Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
File: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft (raw, json)
Hash identifier: sY7VVggvWjTRAr0baQtUDPt9GYvKSBiMylMZUDsSDRw=
Subject key identifier: 35:A5:F0:84:C8:54:E8:18:04:10:3B:6E:53:33:39:BF:FA:41:EC:A1
Authority key identifier: 39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
Certificate issuer: /CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Certificate serial: 01987306A2A370D3429FE5967780B5D7535C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
Manifest number: 036D
Signing time: Mon 04 Aug 2025 03:01:11 +0000
Manifest this update: Mon 04 Aug 2025 03:01:11 +0000
Manifest next update: Tue 05 Aug 2025 03:01:11 +0000
Files and hashes: 1: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl (hash: a5+ZoSC0CaGjv4RdyxbpKpzdlH83Kvgd2FXCuilI0FA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:a2:a3:70:d3:42:9f:e5:96:77:80:b5:d7:53:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Validity
Not Before: Aug 4 03:01:11 2025 GMT
Not After : Aug 5 03:01:11 2025 GMT
Subject: CN=35a5f084c854e81804103b6e533339bffa41eca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2e:52:6d:13:4d:0e:29:1d:6d:63:64:58:8d:
1f:ec:49:01:1a:a2:9b:0e:5e:11:eb:c3:e4:1c:2c:
17:19:fc:f9:df:23:16:e9:0c:86:8b:be:6c:41:ad:
84:e1:00:99:33:cf:96:b5:72:10:55:aa:8b:a1:e6:
36:95:15:d1:d5:2b:33:50:96:ee:0e:3f:e4:b7:52:
93:38:7c:72:3f:99:73:b8:c1:9a:63:a7:dc:7b:79:
43:e2:ba:58:76:0a:28:1c:d8:f1:86:a6:a2:5b:e8:
15:a1:60:48:a8:e9:28:6a:40:9d:6e:55:f7:8f:81:
eb:3b:bf:53:19:bf:ba:9d:96:22:6e:a7:d2:b7:3d:
a8:0e:59:90:95:52:0b:a1:46:04:33:5b:94:75:15:
a6:34:00:10:45:e6:f3:5a:a8:06:96:83:b4:c1:ef:
d6:f8:09:c6:55:38:d9:e1:07:f6:de:6e:45:cc:08:
d2:99:a4:49:37:92:60:11:1c:14:e3:43:76:ea:03:
b8:0b:e7:fa:4b:20:08:a2:72:8f:b6:18:d9:d9:7b:
cd:02:44:a5:6a:b8:19:ac:75:2a:63:86:4b:c0:e3:
57:e9:33:1a:e9:40:19:de:96:ff:1e:00:66:21:73:
f3:69:69:3d:fb:bb:d3:d5:97:32:a3:f0:b3:f0:59:
15:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A5:F0:84:C8:54:E8:18:04:10:3B:6E:53:33:39:BF:FA:41:EC:A1
X509v3 Authority Key Identifier:
keyid:39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:35:a8:3e:88:3f:50:88:c6:67:cb:5e:ba:c9:fa:72:01:53:
b2:ec:89:8f:e1:a7:26:06:ef:8f:d3:f6:88:b8:01:e3:62:6c:
b5:d6:93:d4:8a:1f:81:0b:b8:67:8f:db:16:01:02:47:ad:63:
d3:e3:cf:49:e9:74:97:e1:62:0a:9f:20:d4:3f:85:7d:2d:ef:
10:98:bc:1d:ae:c5:cc:db:cf:4e:88:19:8b:0d:26:e7:8c:54:
e7:2a:0d:e9:88:e1:9e:6f:c3:36:30:9c:32:21:18:2e:75:4b:
a5:d1:79:db:17:a2:1a:bc:12:31:57:cd:03:67:67:66:e0:6e:
8d:f2:1f:c3:c7:20:e5:12:a3:b1:1d:65:8f:91:03:6c:4d:80:
c4:f6:6e:72:6f:db:1b:8e:a5:46:8f:43:1e:fb:c0:65:c0:e6:
96:e9:54:84:7e:3d:56:e8:dc:63:c1:9c:70:95:61:1c:e9:5d:
2b:e8:6d:d9:9c:9a:d7:8d:71:a9:5f:0d:ab:6d:c7:0d:57:a8:
64:e8:9e:42:8e:e8:a3:29:56:e3:d1:76:83:04:a3:12:9b:b2:
2a:1a:45:b2:e4:3b:08:ea:db:49:bc:ec:fe:e0:fd:0e:ce:a6:
2b:e0:70:7e:04:5d:19:01:2d:23:41:cf:fd:ce:cd:cf:11:5e:
22:d7:bf:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:24:17 2025 by rpki-client