Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
File: OWpY9F0OyAFfoyauWP9YAzKJv50.mft (raw, json)
Hash identifier: Yhb9ePS18MU+5EzX7RJaotOQzlbQPvRzZM9CreXz1Aw=
Subject key identifier: 5E:14:08:6C:F3:04:CB:FC:AA:7D:9A:07:4B:59:FB:13:CF:6E:19:04
Authority key identifier: 39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
Certificate issuer: /CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Certificate serial: 019872983818191BEAD8E3D6FB42BA77AEBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
Manifest number: 1613
Signing time: Mon 04 Aug 2025 01:00:35 +0000
Manifest this update: Mon 04 Aug 2025 01:00:35 +0000
Manifest next update: Tue 05 Aug 2025 01:00:35 +0000
Files and hashes: 1: OWpY9F0OyAFfoyauWP9YAzKJv50.crl (hash: TFvwtNzkUcRkSP66PNABw9+Kb3XvdZywVyfSeWCayuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:38:18:19:1b:ea:d8:e3:d6:fb:42:ba:77:ae:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Validity
Not Before: Aug 4 01:00:35 2025 GMT
Not After : Aug 5 01:00:35 2025 GMT
Subject: CN=5e14086cf304cbfcaa7d9a074b59fb13cf6e1904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1a:91:d6:d9:ad:6a:ef:a2:57:d9:6a:75:dc:
25:a6:5d:8e:ca:83:35:25:e0:60:f8:ed:51:f1:4d:
71:81:89:3c:b3:0a:9f:c9:95:b1:8d:3b:b7:3b:9b:
27:90:47:5b:f2:45:af:64:96:09:29:08:c8:04:ce:
27:6d:ad:48:fe:88:a0:81:78:9d:8a:b1:a1:9d:0a:
f6:5e:78:c5:b2:cb:5a:13:a7:bf:27:a0:e3:06:56:
50:e7:11:1a:f1:08:a3:a0:3e:ad:2f:7d:a6:5d:f7:
f8:48:28:08:d7:bf:1e:d4:f7:a0:bd:ed:c6:47:4b:
13:3c:4a:b6:ff:d5:fa:08:a6:4e:5c:ef:10:95:78:
27:e2:e0:a7:ec:57:6e:34:f4:40:59:0a:61:9f:3b:
51:e6:bb:0f:69:f7:d1:a3:a8:c6:ff:9c:a4:e6:1d:
0d:09:4c:2a:fb:6e:2e:ed:62:3e:dd:70:82:35:83:
54:55:bb:c1:96:e0:de:ea:03:94:19:ce:8f:d9:d1:
3f:a6:5d:31:fc:f7:67:03:cc:da:9a:6c:5a:be:1c:
12:cc:1d:3c:22:eb:4c:59:0d:d3:48:4e:57:c4:2d:
77:87:55:f8:a1:b5:7d:91:e3:e8:a6:12:8e:13:a8:
da:bd:4f:2e:98:70:05:f9:5b:7c:b2:f5:8b:d2:a2:
30:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:14:08:6C:F3:04:CB:FC:AA:7D:9A:07:4B:59:FB:13:CF:6E:19:04
X509v3 Authority Key Identifier:
keyid:39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:50:17:c8:b7:e7:91:21:65:62:2c:07:7e:b2:c9:04:4e:99:
b3:c1:52:50:32:7c:92:31:d0:c4:4b:25:b7:a6:74:41:22:b0:
cd:8d:37:cc:67:2b:66:2d:51:2a:5e:3d:7e:dc:33:87:b3:3b:
0a:f8:da:37:9b:ec:fa:c8:79:19:1b:58:41:0a:e1:91:fa:5e:
b4:0b:20:32:7b:4e:28:4c:00:a0:fb:88:9b:27:37:89:21:e6:
97:ac:2b:dd:d5:0f:17:f4:11:d9:3a:8b:72:67:6c:86:6c:15:
58:71:57:21:65:7e:0f:31:97:b7:1c:67:52:5b:d7:b4:43:c0:
8c:cd:c4:58:e2:eb:46:b7:26:f9:e2:be:d0:36:24:ed:c7:d0:
12:34:ac:e7:d9:47:ff:c0:0e:b9:4d:e8:ed:90:7a:e5:56:64:
75:4d:ad:3a:ee:3d:84:56:82:3f:28:79:9e:e3:eb:c0:cb:af:
1e:58:b5:63:cb:c9:93:54:ab:53:8a:70:c2:09:3d:6e:26:e4:
96:7d:30:30:c3:56:ac:6c:da:78:de:1f:9f:e3:93:bb:2b:41:
28:18:63:dd:f0:83:97:64:f2:29:2e:96:1b:56:21:3f:5a:97:
af:4c:0f:f1:cd:af:e7:85:ce:37:5c:93:dc:62:42:88:62:e4:
7e:3c:f0:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:10:28 2025 by rpki-client