Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
File: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft (raw, json)
Hash identifier: UYw3Gp3OFig3Zq4Waw4XcBLajOF/9p1pTikK+ik36Oc=
Subject key identifier: BD:A2:E3:FC:EC:85:AA:3E:29:C7:A9:E4:28:31:82:FC:3C:25:14:FE
Authority key identifier: 39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
Certificate issuer: /CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Certificate serial: 019A4E1880B3BB30DC3F334E1238D46C52ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
Manifest number: 0463
Signing time: Tue 04 Nov 2025 09:00:19 +0000
Manifest this update: Tue 04 Nov 2025 09:00:19 +0000
Manifest next update: Wed 05 Nov 2025 09:00:19 +0000
Files and hashes: 1: Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl (hash: gT8XWZUyBBmxE6/PGtMIT0tMUbpo8xRLwLijw7oNrOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:80:b3:bb:30:dc:3f:33:4e:12:38:d4:6c:52:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ef4aa5977f1f37133e7310809fff8935c0c8bc
Validity
Not Before: Nov 4 09:00:19 2025 GMT
Not After : Nov 5 09:00:19 2025 GMT
Subject: CN=bda2e3fcec85aa3e29c7a9e4283182fc3c2514fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:33:b0:67:4a:80:61:ce:d8:ca:b8:7f:70:c6:
c6:17:03:9a:92:a4:33:d4:94:48:e7:f0:9b:fb:5c:
d0:62:a8:84:26:36:25:b1:9e:81:00:69:92:ee:ed:
1d:ed:49:c0:b4:b4:2d:02:3d:4b:26:ab:96:60:4d:
5d:78:5f:b3:b7:be:e8:13:84:6f:2f:e3:c9:88:cc:
8a:28:8a:b8:e3:5e:85:e4:d6:a2:b4:6a:7f:be:52:
ca:bd:ec:83:1d:f7:0f:99:26:58:24:f7:30:77:f9:
84:e5:f9:f8:54:13:5f:33:2a:36:4d:63:58:fd:5d:
3c:fa:9d:b6:35:4f:5e:f3:70:36:86:eb:c0:f2:03:
67:75:4a:32:33:70:18:f7:22:30:ad:75:41:97:c6:
d7:02:9d:75:32:5d:8e:3f:3f:5c:c7:df:63:d0:bf:
55:a9:33:8e:58:0d:d6:18:26:40:e8:eb:ef:f3:d2:
6e:a2:fd:7f:f6:28:dd:07:88:96:99:92:5b:37:f6:
c5:81:2b:cc:1a:64:e4:8e:ed:98:04:1c:6d:4b:ae:
a4:0f:c4:13:f1:7f:33:ae:81:4a:1a:bc:28:4b:55:
91:d2:41:66:ed:d2:de:ab:60:fe:e0:89:37:12:5a:
8b:f5:11:98:63:34:bf:bc:8d:1c:4a:5e:76:9e:fc:
5f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:A2:E3:FC:EC:85:AA:3E:29:C7:A9:E4:28:31:82:FC:3C:25:14:FE
X509v3 Authority Key Identifier:
keyid:39:EF:4A:A5:97:7F:1F:37:13:3E:73:10:80:9F:FF:89:35:C0:C8:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/148f71-ab2c-4409-ae1f-e7d5fce6bfac/1/Oe9KpZd_HzcTPnMQgJ__iTXAyLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:e7:c5:3a:39:56:c6:b8:69:00:01:7e:73:ea:8e:8f:e8:bc:
9f:03:41:3e:79:2b:66:7d:df:3d:da:0c:2a:48:ac:4a:58:72:
9e:06:db:94:ca:f6:56:c0:0c:df:fe:39:e4:52:d8:34:91:71:
86:c1:75:4e:50:65:0c:33:94:8f:48:a2:71:a3:b9:5d:49:23:
4c:ed:82:45:35:db:f7:c4:5d:6e:f2:85:1a:8a:6a:1d:ed:7c:
e3:a3:bf:99:7e:36:9f:d5:a1:87:f2:92:50:a9:9f:d7:35:2d:
ed:81:5f:ba:e3:20:4a:6b:60:07:12:2e:8c:7a:88:b4:da:30:
7d:62:48:5a:41:07:81:76:0c:2e:1e:98:38:63:cf:c5:73:ff:
91:8f:a1:88:6b:2e:74:36:27:4e:39:e8:52:1e:ba:51:62:66:
24:ae:1f:4d:80:5a:94:51:67:a0:7d:48:c5:98:96:54:fd:87:
5c:07:5a:0b:81:b3:9c:6c:4c:1d:ec:e0:46:e4:b3:5c:47:a2:
fd:90:0d:2d:c3:f7:90:76:6c:14:26:5a:0b:c5:ef:7e:f0:29:
6a:04:a6:0e:74:5e:f1:9d:ad:89:76:3a:00:9d:ca:53:5a:e4:
b7:b4:07:20:01:57:a4:06:9c:79:79:30:88:b9:26:13:fa:b6:
fb:71:c1:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:38:03 2025 by rpki-client