Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.mft
File: D81k6vJZSCLz-aLrzRnbm3-nDZo.mft (raw, json)
Hash identifier: /g0ihKINZZECryf/215vYubi07lzqoev0kPrzW0NB70=
Subject key identifier: A4:C3:2F:96:93:D5:BC:7B:A5:65:D2:E1:1A:D7:A1:12:64:6E:4A:85
Authority key identifier: 0F:CD:64:EA:F2:59:48:22:F3:F9:A2:EB:CD:19:DB:9B:7F:A7:0D:9A
Certificate issuer: /CN=0fcd64eaf2594822f3f9a2ebcd19db9b7fa70d9a
Certificate serial: 019855A10C485FF1C107360439977DEA44DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D81k6vJZSCLz-aLrzRnbm3-nDZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.mft
Manifest number: 020F
Signing time: Tue 29 Jul 2025 10:01:14 +0000
Manifest this update: Tue 29 Jul 2025 10:01:14 +0000
Manifest next update: Wed 30 Jul 2025 10:01:14 +0000
Files and hashes: 1: D81k6vJZSCLz-aLrzRnbm3-nDZo.crl (hash: MrUJa89UeDvxCaSwsSqFr3LAUcjFlmZqFN6sYcDANnw=)
2: tCQKTUl91gUF9YCakBjVvOmahA8.roa (hash: +o4wlq7VWOUaSft8SFBzstGqOiur0Xr8ur6qt9Ob1Nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/D81k6vJZSCLz-aLrzRnbm3-nDZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Jul 2025 08:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:55:a1:0c:48:5f:f1:c1:07:36:04:39:97:7d:ea:44:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fcd64eaf2594822f3f9a2ebcd19db9b7fa70d9a
Validity
Not Before: Jul 29 10:01:14 2025 GMT
Not After : Jul 30 10:01:14 2025 GMT
Subject: CN=a4c32f9693d5bc7ba565d2e11ad7a112646e4a85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:96:f6:7c:39:ad:f8:ac:b7:d6:3e:74:6e:4f:
c6:aa:98:d0:8e:c6:66:21:d5:b0:bb:b8:de:86:db:
39:89:42:e3:c4:ed:b2:e6:64:94:d9:1f:60:3a:8f:
0e:06:06:6f:28:8d:da:f4:9f:69:67:6c:25:8d:72:
8c:71:5c:63:8e:a5:26:e7:ba:51:9d:d2:a4:16:eb:
75:8a:8d:7a:78:2c:f9:d6:f2:f4:a2:da:f5:ef:e3:
6b:aa:06:74:7d:10:ac:86:37:38:3f:26:26:c1:09:
76:0e:44:c6:5e:dc:aa:2d:8d:a4:b4:1c:63:33:5b:
91:ca:48:30:77:84:b7:fe:64:8b:17:c7:6f:99:a9:
a1:c4:fc:18:96:38:d8:7a:44:1b:79:7c:fd:d8:d9:
8c:df:ff:7e:1c:32:1c:28:61:33:bb:db:17:73:8a:
f9:00:a3:27:84:a1:c0:8a:1a:3f:b7:82:01:5e:1d:
a7:f3:3d:a7:bf:b6:7a:f0:e4:45:be:c5:37:71:15:
a4:d7:a0:c2:c4:15:68:2f:09:85:38:3a:65:36:08:
24:f9:dd:48:c1:86:0b:d3:63:37:5c:b8:9a:bb:87:
d5:09:44:4c:e6:fd:e3:47:7c:ca:d3:95:88:0b:2e:
ea:c5:55:7b:4b:79:c8:a2:9a:f3:a0:8e:57:e8:14:
c1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C3:2F:96:93:D5:BC:7B:A5:65:D2:E1:1A:D7:A1:12:64:6E:4A:85
X509v3 Authority Key Identifier:
keyid:0F:CD:64:EA:F2:59:48:22:F3:F9:A2:EB:CD:19:DB:9B:7F:A7:0D:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D81k6vJZSCLz-aLrzRnbm3-nDZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:c7:a9:0a:da:c1:0a:d2:30:ac:1b:73:fa:3d:bf:8f:51:ef:
6f:fd:2a:39:21:1e:57:23:b8:92:0f:b2:a4:03:ab:4e:61:36:
a3:bd:40:e7:e1:83:4e:5b:f4:e9:6d:cc:65:a6:51:44:a6:0a:
aa:33:ca:8a:43:a7:6e:dc:f6:d7:4b:fd:4d:c4:3f:3e:e3:e5:
00:be:b4:f6:b5:48:89:44:7d:46:2b:e6:47:c7:bb:e4:b5:ed:
1c:08:7c:77:ac:f9:33:db:3e:52:b4:5b:f5:d0:d0:4f:ab:20:
b1:39:25:2b:08:b5:21:1d:cd:ad:49:aa:71:fb:e2:68:77:07:
9d:c5:20:40:4e:cf:c3:1d:e8:e9:50:5e:e4:ba:f9:e7:12:55:
b9:1b:43:7a:89:8b:62:ba:a2:83:1b:1f:36:dc:38:98:24:31:
47:88:68:bf:9e:6f:55:d2:0f:24:b3:8d:30:4f:89:37:73:09:
c4:76:79:49:d7:8c:a1:da:10:fa:43:70:c5:8d:8d:9f:c7:fd:
44:bb:25:e6:8d:93:5c:8d:42:12:d3:eb:66:6f:57:9d:2c:bf:
91:23:79:a7:b9:c9:7c:99:53:47:37:ae:a5:2c:4a:e1:f0:c9:
0b:b1:42:8b:6b:25:4a:2c:70:1d:f6:f5:51:d3:2e:68:cb:6c:
c6:88:e0:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 14:40:01 2025 by rpki-client