Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft
File: Of-PwW6S-8wHnYDWvj197fHQZo8.mft (raw, json)
Hash identifier: rgXWwplnUogWj9MRz2knMDNwZBv5tvNFGAko1c9WirU=
Subject key identifier: C3:D7:B1:69:E3:0E:F1:D6:44:85:85:45:65:A6:8E:68:6D:17:FE:79
Authority key identifier: 39:FF:8F:C1:6E:92:FB:CC:07:9D:80:D6:BE:3D:7D:ED:F1:D0:66:8F
Certificate issuer: /CN=39ff8fc16e92fbcc079d80d6be3d7dedf1d0668f
Certificate serial: 019896A611AD6E7727D3A23E393B9A806084
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Of-PwW6S-8wHnYDWvj197fHQZo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft
Manifest number: 0AA1
Signing time: Mon 11 Aug 2025 01:02:02 +0000
Manifest this update: Mon 11 Aug 2025 01:02:02 +0000
Manifest next update: Tue 12 Aug 2025 01:02:02 +0000
Files and hashes: 1: Of-PwW6S-8wHnYDWvj197fHQZo8.crl (hash: pmGA2FMwD11A6vCP2Op0EC1fFLnDK+SJLZ0e/bFRuV0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Of-PwW6S-8wHnYDWvj197fHQZo8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:11:ad:6e:77:27:d3:a2:3e:39:3b:9a:80:60:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ff8fc16e92fbcc079d80d6be3d7dedf1d0668f
Validity
Not Before: Aug 11 01:02:02 2025 GMT
Not After : Aug 12 01:02:02 2025 GMT
Subject: CN=c3d7b169e30ef1d64485854565a68e686d17fe79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:72:15:a9:43:15:8d:76:4e:24:9c:76:87:ea:
cb:e9:31:92:ab:8b:29:35:f0:82:c7:b0:e0:fe:af:
9f:13:dc:06:d9:f1:f6:ab:56:4e:f0:81:07:80:10:
04:c3:c9:9d:a8:a7:1a:f0:53:86:08:a7:39:31:a0:
65:41:8e:9e:d2:59:6e:61:7a:cd:3e:60:dc:9e:23:
9a:72:e8:a5:e8:ef:ca:76:3a:4e:82:3e:19:e8:59:
2a:d8:65:d7:fe:b4:f6:db:bb:f8:89:98:8e:f4:08:
2e:b0:5f:fa:03:f4:30:f1:22:43:f7:27:fb:e0:e5:
b5:4d:f2:fa:64:b5:3c:9a:2f:53:a4:eb:90:6f:e7:
ba:3f:ea:34:11:62:0d:ab:17:6e:57:7a:fe:d4:11:
3d:0c:d5:11:49:ce:e1:79:45:5e:65:85:18:7a:e9:
d2:0e:df:ae:26:a5:ff:b4:58:4b:34:93:b4:2b:01:
17:88:32:15:14:4c:05:ce:e3:cd:ac:e0:cb:82:d0:
c5:a5:44:28:92:b5:ff:81:d3:df:84:66:2e:51:e5:
04:9f:b2:e4:45:73:86:6f:fc:01:a5:ac:81:8b:9f:
15:32:dc:dc:da:88:c5:de:b4:f4:48:5c:98:89:43:
a9:d0:7a:02:98:53:c9:a6:09:de:ed:74:76:0c:68:
16:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:D7:B1:69:E3:0E:F1:D6:44:85:85:45:65:A6:8E:68:6D:17:FE:79
X509v3 Authority Key Identifier:
keyid:39:FF:8F:C1:6E:92:FB:CC:07:9D:80:D6:BE:3D:7D:ED:F1:D0:66:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Of-PwW6S-8wHnYDWvj197fHQZo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:2f:93:42:3d:6a:f3:62:e8:71:be:91:ae:08:be:96:37:ca:
