Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
File: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft (raw, json)
Hash identifier: IuklgICO06YFdYUdG1WT35cIsd9mGi995y1icPw8+xg=
Subject key identifier: 1B:EA:55:91:C6:BC:DB:D3:49:12:8C:59:D4:5F:E8:78:AD:32:7F:47
Authority key identifier: B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
Certificate issuer: /CN=b284cdf0507443e16e509d57a229e914f73566a4
Certificate serial: 019922FA8F742A232D80E987B56D0BC4740D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
Manifest number: 1518
Signing time: Sun 07 Sep 2025 07:01:10 +0000
Manifest this update: Sun 07 Sep 2025 07:01:10 +0000
Manifest next update: Mon 08 Sep 2025 07:01:10 +0000
Files and hashes: 1: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl (hash: tVhix2x50w/L5HdVnOI9KjfNpXAwgTK5yAa5mpEYey4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:8f:74:2a:23:2d:80:e9:87:b5:6d:0b:c4:74:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b284cdf0507443e16e509d57a229e914f73566a4
Validity
Not Before: Sep 7 07:01:10 2025 GMT
Not After : Sep 8 07:01:10 2025 GMT
Subject: CN=1bea5591c6bcdbd349128c59d45fe878ad327f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2e:88:c0:15:53:e6:92:ad:89:52:80:bc:39:
7b:ab:f2:0b:6a:88:06:58:ed:70:e3:75:34:8d:58:
8b:4f:43:38:21:f1:e4:30:17:a4:c6:de:a4:fe:e1:
84:57:39:73:f9:62:8b:39:07:d3:a2:8a:82:46:08:
de:66:fe:bf:da:c8:6b:a9:2e:c3:f0:8a:7a:e7:87:
60:b7:2f:99:29:1a:cc:f6:2a:d1:52:09:c7:1c:0e:
f5:c7:c4:d6:23:6e:b3:6d:1f:f1:da:1a:1e:93:59:
f0:ef:f7:47:e3:5e:73:37:98:d6:ff:89:72:84:2f:
bc:b4:23:62:65:b8:e8:e1:fd:ce:06:48:df:a6:ef:
77:5c:2c:3e:07:09:36:9f:aa:a2:c6:c7:90:76:30:
f6:e8:b9:45:a6:c2:6a:57:89:96:f7:c9:8a:37:3b:
92:fc:52:a5:70:ee:96:eb:8f:63:ae:7a:df:7b:fe:
47:cc:19:f8:7f:57:f6:f0:3e:71:96:53:f5:4f:56:
dc:09:9f:00:e9:da:18:4b:96:fa:b2:8a:1d:0e:95:
08:4e:ed:a7:2c:61:e7:84:9c:02:43:99:2b:c4:af:
fe:87:bd:15:7a:5f:65:a7:4f:26:ae:2d:c3:8b:98:
af:98:97:59:ee:8d:3a:ea:45:3b:ca:2b:68:44:07:
92:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:EA:55:91:C6:BC:DB:D3:49:12:8C:59:D4:5F:E8:78:AD:32:7F:47
X509v3 Authority Key Identifier:
keyid:B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:ab:9a:49:f9:b6:39:9a:2a:92:4f:fa:5f:67:ba:b9:6a:e6:
f9:cd:4d:8b:a1:b6:9a:d0:b7:24:7c:09:e2:e8:f3:dc:99:c7:
ce:79:e8:c6:17:66:ea:87:b6:3a:cb:01:81:36:ad:19:ba:ea:
87:70:53:1e:1b:15:16:fb:f7:de:cc:3a:93:10:e1:bc:f9:85:
a5:f8:0f:52:80:bb:0b:1c:3d:69:12:7a:d5:b2:18:2c:26:24:
25:49:90:f6:35:b3:b5:66:9d:74:62:29:2b:c1:b2:85:1d:11:
3f:3f:dd:14:47:99:b6:f6:0e:05:2f:bf:38:5e:db:32:27:cc:
ef:57:49:80:3d:00:d3:59:56:bb:36:c9:f7:9b:3d:bf:a1:68:
d4:99:12:ee:b3:09:3b:64:4c:3d:96:4c:c4:8f:7b:a0:c8:56:
a4:f1:74:82:3b:05:7d:bb:bd:be:02:b4:c2:35:74:57:96:2c:
1e:73:e7:8f:74:a7:71:7b:1f:e0:a9:49:31:f7:20:c8:a5:16:
1a:0c:1b:9b:75:d9:ba:8d:54:d8:49:3f:13:bb:83:b8:41:99:
d6:1f:f3:52:34:96:95:15:9a:8b:18:be:a4:53:87:44:f2:e5:
08:87:a5:7d:40:62:15:0e:5b:75:c6:6c:70:74:0a:22:0a:27:
28:74:9f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:37:03 2025 by rpki-client