Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
File: dZxU7z8HSxxmiPmXVM2KONmfbKw.mft (raw, json)
Hash identifier: 6VBgEHixGf3SIs2uyyhhg504rDOC1t5kutISKsZrqZ0=
Subject key identifier: 34:6E:32:D4:E0:CC:B7:C5:54:65:E4:F4:4E:3B:0F:0C:45:8F:99:89
Authority key identifier: 75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
Certificate issuer: /CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Certificate serial: 0198481B59000FF823A893C20EA0EBE7B722
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
Manifest number: 09A0
Signing time: Sat 26 Jul 2025 19:00:08 +0000
Manifest this update: Sat 26 Jul 2025 19:00:08 +0000
Manifest next update: Sun 27 Jul 2025 19:00:08 +0000
Files and hashes: 1: dZxU7z8HSxxmiPmXVM2KONmfbKw.crl (hash: 6wV5AVCGQFu5M2yyKw+97Q5uoONx2gpIQ1hj40S6QQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 15:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:1b:59:00:0f:f8:23:a8:93:c2:0e:a0:eb:e7:b7:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac
Validity
Not Before: Jul 26 19:00:08 2025 GMT
Not After : Jul 27 19:00:08 2025 GMT
Subject: CN=346e32d4e0ccb7c55465e4f44e3b0f0c458f9989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4c:f9:65:90:69:8c:c8:d1:1a:bd:8c:c2:79:
a9:76:70:74:3a:07:a6:fd:22:27:f1:0a:c8:19:4f:
a9:bb:4f:60:ab:b6:51:e7:4f:4b:ad:62:25:24:6f:
a4:2a:cd:40:6e:af:ba:50:f7:55:0c:b4:cb:f1:d4:
79:66:4c:d2:6a:8c:95:fa:fc:6a:f3:a2:68:a6:2a:
59:62:02:89:2a:5d:c6:e2:83:0e:6d:e2:b5:bd:5f:
b3:90:bb:68:bd:a5:d4:0b:88:58:81:4b:43:de:6a:
e9:24:7e:01:49:37:b5:28:46:37:b7:7a:e9:f9:12:
e7:52:81:e3:11:17:56:86:37:2c:8f:89:e2:e5:07:
bd:6d:b7:f0:80:1e:ec:1c:f7:a3:67:07:a4:a8:66:
7d:13:9c:ca:8e:7d:04:80:7f:c9:3b:b1:69:18:bc:
24:6c:6c:24:4a:67:8d:ad:60:ff:d7:a5:ba:35:41:
9a:5f:4b:87:54:67:f9:17:50:8b:ee:e3:f9:a8:67:
b4:7c:0e:35:88:75:77:ac:20:94:45:d3:1b:84:18:
ed:a0:0b:5c:e3:33:ca:e2:8e:ab:57:d7:8d:42:52:
73:06:c6:56:13:48:df:56:cc:7b:ca:55:7d:a1:ea:
1f:2d:7e:17:79:f5:a1:ee:43:b7:68:5d:73:8c:34:
25:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:6E:32:D4:E0:CC:B7:C5:54:65:E4:F4:4E:3B:0F:0C:45:8F:99:89
X509v3 Authority Key Identifier:
keyid:75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:36:94:88:c7:e0:42:5f:41:75:fe:2f:3c:18:70:4f:71:24:
ff:fb:f2:0c:b5:d9:97:9f:76:b8:17:f1:a6:81:ff:a8:db:44:
ae:24:c9:d8:04:a5:cd:3e:5a:d9:88:d4:7b:27:16:80:7a:1c:
07:cf:43:db:bb:19:f9:f3:97:e3:5d:6d:8b:3d:fc:95:47:33:
5e:99:0b:a5:e9:e4:c7:01:51:d3:94:79:f3:7b:2c:67:12:ee:
38:c7:9b:f4:0e:ff:54:d2:dd:64:36:92:48:87:74:22:f9:24:
16:e1:f1:2d:8a:7e:de:d4:3f:ec:a0:de:07:59:14:9a:b4:c2:
1f:77:41:af:38:7e:6d:f6:81:9d:f6:56:7d:fb:04:e5:36:99:
2e:5c:a6:25:a0:16:58:be:16:ca:20:f5:96:6f:d8:f0:54:2f:
da:c5:8f:9b:39:07:b1:fe:3a:7a:bc:cf:07:91:84:ad:21:cc:
d1:0f:1b:f7:0a:bd:8c:b2:7b:41:16:d9:89:63:a9:8e:c4:61:
a5:6d:b7:0f:83:36:17:0a:c8:1a:26:24:57:c2:1e:91:c9:53:
83:fd:48:cb:36:cd:1a:64:e7:99:96:73:2f:24:53:c5:16:03:
17:cb:91:b2:ce:da:4d:ef:95:60:58:bd:83:91:47:5d:2a:3b:
db:8d:96:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 23:42:04 2025 by rpki-client