Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
File: OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft (raw, json)
Hash identifier: fr+KCXQfQjbQpROXbyZP1iA65+oKkpFWALQuis0NeIo=
Subject key identifier: 59:D2:68:6E:49:97:53:E3:7D:92:0D:55:07:12:CB:67:65:F1:EB:55
Authority key identifier: 3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
Certificate issuer: /CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Certificate serial: 0198868CC85877E329042000D2FBCD4B76EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
Manifest number: 0653
Signing time: Thu 07 Aug 2025 22:00:29 +0000
Manifest this update: Thu 07 Aug 2025 22:00:29 +0000
Manifest next update: Fri 08 Aug 2025 22:00:29 +0000
Files and hashes: 1: OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl (hash: YpYLW3SfZd8p8QV3Lv5bIDUDHM6qzkTFFQu/HvxsNww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:13:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:86:8c:c8:58:77:e3:29:04:20:00:d2:fb:cd:4b:76:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Validity
Not Before: Aug 7 22:00:29 2025 GMT
Not After : Aug 8 22:00:29 2025 GMT
Subject: CN=59d2686e499753e37d920d550712cb6765f1eb55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3c:04:3e:05:20:39:d3:e6:80:88:83:41:f9:
a1:f5:f1:7a:66:d5:89:a1:00:00:a2:6f:19:96:fa:
ea:35:7a:08:f4:80:bc:67:af:4a:21:8e:57:6d:3e:
68:ab:2f:f4:dd:19:91:76:e9:9f:31:94:36:c7:a2:
7c:6f:0d:21:bf:5e:33:66:66:19:52:36:84:50:a7:
bd:29:31:26:40:c8:ff:3d:e5:56:bc:03:74:88:5d:
4c:83:18:b5:6c:2c:62:c2:8f:5c:8c:93:63:b1:e9:
39:43:86:eb:bd:f1:f5:f5:e6:b8:40:b1:46:6d:34:
ce:49:07:0a:43:5b:08:17:ae:6a:0c:ff:ea:92:49:
f9:bb:c1:c9:dd:eb:5a:90:25:ae:4e:e7:40:de:8b:
43:ca:ad:38:e9:4e:62:35:3b:d6:9e:15:0d:c7:39:
35:d5:a8:ec:1d:b4:aa:56:e1:d9:42:a4:22:c2:19:
6a:64:63:95:f0:7a:eb:14:bb:73:d5:31:7e:b2:08:
ed:ca:15:81:51:ad:d6:2b:b0:a4:b5:b1:0b:4b:1e:
e1:2f:c5:6f:2c:bf:97:77:79:66:f6:49:88:f6:c6:
cf:04:e8:1f:6c:e5:6c:ab:f5:98:4b:ea:e2:85:24:
7d:61:39:2a:0b:ef:cf:24:3c:ca:d8:7e:ce:48:07:
f2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D2:68:6E:49:97:53:E3:7D:92:0D:55:07:12:CB:67:65:F1:EB:55
X509v3 Authority Key Identifier:
keyid:3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:d4:df:61:93:f7:3a:57:a8:c1:99:a4:68:07:46:80:64:ab:
bd:e8:71:ba:cf:69:46:56:d0:ea:18:57:bf:cb:30:c9:8c:fb:
6e:12:9d:b0:90:3f:04:05:ef:c2:6b:a1:0b:d1:a3:15:a7:5e:
83:52:d0:cf:4a:0c:a5:4a:23:53:de:14:33:c2:ca:d3:03:88:
60:69:fb:63:c3:8d:b6:e1:35:a3:7c:df:5e:93:3a:0b:fd:cd:
e0:27:c1:78:92:4f:af:1b:a8:4d:f1:88:ea:4a:e7:15:82:4f:
07:59:ea:e0:bc:4e:1f:fc:82:f9:10:17:7b:26:cb:e3:e4:87:
f4:23:bc:fb:d7:4c:be:33:6b:ae:bc:e3:02:1b:d4:34:6e:db:
04:79:ad:20:19:8d:c4:8d:e6:2e:b4:ca:5b:7a:62:ae:57:be:
59:77:b4:9b:85:8c:dd:54:5d:6f:20:e7:44:c3:d8:de:6c:7f:
3f:fb:e6:ee:b5:5a:78:92:51:7b:85:9a:f0:1f:b5:9e:c7:fa:
bc:e2:4c:cd:5e:d9:ec:21:03:a9:d8:12:d1:f0:d2:06:0c:d7:
82:0f:bd:1d:3b:8e:c8:cc:26:6d:e1:07:2f:26:1c:c5:92:93:
fd:01:34:4d:aa:b1:79:0b:c7:8b:f2:f4:55:5b:ea:24:85:91:
79:14:06:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:10:45 2025 by rpki-client