Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft
File: ogqr6NvAhXg0PCW4xomHpevAOMk.mft (raw, json)
Hash identifier: D4RWDb09GupXsZWeaAzyCCEJiOhFvomQdpGN+qrsRs0=
Subject key identifier: 57:55:22:CD:A6:A3:71:E2:AF:8C:6B:AA:30:16:63:33:97:F3:71:9F
Authority key identifier: A2:0A:AB:E8:DB:C0:85:78:34:3C:25:B8:C6:89:87:A5:EB:C0:38:C9
Certificate issuer: /CN=a20aabe8dbc08578343c25b8c68987a5ebc038c9
Certificate serial: 019A725C90D70969F3AB04F8097B3B9FD297
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft
Manifest number: 016F
Signing time: Tue 11 Nov 2025 10:01:00 +0000
Manifest this update: Tue 11 Nov 2025 10:01:00 +0000
Manifest next update: Wed 12 Nov 2025 10:01:00 +0000
Files and hashes: 1: ogqr6NvAhXg0PCW4xomHpevAOMk.crl (hash: d5x3x7YStqGliOrIix06aU/LHt54m2DfF+7d/GChWgY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:90:d7:09:69:f3:ab:04:f8:09:7b:3b:9f:d2:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20aabe8dbc08578343c25b8c68987a5ebc038c9
Validity
Not Before: Nov 11 10:01:00 2025 GMT
Not After : Nov 12 10:01:00 2025 GMT
Subject: CN=575522cda6a371e2af8c6baa3016633397f3719f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f7:87:84:9a:d5:36:d9:eb:e5:9b:58:27:c7:
91:c4:7d:07:c8:92:f3:33:84:c0:4d:2e:e1:97:af:
9c:0e:53:25:26:79:eb:59:a3:a4:ec:84:45:23:76:
87:96:65:ac:4e:52:30:5e:4e:6a:95:01:8d:65:08:
7d:2c:99:79:6b:d5:7c:2b:1c:43:c2:c7:b2:14:d0:
1f:04:2c:6e:52:05:39:8c:97:5b:86:da:35:67:aa:
c1:ef:cd:f1:5d:26:63:81:e4:0e:f4:50:38:e0:b7:
9a:87:85:2a:96:ef:c4:97:d2:00:a6:86:9c:95:cb:
62:75:21:34:02:70:4c:26:54:52:19:16:f9:3f:75:
aa:7f:5f:45:ca:2b:e6:6e:b2:89:80:a1:18:57:91:
23:13:de:bc:95:ef:c1:b0:6e:50:47:0f:e6:40:a6:
67:da:9e:49:eb:a2:45:3f:aa:f2:95:d9:f7:6b:26:
ad:22:ed:9b:15:17:5e:d7:01:cb:82:07:cd:d9:2a:
c1:25:3c:2b:ff:d4:2b:48:dd:c2:40:05:db:c2:38:
59:17:e8:95:30:9f:54:9b:8b:3a:74:61:42:0e:27:
e0:76:ce:50:ab:73:c6:b4:6b:7a:92:df:01:00:a7:
9d:83:14:f2:18:5c:c4:9e:5d:f4:ee:84:fa:54:e3:
25:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:55:22:CD:A6:A3:71:E2:AF:8C:6B:AA:30:16:63:33:97:F3:71:9F
X509v3 Authority Key Identifier:
keyid:A2:0A:AB:E8:DB:C0:85:78:34:3C:25:B8:C6:89:87:A5:EB:C0:38:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogqr6NvAhXg0PCW4xomHpevAOMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/87cd33-d623-4f11-ac26-71d649c3fd35/1/ogqr6NvAhXg0PCW4xomHpevAOMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:5b:b8:42:65:31:ea:f5:66:9b:88:1f:91:e9:13:eb:09:bf:
2e:63:d7:06:e6:f4:61:f1:5b:c8:ef:e4:32:50:c6:c0:c1:75:
12:25:ef:1c:41:85:8c:ea:5b:d6:15:44:0f:1b:1e:26:1e:0b:
85:4b:a8:f3:8d:d5:cb:c5:1a:91:32:aa:24:93:6b:54:aa:0e:
cc:05:e1:07:d8:23:04:b0:e3:8d:9e:37:c6:9e:07:7f:19:9c:
92:c9:93:85:81:15:be:be:2b:fc:42:aa:df:74:9c:0e:b5:82:
db:09:91:30:cc:9c:11:c2:29:80:c2:3d:43:47:62:b8:c6:03:
84:98:99:1b:9c:7f:3c:ef:ab:2b:3c:5f:3c:59:c9:aa:ed:84:
1b:c2:6d:9f:7e:d6:bb:80:b0:9f:81:a7:f1:bb:96:26:05:50:
a8:78:85:6d:21:55:e0:b1:f1:0a:a8:84:ee:d2:99:7b:81:07:
3c:c9:66:a6:5c:8f:97:df:e3:44:be:44:12:8a:d0:ec:63:b8:
20:a4:de:7c:58:79:01:58:0c:02:1d:d0:20:8f:52:c9:b9:20:
13:2f:52:f2:40:37:db:0e:d7:19:76:a3:93:08:dd:d0:d1:4d:
69:81:a6:69:c3:45:62:99:53:f9:90:17:fb:56:8b:f2:76:d9:
12:a5:79:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:57 2025 by rpki-client