Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
File: OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft (raw, json)
Hash identifier: rP/Q3qkybOweLie4zwuMW7kUYnZlGwjKWG5qeQ8GYLI=
Subject key identifier: 96:99:4D:39:5D:6C:50:6C:61:FF:2E:03:89:E4:26:A6:7E:99:25:23
Authority key identifier: 3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
Certificate issuer: /CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Certificate serial: 019A2B8C62CBAC82CD425C2237D85D504F01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
Manifest number: 072D
Signing time: Tue 28 Oct 2025 16:00:11 +0000
Manifest this update: Tue 28 Oct 2025 16:00:11 +0000
Manifest next update: Wed 29 Oct 2025 16:00:11 +0000
Files and hashes: 1: OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl (hash: aoOtdNXiZwvayP2imgD5Emf2trh5QJAQUWkA2isRh20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2b:8c:62:cb:ac:82:cd:42:5c:22:37:d8:5d:50:4f:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Validity
Not Before: Oct 28 16:00:11 2025 GMT
Not After : Oct 29 16:00:11 2025 GMT
Subject: CN=96994d395d6c506c61ff2e0389e426a67e992523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:54:61:ec:8a:13:0c:cc:6b:10:e5:8b:36:ec:
17:65:ff:59:d1:60:3b:d5:dd:f3:90:c7:4f:ff:8a:
fd:c8:00:e5:8f:9a:1f:95:e0:6a:74:be:b4:65:e5:
2b:35:63:9e:fb:d0:ea:37:9f:22:12:24:94:59:fb:
24:7e:48:91:bd:5e:46:21:8b:16:b1:6f:ed:d8:ac:
02:a6:2f:a2:ff:1c:e3:c2:31:35:dc:f5:bb:ae:1e:
0c:2c:6b:45:63:b3:8b:c5:5d:d5:33:71:0a:91:e7:
5d:44:e4:77:cc:bf:b0:a5:30:22:4e:21:40:de:5f:
87:60:0a:92:8e:b3:2e:0c:23:56:5f:61:b7:f3:0f:
e5:82:a1:52:0b:07:f2:3f:a1:92:8e:5a:f9:33:e8:
ad:62:08:7b:f4:ec:d4:ac:ab:6e:7c:71:39:5e:63:
c0:77:0b:58:16:c7:5b:0c:6f:a3:da:65:22:84:54:
50:b3:9a:20:90:1d:ad:ce:c4:88:7f:db:5b:30:63:
3b:fd:d5:1f:ec:f9:e9:a3:60:53:35:b9:81:e2:18:
a5:3e:f9:9c:79:3f:31:49:a4:d3:91:cc:8e:28:9f:
0e:c2:e2:fb:72:96:93:ab:1d:6c:16:37:70:61:2d:
e3:7a:fe:7c:05:2f:ea:61:14:d1:c8:fa:72:ed:8c:
5f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:99:4D:39:5D:6C:50:6C:61:FF:2E:03:89:E4:26:A6:7E:99:25:23
X509v3 Authority Key Identifier:
keyid:3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:e1:ee:34:aa:c1:90:87:04:c7:e2:7f:2d:f0:2c:70:3c:96:
a4:e8:20:a8:9e:91:7c:98:6c:f9:86:22:f7:a3:98:83:39:88:
60:ae:79:e5:36:0c:4e:77:69:d4:72:e6:22:b5:b8:6c:92:f7:
df:2c:71:bc:f1:ff:c1:a6:59:de:ce:00:81:4d:98:ac:17:f7:
79:57:74:3d:8b:2d:10:31:5e:cd:3d:e2:9c:3e:2e:66:ee:55:
c2:12:90:13:2f:8b:8b:ac:42:fa:a0:dd:52:e4:eb:81:eb:4f:
2d:99:71:b7:ef:9c:ea:44:f8:d4:77:ba:6f:c5:52:e9:12:22:
64:c7:7f:1b:d3:85:20:99:6e:2a:b1:35:76:e8:78:96:78:80:
34:29:2f:8d:e4:52:2d:70:f1:bd:97:75:65:6b:20:2a:29:f2:
aa:a9:bc:4a:99:a1:25:d8:ae:e2:e9:6e:58:32:ef:d0:36:05:
48:41:97:2b:85:2a:9b:cc:8a:dc:6f:84:45:7f:9c:4b:99:ae:
3f:ca:68:6c:07:87:c4:51:1b:3e:89:80:1f:33:77:d1:66:a6:
f8:7b:e7:c5:9f:fa:00:49:a3:81:75:ee:89:31:80:1f:c1:60:
c5:58:67:07:74:6d:b3:64:f9:ce:5e:d4:31:a1:b6:b2:9d:4d:
69:f3:0a:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 00:20:58 2025 by rpki-client