Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft
File: jNtFdj7woZYpOzOAyIj4Oox803c.mft (raw, json)
Hash identifier: S4Zw+UM5k8dVxkWD28dM8YRwWkWhyPgNHI4Ry/D5ef4=
Subject key identifier: D3:33:1A:B9:93:A0:9E:96:E6:B4:DA:9C:5E:E2:6E:4E:06:F8:FC:04
Authority key identifier: 8C:DB:45:76:3E:F0:A1:96:29:3B:33:80:C8:88:F8:3A:8C:7C:D3:77
Certificate issuer: /CN=8cdb45763ef0a196293b3380c888f83a8c7cd377
Certificate serial: 019847E56489F85832C02125B79703519621
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jNtFdj7woZYpOzOAyIj4Oox803c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft
Manifest number: 04D3
Signing time: Sat 26 Jul 2025 18:01:12 +0000
Manifest this update: Sat 26 Jul 2025 18:01:12 +0000
Manifest next update: Sun 27 Jul 2025 18:01:12 +0000
Files and hashes: 1: jNtFdj7woZYpOzOAyIj4Oox803c.crl (hash: glUUW3qmBJ5Tx2RXg1FKVG5S2+7rYz5hgwrpdAwCYD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft
rsync://rpki.ripe.net/repository/DEFAULT/jNtFdj7woZYpOzOAyIj4Oox803c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 15:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:e5:64:89:f8:58:32:c0:21:25:b7:97:03:51:96:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cdb45763ef0a196293b3380c888f83a8c7cd377
Validity
Not Before: Jul 26 18:01:12 2025 GMT
Not After : Jul 27 18:01:12 2025 GMT
Subject: CN=d3331ab993a09e96e6b4da9c5ee26e4e06f8fc04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ba:df:d8:a9:b8:8c:76:76:96:58:ba:99:86:
29:83:ab:16:4f:84:46:27:d2:be:58:d2:ef:19:4f:
89:7b:be:ac:37:2b:7f:05:6d:7b:2d:d7:3b:d2:37:
21:58:86:25:91:01:5c:a8:cd:4b:f5:8b:b7:3c:e1:
6c:78:9e:ce:e1:fb:e3:85:6d:15:a5:4d:0c:49:5d:
55:63:46:bb:d8:1a:51:44:1b:e3:80:e9:56:b6:66:
31:5c:e0:7f:47:10:8d:0a:6e:d4:cb:f4:bb:a9:36:
b8:d1:c6:08:d5:be:2c:0c:70:cc:87:09:40:eb:ab:
ce:fa:3a:2d:c4:c2:d6:a8:c8:42:91:19:5a:bf:3c:
a9:be:c9:e7:f7:d5:44:01:dd:7d:0a:6c:f8:22:13:
4c:9c:1a:1f:74:24:d8:11:dd:d5:ed:34:e6:96:ab:
ba:5d:44:91:f4:e7:4e:b5:45:5a:f0:f0:af:7a:5d:
46:07:c5:53:05:3b:0f:7c:db:81:f2:eb:b4:20:b8:
7a:c6:1d:f1:07:a4:20:f4:86:dd:b7:93:cc:a0:3e:
f1:fe:d9:3f:92:f8:ec:ad:09:9f:58:61:9c:e3:69:
51:9f:ad:74:60:9f:b4:11:43:cf:34:0d:54:6e:be:
88:90:c8:ac:df:ea:ad:23:57:c3:fd:12:03:00:da:
61:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:33:1A:B9:93:A0:9E:96:E6:B4:DA:9C:5E:E2:6E:4E:06:F8:FC:04
X509v3 Authority Key Identifier:
keyid:8C:DB:45:76:3E:F0:A1:96:29:3B:33:80:C8:88:F8:3A:8C:7C:D3:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jNtFdj7woZYpOzOAyIj4Oox803c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/e852b6-76e2-40ef-a7be-53d3b9874edd/1/jNtFdj7woZYpOzOAyIj4Oox803c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:78:8c:68:33:a3:8f:61:59:08:ee:33:02:06:bb:15:af:5f:
98:f3:01:88:08:17:d0:8d:ee:ed:81:7e:c6:0e:5d:2c:10:cf:
1f:0b:84:28:3d:c2:52:01:16:5c:85:0b:9c:64:85:eb:23:75:
54:7b:53:5a:dc:f4:2f:36:d6:d1:90:13:c4:be:17:0b:8a:4f:
04:51:df:d1:34:38:6f:fe:e2:21:f2:49:52:37:5f:b6:77:84:
69:24:72:3c:bb:e8:f4:98:da:37:a0:97:76:0d:ba:e3:34:ba:
4a:db:62:86:a8:43:80:de:fb:ec:31:fc:3d:2d:46:f9:b1:69:
8a:44:e9:38:56:b3:a8:05:98:48:10:64:2a:73:88:ad:83:97:
ca:e0:89:bc:30:0b:72:a8:51:b1:ee:1b:68:fa:db:2c:ae:98:
0d:80:2e:f7:b1:b7:7f:e5:3c:36:47:40:93:9e:7f:c7:33:28:
b6:d4:a4:70:61:a3:94:17:c0:c5:0d:b0:a5:55:25:03:4a:d2:
2c:a3:90:a0:e7:dc:87:e4:f5:43:27:d4:b6:c0:0f:8d:cd:3d:
37:d4:b5:b6:d9:e8:93:41:ff:b7:b8:f2:23:c0:43:81:ca:3b:
a7:13:2e:8d:13:da:dc:7e:6f:e1:66:2e:3e:21:61:95:05:b3:
84:0a:fd:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 00:15:12 2025 by rpki-client