Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
File: Os5p2XnZoNxneVEGweVayhVHCH8.mft (raw, json)
Hash identifier: 5IRldQhca3YwJEHnRx10t506ML5we5ZGpc4l2gYZG0s=
Subject key identifier: 08:2C:A2:7D:28:88:F6:3B:39:98:37:2B:B1:06:D9:76:97:1D:B6:6A
Authority key identifier: 3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F
Certificate issuer: /CN=3ace69d979d9a0dc67795106c1e55aca1547087f
Certificate serial: 019922553CF1494D2C55A38E7BF73E2E79C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
Manifest number: 166B
Signing time: Sun 07 Sep 2025 04:00:35 +0000
Manifest this update: Sun 07 Sep 2025 04:00:35 +0000
Manifest next update: Mon 08 Sep 2025 04:00:35 +0000
Files and hashes: 1: Os5p2XnZoNxneVEGweVayhVHCH8.crl (hash: xi8BTjIZsKdE65DLUnVo6Fli2r6gWwZXwklZcphrIwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:3c:f1:49:4d:2c:55:a3:8e:7b:f7:3e:2e:79:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ace69d979d9a0dc67795106c1e55aca1547087f
Validity
Not Before: Sep 7 04:00:35 2025 GMT
Not After : Sep 8 04:00:35 2025 GMT
Subject: CN=082ca27d2888f63b3998372bb106d976971db66a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:95:42:06:10:d8:2f:d8:7b:a8:97:a9:c8:5a:
cf:88:9d:ff:cd:1f:a0:04:24:9e:5b:ca:ea:57:db:
e0:11:ee:f8:79:2b:de:a5:7d:b6:ba:50:32:f1:cd:
14:fe:9d:de:15:82:02:a9:fb:25:eb:4a:01:a9:0a:
20:95:b8:d5:d7:0c:39:a7:3f:4c:53:4d:71:59:99:
c7:8e:c7:76:0f:c3:b3:43:ce:86:4c:f3:cd:c9:97:
14:80:59:ef:38:d6:46:0f:7a:9b:44:66:3a:45:92:
1b:42:5c:50:a5:bd:98:2f:47:72:17:86:c2:bc:4c:
8a:99:2a:c5:08:95:96:29:83:2a:85:5c:22:05:09:
e4:37:7b:70:1b:63:d5:22:32:74:62:92:ef:2f:2c:
0e:37:5e:f9:7d:fb:45:52:be:44:eb:b4:f8:6f:bd:
98:7e:a5:0b:d1:d2:cf:fa:b1:52:35:3d:c9:ea:e4:
4c:64:36:26:35:85:9a:d4:66:84:d4:f7:6e:fe:54:
4c:a3:34:a4:cc:cf:03:a0:c2:b3:cd:83:17:36:f9:
96:9d:b9:13:14:24:4e:5d:0a:1a:d0:d5:b7:7c:2c:
7c:76:e3:73:d4:51:bf:88:ed:47:bc:9d:ea:0c:77:
f7:bb:fc:4a:4e:fe:dc:e4:4c:c4:3d:67:6c:4e:db:
08:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:2C:A2:7D:28:88:F6:3B:39:98:37:2B:B1:06:D9:76:97:1D:B6:6A
X509v3 Authority Key Identifier:
keyid:3A:CE:69:D9:79:D9:A0:DC:67:79:51:06:C1:E5:5A:CA:15:47:08:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Os5p2XnZoNxneVEGweVayhVHCH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/afd99f-df55-4e97-886a-a9775aa8d812/1/Os5p2XnZoNxneVEGweVayhVHCH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:0b:a9:5a:24:f4:ca:a9:2b:11:13:b6:a6:cf:46:8c:72:4f:
4d:0a:c6:59:11:75:e0:38:24:c5:83:e6:7b:82:7b:d8:34:2b:
b5:4a:5f:ac:a7:56:4e:ae:de:1f:9d:40:3d:80:be:02:c9:7c:
42:38:eb:69:92:0b:64:d3:ad:3a:bf:c1:3a:ee:3a:16:b6:1f:
4e:af:e9:f0:e8:7d:54:67:12:4f:6f:83:55:ab:50:f0:6e:c2:
07:9b:c8:94:d3:8d:f0:e6:61:90:5f:f3:70:9b:a7:fe:55:16:
6d:77:06:81:af:87:68:32:23:b3:19:49:3f:b4:ca:b5:5b:40:
d7:e2:56:62:9a:71:44:3a:20:97:26:be:90:9f:be:67:dd:0a:
9b:de:be:95:e4:98:70:8b:65:ae:9b:dc:b8:87:bf:27:1f:ea:
ef:2e:26:d9:22:d1:89:54:d7:33:11:0d:24:ff:f0:fa:d9:97:
d9:4b:08:3a:5f:91:d4:f2:0d:2b:89:de:2e:6d:b8:bf:e9:72:
fc:8c:cb:72:f6:e0:5f:a9:7d:c6:f4:29:6a:c5:4a:a6:22:9a:
0f:d2:87:f9:51:8d:cf:62:cb:9f:24:d7:6d:2a:ae:c0:0c:d3:
26:6a:6b:7a:85:78:6e:d4:42:c5:59:bf:2a:11:ce:35:0d:97:
7d:ba:db:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:01:51 2025 by rpki-client