Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
File: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json)
Hash identifier: FHzFW1ID6o3iKl0qLBbIOEOZZBZqhz5Hcu/KGlAG+3k=
Subject key identifier: 6C:86:6F:CC:A7:A0:A5:EB:DA:08:BD:5A:51:95:6B:ED:14:2C:D7:5E
Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
Certificate issuer: /CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Certificate serial: 019918773DB20ED946B746AD2C074E33273A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
Manifest number: 0DDC
Signing time: Fri 05 Sep 2025 06:01:31 +0000
Manifest this update: Fri 05 Sep 2025 06:01:31 +0000
Manifest next update: Sat 06 Sep 2025 06:01:31 +0000
Files and hashes: 1: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: /lhBqtDQNnd7XowaHKr16W5MPGZesB4jqFvDcRcRBLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:77:3d:b2:0e:d9:46:b7:46:ad:2c:07:4e:33:27:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Validity
Not Before: Sep 5 06:01:31 2025 GMT
Not After : Sep 6 06:01:31 2025 GMT
Subject: CN=6c866fcca7a0a5ebda08bd5a51956bed142cd75e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:04:4a:44:6c:f1:33:f3:23:c0:d1:ac:57:3c:
3e:8a:2d:6e:89:e6:65:8d:26:9e:65:c3:16:76:0e:
5c:27:41:dd:79:8b:ad:a0:0d:f2:92:1d:70:43:47:
15:33:da:7b:6f:8b:04:22:ed:4b:91:9c:b3:cc:5b:
53:9c:7c:84:72:3a:a8:f3:35:b7:0b:75:84:b1:6c:
29:6d:46:27:fb:d7:59:5d:bd:6d:88:00:d3:cf:4c:
69:52:3d:8c:26:ff:11:34:82:96:09:13:09:82:82:
7a:4f:cc:22:7e:58:f2:fd:37:88:7a:db:f8:82:29:
f4:72:00:98:b9:e2:4f:2a:a6:26:ae:51:8b:7e:47:
d5:cb:50:a6:3e:fb:6c:dd:b9:69:70:96:75:65:63:
42:d8:ef:21:65:87:f5:d7:db:7a:5f:02:27:89:8d:
fc:61:71:9e:5d:14:6a:15:04:d2:09:f7:6d:7d:56:
89:4f:98:f5:a5:2f:e1:c0:48:b9:4e:d1:41:c8:94:
4f:3c:c4:a5:4a:93:fd:ec:a7:91:31:a7:8c:a6:60:
48:3f:3d:63:92:35:ea:f7:af:ae:c8:e6:42:5d:22:
c1:9f:25:31:3a:88:b2:a6:a2:fa:05:e4:69:90:91:
0d:ba:81:92:41:b0:a5:9c:d2:53:a4:1a:21:9d:2c:
da:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:86:6F:CC:A7:A0:A5:EB:DA:08:BD:5A:51:95:6B:ED:14:2C:D7:5E
X509v3 Authority Key Identifier:
keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:cb:48:4b:d6:97:00:4b:72:00:99:58:d7:a3:79:64:15:85:
8b:cb:3e:59:2b:c9:23:14:7c:a1:5c:a1:8d:b7:70:69:46:19:
8a:af:24:4e:35:e0:18:31:fb:77:55:0c:82:53:30:d1:6b:7d:
e3:4b:08:6c:29:b7:df:dc:d8:d1:52:f9:1d:ff:2f:e2:5d:79:
34:56:91:2c:5e:12:d2:d0:b3:29:42:ee:c7:ef:26:8a:f9:b4:
02:dc:3c:57:c1:07:f1:10:a8:7e:e7:bb:4b:df:c7:af:5a:af:
5f:7f:e3:94:3d:f2:78:34:84:7a:27:04:61:59:95:02:3d:e1:
55:f6:35:b7:a9:85:08:f9:51:d2:65:c1:40:82:eb:31:de:c1:
4c:08:78:bd:93:85:35:24:db:c4:ee:23:be:31:ca:9f:68:bd:
dc:51:64:5b:42:40:3e:df:54:25:f1:da:a5:5a:e2:b5:04:cb:
b1:22:d3:63:21:22:57:db:6b:77:90:4f:fc:f6:1e:91:c7:9f:
f8:0f:60:2f:e9:9a:d1:3e:18:67:71:f3:be:94:76:d8:3e:f6:
78:d5:c5:f6:f5:2c:21:ea:70:93:1a:ce:e7:7b:80:87:42:f4:
67:3e:59:6f:94:86:26:25:2c:32:fb:73:e5:9d:9c:52:4c:8a:
83:33:ae:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 07:37:30 2025 by rpki-client