Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: Z3P0uYbWvux1H0rY6r7cL/FiUqkcNhHZ6iu5XNdLA68=
Subject key identifier: 8C:1C:9E:DD:D2:FC:37:A9:47:66:93:0C:7A:93:BA:4E:77:EE:54:FF
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 01991764A116A2C1393E938113A2F9D5CEDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 07EB
Signing time: Fri 05 Sep 2025 01:01:34 +0000
Manifest this update: Fri 05 Sep 2025 01:01:34 +0000
Manifest next update: Sat 06 Sep 2025 01:01:34 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: DOfLtbX1fXK9Ck/1w7I2Jzmp1Yzq+d855uREhJC4KHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:64:a1:16:a2:c1:39:3e:93:81:13:a2:f9:d5:ce:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Sep 5 01:01:34 2025 GMT
Not After : Sep 6 01:01:34 2025 GMT
Subject: CN=8c1c9eddd2fc37a94766930c7a93ba4e77ee54ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ba:5f:4f:a6:a8:06:af:1d:df:e7:6b:11:48:
80:00:6d:34:75:80:2e:0c:d2:22:19:55:1c:00:7b:
08:ef:9e:61:06:2f:9b:00:52:57:94:84:87:7b:56:
dd:d5:d1:48:e1:6f:ce:4b:7f:fc:0d:f7:e5:b1:5f:
7c:5a:dd:04:99:f2:f0:44:2d:93:ba:78:9f:7b:b1:
c5:33:7e:74:24:ec:f2:d9:0a:19:2f:a5:be:3d:2f:
11:86:d0:d2:8d:2a:cd:c2:2e:b3:1b:99:59:65:7e:
a4:8b:41:e2:6a:fc:ec:a0:22:85:c5:16:d0:c8:5e:
69:30:24:93:39:b0:60:d0:2b:41:39:c6:06:e5:7a:
de:77:fb:9f:75:f4:0d:0d:db:f0:48:72:1e:31:25:
62:75:02:e2:0e:4e:34:9c:de:76:a9:26:28:00:91:
aa:48:84:38:5c:dd:f1:1a:54:94:15:d8:93:5f:65:
7a:f7:2e:3e:b0:b8:ca:d3:8d:e5:0c:03:ad:c4:9c:
75:6b:39:0f:16:46:c8:d7:08:07:84:7d:ba:0d:0f:
88:83:26:d7:29:db:e0:ec:03:d1:c4:53:07:10:36:
92:63:dc:a8:75:ca:48:f2:e1:c3:9a:d9:b7:8e:ca:
5d:a1:8d:b1:44:bb:89:fa:9f:7d:e8:e0:49:87:70:
6c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:1C:9E:DD:D2:FC:37:A9:47:66:93:0C:7A:93:BA:4E:77:EE:54:FF
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:36:7c:17:9e:12:57:65:ee:c3:f8:6c:75:f5:c1:c6:d5:25:
ea:0c:8f:f7:96:97:9c:e4:5d:b7:3b:30:f2:60:cf:78:15:94:
c9:ca:69:8c:2d:c4:80:ce:ce:a8:93:9b:38:c6:e1:c2:3a:c9:
a5:f5:63:69:c8:e3:56:42:9e:8c:76:63:07:10:cd:8a:3b:0e:
13:76:07:21:80:2e:e1:64:fe:dc:01:f9:4d:fb:df:ad:08:42:
85:d9:2c:65:e2:f3:af:60:0b:80:77:03:89:7b:2c:5c:ed:a7:
11:b6:5e:1a:46:56:f0:83:d7:7f:ea:dc:e5:16:32:ca:7f:cc:
b0:f2:21:21:ea:13:b4:a3:23:7f:ac:b5:32:dc:4f:3a:d5:e1:
75:34:49:a7:eb:2e:28:fa:85:00:b9:2f:5a:e6:86:47:15:1e:
06:c6:c9:9d:18:b2:24:a9:ec:c9:63:ef:bc:d9:05:bb:4c:95:
45:df:b8:81:52:38:44:03:90:cd:c0:fa:20:4b:9a:2d:f1:d8:
6e:1f:b0:13:2f:dd:a4:55:e9:de:25:ec:c4:01:4c:6c:8a:30:
ae:cb:01:03:87:b3:6f:6d:5a:cb:c5:c6:38:40:98:18:b0:22:
7a:62:46:dd:61:65:4b:ec:a9:31:e2:80:51:75:f5:c4:f1:f5:
dd:81:7e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:04:34 2025 by rpki-client