Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
File: OXqyKGxnhx2rRXpygyl_yMaIpK8.mft (raw, json)
Hash identifier: k7NrAlKLnkftmS+/MB3e0hzAGKebCR595sQ8QmiSnio=
Subject key identifier: 44:9A:06:18:45:51:6C:AD:EA:E9:F6:46:5C:92:B1:EA:6B:04:59:89
Authority key identifier: 39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
Certificate issuer: /CN=397ab2286c67871dab457a7283297fc8c688a4af
Certificate serial: 0199225596858724840FF411B72DB64FF662
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
Manifest number: 166E
Signing time: Sun 07 Sep 2025 04:00:58 +0000
Manifest this update: Sun 07 Sep 2025 04:00:58 +0000
Manifest next update: Mon 08 Sep 2025 04:00:58 +0000
Files and hashes: 1: OXqyKGxnhx2rRXpygyl_yMaIpK8.crl (hash: b1LWuGxArKzOIDNapQtNUYk/mT9vBliNfTBY8nkW9fY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:96:85:87:24:84:0f:f4:11:b7:2d:b6:4f:f6:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397ab2286c67871dab457a7283297fc8c688a4af
Validity
Not Before: Sep 7 04:00:58 2025 GMT
Not After : Sep 8 04:00:58 2025 GMT
Subject: CN=449a061845516cadeae9f6465c92b1ea6b045989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7c:eb:73:10:fc:bf:e8:99:c5:bf:11:a9:49:
f2:d7:ea:38:2b:94:2b:ac:75:11:15:6f:54:b7:e0:
b7:86:d5:e8:4c:0e:1d:45:89:9d:e0:c3:25:a7:83:
10:e0:07:b2:4d:51:89:29:d8:be:4a:bd:c8:55:4d:
30:b3:8c:dd:22:4d:35:11:02:d8:e2:e2:2d:8b:47:
d5:c0:7d:c0:5f:34:3c:7d:3f:6a:7f:16:75:c6:ab:
b2:02:c6:c0:bb:86:ca:f6:7f:4c:f6:e7:da:7b:75:
a4:1a:49:72:82:9e:a9:f6:e9:9e:74:b4:86:a5:a8:
96:3c:39:84:45:cf:ed:06:2b:06:78:7d:2c:6e:6e:
df:5c:6d:6e:5f:c5:2b:9f:98:e8:56:9d:e0:bb:25:
4b:68:a5:0d:9c:63:27:a2:93:75:5e:8f:8f:57:9e:
5f:2d:2b:ae:ca:23:64:fa:02:47:42:84:8e:3f:67:
0d:30:37:f6:12:18:a7:fa:77:ad:4f:03:63:3c:81:
f5:1f:e7:44:a9:9f:6b:07:3b:a8:4c:8b:47:e0:c0:
70:cf:48:2d:70:91:f6:15:43:bc:5b:a8:d9:fa:ac:
a8:ec:a1:cd:09:42:48:35:a0:b0:85:d7:80:d6:26:
92:8f:dd:05:1a:ac:17:4b:63:5a:2c:ec:cc:35:e2:
c3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:9A:06:18:45:51:6C:AD:EA:E9:F6:46:5C:92:B1:EA:6B:04:59:89
X509v3 Authority Key Identifier:
keyid:39:7A:B2:28:6C:67:87:1D:AB:45:7A:72:83:29:7F:C8:C6:88:A4:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXqyKGxnhx2rRXpygyl_yMaIpK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2b2124-8794-4a8b-9930-3323fd060b9b/1/OXqyKGxnhx2rRXpygyl_yMaIpK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:19:8e:fd:19:a7:b3:32:6d:bb:6a:88:5f:1d:59:4b:61:ff:
f6:53:53:c4:9c:eb:22:bb:f9:1c:95:3c:d5:0b:fd:cf:33:81:
ff:6e:d5:e4:dc:1d:1b:62:6f:60:98:6f:95:48:96:db:79:1b:
55:72:26:a0:b7:04:67:f6:a7:00:6b:63:d1:68:95:3f:4a:a7:
e9:63:df:14:8a:a0:97:7f:9d:6c:1f:e2:8d:e6:87:f0:5c:43:
f7:a3:ac:79:7a:5e:b1:60:90:2b:12:c7:1a:7f:48:81:41:b0:
91:9c:57:83:8d:5b:63:db:8b:21:b9:e5:53:26:95:23:c4:1b:
17:86:f8:c2:ce:68:d8:d8:42:b1:4c:61:c8:31:9c:96:0c:a7:
96:f0:46:05:52:ad:7b:65:96:d0:ed:9c:d1:c9:cf:56:9e:78:
f9:34:8f:74:c2:15:eb:e6:3e:7c:5d:56:d0:b9:7c:75:2b:9e:
bc:d5:cd:ee:97:85:b0:b0:6c:82:d2:31:57:86:b6:06:6c:27:
18:b2:ed:66:af:dc:65:b5:07:5c:dd:4e:69:d9:f4:94:cf:7a:
42:83:82:ea:ac:11:4f:30:2d:06:bf:4d:43:af:5f:53:01:35:
88:9c:8f:ee:a3:89:ab:c4:cc:14:c6:e9:64:40:37:d0:ce:06:
78:39:83:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:23:18 2025 by rpki-client