Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
File: OEzdzXTQQilYPSwr7tBz4AlrozU.mft (raw, json)
Hash identifier: QiliqHP60Krb/Y+Ogtx5C2yZ45Nh2Gymgz/gpxFZavg=
Subject key identifier: A4:CE:5C:F2:11:31:3B:EE:BB:41:87:BA:65:DC:10:A6:5B:E2:74:02
Authority key identifier: 38:4C:DD:CD:74:D0:42:29:58:3D:2C:2B:EE:D0:73:E0:09:6B:A3:35
Certificate issuer: /CN=384cddcd74d04229583d2c2beed073e0096ba335
Certificate serial: 019896A51DA016678EA31BF85E031BDFA8FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
Manifest number: 067B
Signing time: Mon 11 Aug 2025 01:01:00 +0000
Manifest this update: Mon 11 Aug 2025 01:01:00 +0000
Manifest next update: Tue 12 Aug 2025 01:01:00 +0000
Files and hashes: 1: OEzdzXTQQilYPSwr7tBz4AlrozU.crl (hash: 4y39RL4gBGYaVk8THQJwfyyGPGpITSIWr+jyX70HTTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:1d:a0:16:67:8e:a3:1b:f8:5e:03:1b:df:a8:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=384cddcd74d04229583d2c2beed073e0096ba335
Validity
Not Before: Aug 11 01:01:00 2025 GMT
Not After : Aug 12 01:01:00 2025 GMT
Subject: CN=a4ce5cf211313beebb4187ba65dc10a65be27402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b2:55:f6:20:b4:38:e5:5d:83:45:76:68:7c:
10:7d:7c:c1:c2:34:9c:c8:cd:35:6c:0e:19:51:ce:
57:fa:61:97:99:48:28:4e:b8:65:03:49:26:b5:eb:
7a:d4:30:0f:13:7c:8f:a8:11:a7:62:a1:b2:2c:6b:
2b:09:8e:df:49:0b:db:c6:4b:a1:7c:d7:4d:0c:18:
75:fe:e2:9e:29:0c:f2:a8:24:85:19:60:6b:6d:c0:
6c:a8:8f:a5:eb:ca:97:fb:c9:72:7f:4f:7e:99:60:
6e:32:c2:23:2f:15:76:d1:e8:77:cf:07:83:63:f1:
44:91:60:51:2c:cb:86:60:4b:67:b9:7f:45:e3:d2:
70:47:4f:46:e1:7a:a2:b7:39:46:bf:20:80:29:c8:
00:97:8f:7f:29:ae:8e:96:e4:8b:fd:fb:32:47:23:
57:e3:5e:12:79:10:d1:8d:32:af:8d:15:6b:7d:70:
55:3d:ab:5d:55:17:52:48:a8:36:28:9b:03:94:3a:
96:53:34:d6:0d:1a:1a:76:d9:4c:5a:19:61:cf:f6:
eb:c3:55:f9:89:3e:60:99:6b:56:81:3c:71:94:05:
57:4f:0c:0b:2d:f0:1e:e5:ea:d7:8b:87:24:0b:3f:
58:ad:5f:79:27:53:58:ff:f4:4c:fe:e9:7f:12:0a:
10:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:CE:5C:F2:11:31:3B:EE:BB:41:87:BA:65:DC:10:A6:5B:E2:74:02
X509v3 Authority Key Identifier:
keyid:38:4C:DD:CD:74:D0:42:29:58:3D:2C:2B:EE:D0:73:E0:09:6B:A3:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:45:20:25:30:91:49:45:6e:d4:33:b4:fc:a4:f6:9a:f8:9e:
51:7d:2d:72:3d:b1:8b:c6:d3:30:a1:4f:a3:11:58:1e:83:53:
b1:13:18:02:a1:c6:86:57:a9:0e:2d:c4:44:02:e6:0b:cd:6f:
b9:a4:8b:9d:1b:b5:09:ee:47:9e:dc:17:7c:41:cb:d5:8e:da:
db:36:f8:b2:4d:fb:09:e3:61:08:77:f4:3a:e9:7a:8e:fa:8e:
0e:6a:4f:f4:83:bf:3b:c4:bd:bf:9f:e1:cb:74:4f:5f:a9:8b:
be:51:f1:e2:4d:5d:ad:6e:cb:13:b1:b4:70:54:25:88:ef:c5:
cd:8c:9a:57:64:f2:c7:99:fc:2f:de:0b:07:62:49:a8:a9:7b:
1e:6d:1d:bf:c9:cb:f2:e6:9b:63:ca:0f:b3:0a:58:4c:e8:2d:
f2:f9:0c:fa:c1:98:bd:77:d9:1f:2c:5d:0f:74:48:78:2b:f5:
80:05:98:f5:c8:38:2a:0e:2e:ab:27:57:b7:36:76:6f:8d:a4:
9e:5f:ae:3f:5e:ec:d1:11:84:4a:5d:af:2d:2d:21:98:89:a1:
c9:3f:4d:7e:14:f6:71:ee:c5:ab:e1:6e:ee:c0:0f:b6:6d:fc:
4b:e8:88:92:15:d7:41:59:a5:11:3e:f0:82:ae:d8:d1:53:17:
ad:ce:c0:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:46:54 2025 by rpki-client