b:83:39:
fd:02:6c:f9:ac:a1:f8:f2:c2:4e:06:d6:0e:54:27:
50:14:c1:95:f9:c0:9c:c0:7a:cc:68:64:92:a1:1d:
3d:1b:7b:7b:20:3d:a1:88:b0:ab:64:79:34:0c:0c:
db:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:53:A2:FA:1A:AF:73:B4:4A:C2:53:26:7F:E4:3A:6E:3B:01:C3:5C
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:51:da:0c:9a:3f:b1:51:75:21:df:07:e8:87:ef:81:e0:4e:
12:b9:24:38:a2:d1:65:d3:30:d8:98:63:40:3d:c3:44:69:d8:
de:78:c0:d5:d9:d5:2f:15:3d:e9:2d:58:21:8f:d2:98:c1:b5:
6d:50:ba:25:33:c1:6a:db:46:24:43:45:a4:b5:6e:bc:bd:68:
ec:5a:cf:1d:6b:25:a6:5f:1c:a6:3a:18:0f:ba:5a:4a:68:11:
de:4c:8b:d2:ad:d1:e1:ad:0d:ca:0a:5f:32:ec:41:f6:39:27:
db:9f:c7:b3:e6:2e:4b:8c:be:82:c9:7a:33:32:30:02:bb:db:
aa:ff:be:fd:60:63:9b:13:cb:f0:bc:d0:6d:c3:bd:8e:bb:5c:
44:65:89:5c:6d:7a:85:3d:d1:73:8e:85:8c:16:25:da:e7:77:
3e:8b:77:f2:67:47:38:0c:37:b4:c9:6c:ef:b0:e0:e5:50:a0:
0c:2d:41:28:78:88:2f:56:f1:7f:4b:53:13:8c:11:97:57:b9:
3d:09:d2:fa:5e:a9:ba:ad:5a:1d:d1:51:37:68:6b:47:56:14:
27:72:90:ae:6f:a6:5d:c9:54:0c:c0:3e:07:e6:b5:61:04:39:
09:fa:fc:90:52:c9:45:db:5f:0c:ec:54:44:af:c9:ec:c9:23:
5e:0f:d3:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 04:24:52 2025 by rpki-client