Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
File: OWpY9F0OyAFfoyauWP9YAzKJv50.mft (raw, json)
Hash identifier: 7Q7CUfy5QqkRQx0PVSDf3GukH/szRnUlzW+2PBsCp48=
Subject key identifier: 65:A7:BB:61:17:2B:4A:E1:38:91:79:0B:87:4A:E9:0E:A2:73:04:7D
Authority key identifier: 39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
Certificate issuer: /CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Certificate serial: 0198443E94D1A4FB72D6785B9C58AC2764CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
Manifest number: 15FB
Signing time: Sat 26 Jul 2025 01:00:08 +0000
Manifest this update: Sat 26 Jul 2025 01:00:08 +0000
Manifest next update: Sun 27 Jul 2025 01:00:08 +0000
Files and hashes: 1: OWpY9F0OyAFfoyauWP9YAzKJv50.crl (hash: 1kpWyrTckL5XO6Tp5qKEO13EjkP/Pagk8QI/M6fdIH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 21:50:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:44:3e:94:d1:a4:fb:72:d6:78:5b:9c:58:ac:27:64:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=396a58f45d0ec8015fa326ae58ff58033289bf9d
Validity
Not Before: Jul 26 01:00:08 2025 GMT
Not After : Jul 27 01:00:08 2025 GMT
Subject: CN=65a7bb61172b4ae13891790b874ae90ea273047d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a8:ee:e3:88:fc:f6:3b:53:f3:fd:0c:fc:87:
d9:c4:c1:22:56:04:7c:b3:45:ce:5c:ae:f5:e9:0d:
68:33:df:c2:dc:31:7f:4e:53:9f:44:3b:fb:63:f7:
25:c4:3d:64:0f:0d:15:c2:b4:b6:62:0c:1b:32:c2:
a2:6e:39:ad:90:37:71:2e:ac:7b:54:39:37:b0:39:
de:3c:1a:a6:b5:d3:e2:55:3b:3d:2d:f0:75:08:28:
19:b3:ce:92:02:f5:4c:b6:90:15:7e:57:57:4b:15:
e2:62:3e:ef:ec:31:b5:e6:34:1b:eb:2a:01:81:19:
bf:d1:80:47:70:50:33:b9:56:7d:71:78:37:52:5e:
e4:d9:f2:cb:7b:66:63:9f:04:07:fc:bd:6b:ef:33:
33:84:4d:16:a7:58:e0:02:13:41:b6:f6:e4:0b:f7:
c0:f9:cb:19:ff:01:1e:0d:1a:45:82:64:e9:a8:d9:
f0:c6:6f:97:0e:99:a4:5b:81:56:ad:8c:3d:27:6e:
06:08:22:e4:a3:c7:13:d2:4f:57:fe:96:8a:9e:d9:
10:d6:3b:1a:97:20:e6:6c:67:da:52:77:e3:2f:60:
45:28:46:e1:83:37:ee:6e:df:93:5b:3c:86:6d:75:
52:c3:ff:cc:7f:7e:6d:3e:a9:a9:b6:32:a9:58:f4:
94:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:A7:BB:61:17:2B:4A:E1:38:91:79:0B:87:4A:E9:0E:A2:73:04:7D
X509v3 Authority Key Identifier:
keyid:39:6A:58:F4:5D:0E:C8:01:5F:A3:26:AE:58:FF:58:03:32:89:BF:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OWpY9F0OyAFfoyauWP9YAzKJv50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/495c34-95f9-495e-b1c8-474f2cf6e62a/1/OWpY9F0OyAFfoyauWP9YAzKJv50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:04:ca:46:29:8c:c4:9d:fd:71:90:b4:36:0d:8a:1e:52:a9:
4b:d4:82:47:85:d1:bc:6a:44:52:63:5e:78:63:f8:34:3c:6f:
a8:17:ca:16:06:3d:07:7d:be:e2:c4:c2:e2:32:0e:1d:ef:56:
05:27:74:d0:21:65:06:79:6c:cb:db:d0:f5:9c:6c:86:70:c1:
5e:4a:81:65:22:8e:37:00:3b:6c:7c:b7:e8:35:10:ab:60:b8:
e0:b0:1f:1c:a5:26:1c:d0:32:7d:2e:f2:9a:c0:30:9d:f2:71:
3d:2e:90:42:53:49:12:8b:5f:6d:5e:45:4c:60:15:a4:01:86:
e5:f2:05:3d:c5:3c:57:dd:30:13:e6:7d:46:48:cc:0c:9b:8b:
13:b9:c3:f7:cc:fe:25:c2:af:2e:4d:94:c4:3d:d1:37:78:39:
e4:83:dd:a6:e1:7d:65:b1:1e:73:88:cf:d5:31:4d:3a:82:59:
71:b4:c3:91:bb:d0:aa:8f:ff:0a:e7:2c:f5:2a:07:42:4d:f6:
2f:25:95:ee:7e:6a:db:31:2a:f1:64:4c:8f:cb:df:7c:1c:75:
92:60:7a:8c:c8:6d:85:62:b1:ec:e8:64:82:3b:74:b3:db:ab:
1f:b1:2d:d2:62:50:08:7e:bf:06:4e:30:54:ed:a3:fc:77:52:
78:4a:80:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 06:35:44 2025 by rpki-client