Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: rH53yOZw1+OqgZRHmif4LLgVgpVDUHGPpm3cV6pzn00=
Subject key identifier: 32:71:61:E6:89:20:5F:8D:85:14:6B:DB:90:E1:61:AD:4A:EA:34:FD
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 019A4EF4D8ABE028322DBA68201B6C262FE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 169D
Signing time: Tue 04 Nov 2025 13:01:00 +0000
Manifest this update: Tue 04 Nov 2025 13:01:00 +0000
Manifest next update: Wed 05 Nov 2025 13:01:00 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: EU2GS1g6saeCaNNDOngpeRJUUp0OIQuRpK0VBFJlRIE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:d8:ab:e0:28:32:2d:ba:68:20:1b:6c:26:2f:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: Nov 4 13:01:00 2025 GMT
Not After : Nov 5 13:01:00 2025 GMT
Subject: CN=327161e689205f8d85146bdb90e161ad4aea34fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3f:2b:b8:3d:21:27:0f:90:a4:97:41:ea:75:
45:c9:0a:88:40:49:72:c3:76:dc:0e:a1:6d:c1:f1:
6d:8d:67:70:3f:6f:dd:8a:74:02:3b:96:29:b4:55:
8a:f7:23:dd:cc:a2:e0:a8:14:41:64:6a:be:6e:1e:
7c:0d:69:14:f4:a1:32:83:c6:b3:85:d9:87:27:4d:
11:78:7b:44:0c:17:d3:6a:b2:37:b8:4d:5c:cb:65:
20:8f:5c:c8:8f:58:94:dc:4d:0e:8e:d6:2f:3b:2b:
a1:60:58:a5:3d:dd:2a:ae:b8:30:84:70:3f:2d:bb:
39:92:75:4d:a4:33:59:bf:27:f9:a5:8e:7e:40:ce:
d0:cc:8f:7a:bf:18:f6:49:6f:36:b5:ce:55:a2:be:
52:b6:36:99:49:54:4d:ad:5d:c0:43:06:f8:e1:48:
b2:68:de:19:12:60:cb:f5:0e:07:17:46:89:8f:d8:
48:0c:10:3d:77:3e:df:7f:a1:46:7e:f2:99:62:fd:
99:d2:9e:38:68:f8:ee:21:fc:12:93:9d:a6:0b:59:
59:15:c2:31:b1:b0:8c:7d:96:6a:b9:40:7c:be:a7:
5e:20:7d:7c:7e:ae:ae:b8:3a:22:3e:7f:a8:cc:02:
af:82:96:d7:18:8d:fb:11:27:cf:ca:8d:ff:24:98:
a9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:71:61:E6:89:20:5F:8D:85:14:6B:DB:90:E1:61:AD:4A:EA:34:FD
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:9e:ec:3d:c0:13:68:26:6f:17:d5:f5:60:f5:c2:37:4a:ce:
77:87:cb:9d:59:87:0b:6f:e1:c5:87:55:82:56:16:b0:89:30:
ee:11:6b:95:a0:96:05:6c:fe:fc:28:0c:f8:5b:87:ea:00:84:
63:c5:30:58:37:2d:f8:ae:9e:2f:4b:19:68:0a:50:99:93:76:
f8:96:8c:9e:72:b7:6c:93:3b:80:37:f8:3e:e3:94:bb:ed:a9:
b1:51:70:ad:40:f7:30:ec:5f:9a:8c:30:28:11:e8:bb:32:0a:
20:87:01:95:46:6b:33:bd:e5:c6:ee:dd:85:04:f8:d7:b1:13:
04:6d:90:49:74:96:64:9b:fc:86:13:e6:d8:4b:3d:9c:51:12:
6a:f3:80:41:91:58:6c:82:8e:15:68:ca:d0:b2:ec:0b:63:85:
9b:26:cf:9c:29:d8:47:c0:69:87:1a:bc:47:7f:c9:7a:ff:55:
4e:d9:67:33:f5:67:63:d7:93:64:06:c1:9b:e8:b9:e5:c4:6e:
09:70:87:95:62:56:fc:36:21:36:1e:63:f5:f8:e8:02:bc:85:
7b:ae:84:8a:60:22:1d:3e:af:f8:9e:cc:c4:94:ca:f0:e1:1a:
88:a5:ba:d5:53:41:be:67:a8:e7:4e:f2:c5:63:79:b0:db:c0:
6d:ed:f1:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:35:00 2025 by rpki-client