Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
File: 5D7dxEvG9TRFds9ZrwATXGtiwB0.mft (raw, json)
Hash identifier: WcTK50n08W84x8ROAL2dcXSWU682jbQuTDsi4Six8zw=
Subject key identifier: BC:E7:E9:39:97:90:F6:B4:74:2A:A6:E3:E2:B3:FE:1A:B5:14:7A:DE
Authority key identifier: E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D
Certificate issuer: /CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
Certificate serial: 0199221EE62BE9E37A8E7BC066CBC79EF96D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
Manifest number: 0CD8
Signing time: Sun 07 Sep 2025 03:01:14 +0000
Manifest this update: Sun 07 Sep 2025 03:01:14 +0000
Manifest next update: Mon 08 Sep 2025 03:01:14 +0000
Files and hashes: 1: 5D7dxEvG9TRFds9ZrwATXGtiwB0.crl (hash: c6B3lu/HA0ybT2EDukdgz46XxugwpQCF40nUsU4Rj5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:e6:2b:e9:e3:7a:8e:7b:c0:66:cb:c7:9e:f9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
Validity
Not Before: Sep 7 03:01:14 2025 GMT
Not After : Sep 8 03:01:14 2025 GMT
Subject: CN=bce7e9399790f6b4742aa6e3e2b3fe1ab5147ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f1:ee:dd:45:b7:af:fa:01:5f:c6:d2:d9:05:
3d:24:aa:58:25:5c:ac:76:61:df:5a:42:8a:9c:5b:
b9:0d:6b:0d:fa:2a:34:83:16:04:a8:c0:61:48:3d:
9a:2b:3c:7c:dd:0f:3e:33:18:9d:c8:9d:03:e9:48:
1c:44:da:db:54:ea:59:0c:77:9a:fd:f0:08:1c:a0:
b4:e8:bb:d0:ed:66:5e:25:54:66:28:60:cb:7e:e7:
d7:5d:4a:19:9b:30:31:73:fd:d4:5e:12:a4:d8:d8:
ff:dd:54:41:7b:27:6b:42:05:69:aa:03:af:95:c1:
1b:44:d0:07:da:4e:a3:69:67:83:e1:eb:52:8c:af:
81:c3:04:e6:4f:1c:5e:89:88:7c:d4:db:d7:64:71:
23:c1:6d:ba:6d:d8:03:88:06:9d:4d:6b:e1:21:70:
51:bc:70:9a:bd:55:09:0f:8a:36:13:64:b5:0e:e9:
43:d2:88:a6:83:e0:7a:38:df:f9:2c:6d:45:eb:65:
84:21:6c:6a:f2:ba:a2:46:80:4f:fb:98:69:cb:d5:
66:c7:b1:26:0b:0d:df:13:85:7e:b6:09:61:3d:be:
b7:b7:dc:22:bf:c1:a3:68:3a:3c:ba:0a:5d:a9:90:
4e:b3:1d:0c:3d:02:60:68:d2:a1:09:00:a3:c0:f1:
69:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E7:E9:39:97:90:F6:B4:74:2A:A6:E3:E2:B3:FE:1A:B5:14:7A:DE
X509v3 Authority Key Identifier:
keyid:E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:e3:6c:e9:71:86:e5:cc:83:5a:f3:0b:d5:e4:9d:4b:d8:d2:
c0:41:4c:5f:9f:3e:3d:e1:c9:9d:af:55:be:20:a3:a8:c2:a2:
d3:a6:ab:5c:1c:84:75:50:81:a2:a1:d9:2a:34:9a:1a:46:03:
a7:44:92:f8:b4:14:2c:8b:f5:b7:db:77:db:5a:05:3a:f1:e9:
17:5c:9a:99:e2:f9:c7:97:81:ed:62:a6:f1:d4:a3:6d:e2:57:
e2:7d:3e:18:2b:91:ed:b3:b2:07:e6:e6:fb:57:50:74:4f:01:
f9:f2:97:2b:a8:d8:12:62:ae:d5:5e:10:b2:56:14:5f:99:99:
2b:e5:4b:a1:cf:fc:90:1f:97:ce:02:18:dd:ac:b8:2a:6e:a1:
4d:0a:5d:b4:9b:1e:8e:2c:30:fb:ae:28:53:61:98:22:79:38:
4c:a7:5a:72:7b:fd:06:f7:68:6f:ab:ab:09:5e:ee:93:27:33:
33:9b:7b:85:78:bc:2c:a4:9e:37:a7:77:69:2b:d3:90:77:61:
32:38:30:89:31:75:68:eb:22:2f:14:93:92:f6:1a:ac:87:c3:
b6:e6:96:37:6e:ad:4c:45:74:c5:6f:8e:cb:74:de:77:9a:96:
40:bf:d5:ce:6c:37:9a:63:81:e1:c8:05:05:9f:a1:81:85:63:
e2:94:8b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:46 2025 by rpki-client