Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
File: oUx52o8IwpnEYya3m55CTkmmh1s.mft (raw, json)
Hash identifier: FB71Fu/kxFdfx9XWFNvBOpCUKJCdC2KJHv+MGT7CxWo=
Subject key identifier: CF:9F:20:CA:55:F8:20:B5:28:59:AF:AD:E8:36:AB:91:4B:12:56:AA
Authority key identifier: A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
Certificate issuer: /CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Certificate serial: 019921B1E6CDEF0E23C7B73DAFBAC3B639F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
Manifest number: 1601
Signing time: Sun 07 Sep 2025 01:02:11 +0000
Manifest this update: Sun 07 Sep 2025 01:02:11 +0000
Manifest next update: Mon 08 Sep 2025 01:02:11 +0000
Files and hashes: 1: oUx52o8IwpnEYya3m55CTkmmh1s.crl (hash: yBgNWR1WLrIfuiS1w7b3FRgMbBk8HJ8VUkDz/UhAiVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:e6:cd:ef:0e:23:c7:b7:3d:af:ba:c3:b6:39:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a14c79da8f08c299c46326b79b9e424e49a6875b
Validity
Not Before: Sep 7 01:02:11 2025 GMT
Not After : Sep 8 01:02:11 2025 GMT
Subject: CN=cf9f20ca55f820b52859afade836ab914b1256aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fd:2b:f2:5d:a7:28:a0:5c:39:12:e8:c9:f1:
d5:92:16:05:ea:41:8c:96:64:80:62:cb:0e:ca:64:
10:08:75:de:1a:6a:ca:93:46:b8:ea:64:3d:19:29:
e0:ad:e5:7b:69:b4:dc:c6:06:1b:98:f2:cf:63:00:
78:8f:1f:d6:ad:22:47:6b:7e:7e:f9:e0:ff:08:d7:
e7:77:94:8a:53:ff:50:e2:eb:eb:ff:c8:c3:16:56:
40:60:eb:86:ea:35:f7:a8:a4:04:94:e2:fa:06:c2:
9c:46:0b:c0:6e:dd:04:d0:7d:51:57:bc:48:bc:52:
37:7c:e2:8a:7c:77:c0:d1:f0:cd:01:72:a9:39:00:
32:f9:61:18:61:96:95:96:ba:ec:60:97:1b:70:f1:
ce:e1:65:5d:8d:5d:c0:7a:22:dc:e2:8b:6e:8c:a5:
c3:30:80:c6:33:91:0a:38:df:ed:12:9d:a0:a1:65:
f7:fd:e0:fc:c2:c9:fa:ce:80:56:9a:6a:cc:3f:33:
58:2c:73:95:d2:db:dd:18:0d:bc:bd:65:16:00:f4:
0c:87:0e:27:1c:33:9e:ab:81:16:a8:50:e9:29:5b:
28:8f:94:e8:4a:85:74:f8:90:ac:f3:10:39:ae:67:
91:8b:df:7f:e5:ad:48:cf:9f:46:ae:29:5b:24:b9:
94:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:9F:20:CA:55:F8:20:B5:28:59:AF:AD:E8:36:AB:91:4B:12:56:AA
X509v3 Authority Key Identifier:
keyid:A1:4C:79:DA:8F:08:C2:99:C4:63:26:B7:9B:9E:42:4E:49:A6:87:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUx52o8IwpnEYya3m55CTkmmh1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/22eb53-4f60-411b-8409-d4c97ff6e11e/1/oUx52o8IwpnEYya3m55CTkmmh1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:20:b5:f0:f0:b4:6a:03:13:56:e8:21:e5:8f:ef:59:e1:50:
04:48:d6:5e:53:af:81:b5:66:b4:50:27:58:a2:64:d7:9e:40:
1b:0b:49:24:bd:fb:c2:4f:73:98:c5:5a:b5:f8:e4:51:3b:97:
38:eb:87:00:0a:b5:28:0c:37:6c:3d:49:e1:de:8d:0b:78:73:
c2:67:c9:cd:c2:69:5a:dc:cd:51:5c:80:a5:88:b6:e1:d9:3e:
7b:bb:9d:af:2d:e6:eb:74:13:5c:9f:b1:4e:2f:c9:7d:8f:ea:
b3:e8:16:f6:40:69:4f:a4:07:70:9a:ec:c5:d9:59:7e:75:c6:
b2:86:ce:48:f1:ef:5c:d1:d1:e8:4e:a0:40:26:c2:b6:d8:c3:
43:03:81:fe:89:8e:c1:21:8d:2d:cd:a2:ec:04:48:36:f3:ad:
80:ba:ff:31:bd:9e:29:3d:0f:78:fc:30:5a:2b:a6:68:80:13:
c8:fb:6c:ab:ad:a6:a5:d8:10:25:a7:05:21:0e:27:da:99:8e:
3d:48:5e:12:f5:db:c7:3c:fd:f7:97:ae:21:5e:7c:d7:45:3b:
20:a5:a0:80:cf:73:49:fc:ea:f6:4e:d5:56:02:25:b0:f3:c4:
60:41:41:44:00:aa:3a:0a:7d:6f:8c:15:88:ef:00:9a:13:c3:
75:e9:96:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:09 2025 by rpki-client