Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft
File: 98_k1DTTh2RAV9JB6sb2nT7oHBI.mft (raw, json)
Hash identifier: TsC9wzbU97wbjDBhEOTCb0Zbe6Ty87WbCSfoXPv8csk=
Subject key identifier: 16:AC:D4:C9:68:F3:C9:22:3B:B0:66:E7:B6:81:90:CA:59:86:B8:55
Authority key identifier: F7:CF:E4:D4:34:D3:87:64:40:57:D2:41:EA:C6:F6:9D:3E:E8:1C:12
Certificate issuer: /CN=f7cfe4d434d387644057d241eac6f69d3ee81c12
Certificate serial: 0199228D0053588369B4BA14C15E201AFC1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98_k1DTTh2RAV9JB6sb2nT7oHBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft
Manifest number: 0897
Signing time: Sun 07 Sep 2025 05:01:29 +0000
Manifest this update: Sun 07 Sep 2025 05:01:29 +0000
Manifest next update: Mon 08 Sep 2025 05:01:29 +0000
Files and hashes: 1: 98_k1DTTh2RAV9JB6sb2nT7oHBI.crl (hash: UyU5PnRhMKgcI37YJv/MF6KrxaBNO8DkRlBpJQTM4wU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/98_k1DTTh2RAV9JB6sb2nT7oHBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:00:53:58:83:69:b4:ba:14:c1:5e:20:1a:fc:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7cfe4d434d387644057d241eac6f69d3ee81c12
Validity
Not Before: Sep 7 05:01:29 2025 GMT
Not After : Sep 8 05:01:29 2025 GMT
Subject: CN=16acd4c968f3c9223bb066e7b68190ca5986b855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:76:f6:2a:f8:a9:b2:70:81:7a:63:b3:a5:30:
aa:b8:92:ec:6a:15:67:11:26:7e:07:c9:b9:07:9b:
66:c1:8e:22:21:55:1d:13:3d:ee:c0:32:76:b6:63:
a5:d0:e0:ae:45:09:20:8c:1b:fe:a9:99:0d:18:6c:
5b:2a:c5:75:e4:fe:e3:17:a5:79:25:63:f0:00:d4:
2b:01:3f:a7:bb:77:d6:79:ef:9c:03:8e:0f:cc:92:
38:be:ac:9b:e7:cf:78:e0:90:cf:71:e9:53:3e:f4:
1a:b8:96:fe:cf:59:8a:23:68:e5:83:41:e0:5f:1f:
86:2d:9b:53:88:c0:5a:80:6e:fb:03:55:4b:4d:79:
e2:d9:45:b8:62:3f:e7:9f:90:fe:1d:b3:76:5f:7c:
29:05:0c:b4:ee:65:c9:87:17:f5:84:34:b2:85:30:
80:b2:7c:d6:5b:6b:15:f6:34:59:ac:2f:b9:7e:25:
21:ac:28:65:97:ee:83:69:32:03:e7:af:06:6a:cb:
03:ab:f0:3c:a5:c0:41:09:ae:a5:60:e8:76:a2:7a:
af:32:2b:98:af:9b:03:f2:ca:e5:c6:8c:c4:f4:74:
c3:9b:da:66:9e:71:cf:9a:09:c5:82:40:29:c2:a5:
b5:47:49:f6:f2:3e:f0:8d:42:ee:da:f6:11:20:1c:
df:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:AC:D4:C9:68:F3:C9:22:3B:B0:66:E7:B6:81:90:CA:59:86:B8:55
X509v3 Authority Key Identifier:
keyid:F7:CF:E4:D4:34:D3:87:64:40:57:D2:41:EA:C6:F6:9D:3E:E8:1C:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98_k1DTTh2RAV9JB6sb2nT7oHBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:9a:d0:eb:35:c7:4b:ba:c4:51:75:e8:ae:98:de:d2:af:ad:
27:23:81:81:b4:c3:d2:2d:60:63:99:d0:bd:6b:7e:6e:4e:05:
91:81:50:10:ed:4d:2c:38:20:06:c6:79:dd:6d:51:ee:d7:23:
1e:0f:e8:fd:3c:76:45:7c:e2:60:cb:99:97:2b:9d:ff:4b:15:
f0:19:95:97:ed:b1:8e:2a:05:d3:cf:dc:82:9c:83:13:d9:63:
bf:8c:4a:c0:5c:db:22:a6:a2:ca:32:11:e3:72:a1:01:aa:23:
b7:d2:82:1b:fe:69:f7:ea:f4:6c:b1:7b:cd:78:e0:1c:6e:94:
f0:67:c2:ed:3d:04:94:79:a4:51:c8:01:fc:a8:8d:05:34:47:
94:68:00:7d:fd:6d:ea:0d:24:bc:00:4a:63:61:9b:e2:7a:17:
98:74:d3:f6:1f:52:1d:2a:de:82:13:07:c4:1d:25:ea:9b:21:
ef:0d:52:06:7b:2c:62:db:1f:33:c2:6f:9d:85:29:a9:e9:16:
75:3b:9a:4d:e0:9f:5e:59:cf:74:7d:92:a0:eb:22:8b:da:5a:
72:51:3b:37:b4:1d:c8:2b:47:e3:45:81:7e:b3:05:d2:32:9f:
f8:54:da:cd:e7:bb:d5:04:c0:d7:cb:f6:b0:8c:c9:24:25:f5:
83:61:4a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:26:48 2025 by rpki-client