Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
File: OXqyKGxnhx2rRXpygyl_yMaIpK8.mft (raw, json)
Hash identifier: R8jf/FqsNwJnfZju9mYtQpNGiRiQy5QOd8J28f+M8ys=
Subject key identifier: 30:84:4B:EA:79:7C:1D:B3:AD:86:86:90:1B:D8:6B:80:4B:78:F8:19
Authority key identifier: 39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
Certificate issuer: /CN=397ab2286c67871dab457a7283297fc8c688a4af
Certificate serial: 01989F035BE2DC7B706A2C1C77184240D6DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
Manifest number: 162A
Signing time: Tue 12 Aug 2025 16:00:54 +0000
Manifest this update: Tue 12 Aug 2025 16:00:54 +0000
Manifest next update: Wed 13 Aug 2025 16:00:54 +0000
Files and hashes: 1: OXqyKGxnhx2rRXpygyl_yMaIpK8.crl (hash: y+LIU/3y4p93XP8fDa64NcyqTeHw7KE/b55REbU9z/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:03:5b:e2:dc:7b:70:6a:2c:1c:77:18:42:40:d6:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397ab2286c67871dab457a7283297fc8c688a4af
Validity
Not Before: Aug 12 16:00:54 2025 GMT
Not After : Aug 13 16:00:54 2025 GMT
Subject: CN=30844bea797c1db3ad8686901bd86b804b78f819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:4c:3f:c8:bd:d6:ad:3b:b9:e7:b6:e5:98:5c:
02:9a:06:9b:24:fc:b1:29:f0:92:f9:c8:4c:ae:1d:
5a:78:a8:f3:89:fe:8c:c2:57:52:4f:c8:20:c8:b0:
64:9e:15:a4:ce:32:f7:32:c4:c5:56:a9:e7:fa:76:
72:5c:12:88:ba:ac:23:45:0b:65:25:d8:68:4e:02:
80:0e:68:f2:1c:23:59:fb:c2:e6:80:7c:0d:c5:d8:
41:4f:66:88:62:6a:27:03:69:bf:60:9b:61:56:e0:
dc:ab:36:c2:2a:eb:84:07:36:b1:76:fa:fb:34:b5:
3b:eb:4c:11:4e:77:92:0b:17:e7:0a:4a:01:40:c0:
8f:d3:c6:08:61:1c:fb:f2:8d:b6:95:29:c5:2b:73:
da:8b:fa:c0:57:cd:46:0c:b7:93:68:96:ed:59:87:
b9:79:08:30:44:02:52:82:c0:d5:d4:5d:05:8e:9b:
36:ed:cb:6b:2c:3b:7c:bb:05:98:32:0a:5b:ef:1f:
4a:26:24:05:99:88:67:d1:55:9c:00:5f:02:0e:26:
0b:60:46:75:f7:dc:44:b6:0a:69:eb:a2:ba:c3:3a:
00:98:9a:22:63:da:35:ee:67:ff:a9:f8:a6:ac:2a:
5a:b5:09:4c:ce:df:33:bc:8f:58:e5:e0:b8:bf:48:
74:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:84:4B:EA:79:7C:1D:B3:AD:86:86:90:1B:D8:6B:80:4B:78:F8:19
X509v3 Authority Key Identifier:
keyid:39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:6c:37:b4:00:15:7a:4e:05:df:0e:76:aa:ea:6a:e8:6b:be:
03:19:03:76:84:00:6d:a7:53:2e:f9:15:de:56:05:d8:5d:44:
13:a6:34:69:d9:b7:01:e3:16:01:a8:41:da:a7:b7:da:3f:86:
91:ce:71:22:99:16:9a:1b:ac:a0:64:18:29:23:5b:bc:ce:32:
fb:b4:d5:2d:5b:2f:6f:81:8b:da:7f:8b:a4:6e:1c:94:0d:0b:
d2:f1:b4:11:d4:68:82:4e:43:12:92:ba:67:22:52:28:1b:1f:
a3:1d:68:16:61:59:69:40:c6:ad:d6:b6:4c:30:9f:12:18:51:
27:64:e6:ae:2f:4c:0a:26:0f:78:42:87:03:aa:0e:ca:2b:90:
b0:79:b1:ee:ea:a6:1f:8e:3e:4f:2e:30:4c:9c:dc:b3:a6:95:
31:6b:8a:9a:5d:fd:39:40:e7:dc:d7:30:4d:ad:17:94:d1:3f:
94:e5:ee:65:94:54:3c:dd:6b:48:a3:02:09:fc:3b:b0:2f:de:
98:6f:fa:18:c9:29:d8:45:c1:8f:56:e8:5a:b4:cb:19:0d:5c:
b5:03:22:ba:40:db:1e:c2:5e:cd:30:8b:c3:2f:48:fe:5d:bd:
48:40:82:8e:1f:a2:f3:14:d3:ff:33:f6:a5:0c:0a:74:56:28:
82:7d:fc:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:53:56 2025 by rpki-client