c3:ee:38:61:08:42:74:20:63:11:d7:9b:05:61:1c:45:71:12:
b6:a7:75:27:70:e2:d6:4c:27:64:2a:f3:c5:29:22:15:49:48:
c5:56:4c:76:c5:3e:13:e2:89:17:39:bd:3a:07:bf:78:33:a5:
e2:60:0b:40:52:1b:a4:4c:fb:67:5f:02:53:9b:57:aa:44:57:
81:b9:b0:52:43:c6:dd:1c:6c:ca:93:ff:07:ba:47:1c:f0:df:
39:b6:6c:ac:99:c0:09:7d:de:6a:6c:1a:0f:24:69:a7:19:4f:
01:3a:10:38:28:db:0c:d6:2f:7e:05:ea:f9:ac:f4:81:cf:d3:
a0:e1:e3:79:f5:f7:68:66:77:3d:03:2a:42:eb:34:02:db:8c:
3d:a3:ac:22:2b:7e:60:9e:17:35:d4:f0:e3:e1:25:63:1d:0f:
3d:77:f9:2f:04:70:58:da:76:9d:28:38:60:64:1f:b2:16:c8:
f8:85:29:6e:7d:5f:45:41:92:02:22:80:2e:01:34:2e:a9:b0:
22:a0:f5:ef:fa:ae:4b:42:06:bc:a5:99:e1:3b:e1:31:66:50:
69:1d:a0:9b:c3:74:ff:3e:5c:19:18:5c:13:e7:68:fc:db:d3:
d9:b5:13:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiWphGtbncn06I+OTuagGCEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5ZmY4ZmMxNmU5MmZiY2MwNzlkODBkNmJlM2Q3ZGVkZjFk
MDY2OGYwHhcNMjUwODExMDEwMjAyWhcNMjUwODEyMDEwMjAyWjAzMTEwLwYDVQQD
EyhjM2Q3YjE2OWUzMGVmMWQ2NDQ4NTg1NDU2NWE2OGU2ODZkMTdmZTc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXIVqUMVjXZOJJx2h+rL6TGSq4sp
NfCCx7Dg/q+fE9wG2fH2q1ZO8IEHgBAEw8mdqKca8FOGCKc5MaBlQY6e0lluYXrN
PmDcniOacuil6O/KdjpOgj4Z6Fkq2GXX/rT227v4iZiO9AgusF/6A/Qw8SJD9yf7
4OW1TfL6ZLU8mi9TpOuQb+e6P+o0EWINqxduV3r+1BE9DNURSc7heUVeZYUYeunS
Dt+uJqX/tFhLNJO0KwEXiDIVFEwFzuPNrODLgtDFpUQokrX/gdPfhGYuUeUEn7Lk
RXOGb/wBpayBi58VMtzc2ojF3rT0SFyYiUOp0HoCmFPJpgne7XR2DGgW1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMPXsWnjDvHWRIWFRWWmjmhtF/55MB8GA1UdIwQY
MBaAFDn/j8FukvvMB52A1r49fe3x0GaPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2YtUHdXNlMtOHdIbllEV3ZqMTk3ZkhRWm84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC83NzkxMzktNTc1MS00N2ZjLTk2YWQt
ZjAxNzA3NTQ4NTRhLzEvT2YtUHdXNlMtOHdIbllEV3ZqMTk3ZkhRWm84Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC83NzkxMzktNTc1MS00N2ZjLTk2YWQtZjAxNzA3NTQ4NTRh
LzEvT2YtUHdXNlMtOHdIbllEV3ZqMTk3ZkhRWm84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAi+TQj1q
82Locb6Rrgi+ljfKw+44YQhCdCBjEdebBWEcRXEStqd1J3Di1kwnZCrzxSkiFUlI
xVZMdsU+E+KJFzm9Oge/eDOl4mALQFIbpEz7Z18CU5tXqkRXgbmwUkPG3RxsypP/
B7pHHPDfObZsrJnACX3eamwaDyRppxlPAToQOCjbDNYvfgXq+az0gc/ToOHjefX3
aGZ3PQMqQus0AtuMPaOsIit+YJ4XNdTw4+ElYx0PPXf5LwRwWNp2nSg4YGQfshbI
+IUpbn1fRUGSAiKALgE0LqmwIqD17/quS0IGvKWZ4TvhMWZQaR2gm8N0/z5cGRhc
E+do/NvT2bUTbQ==
-----END CERTIFICATE-----
Generated at Mon Aug 11 04:28:07 2025 by rpki-client