Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
File: IaqfF_jMpH37krSQLSwrMgPb7aY.mft (raw, json)
Hash identifier: SXxCpY5Q5CzLFyq8ctYJ8jybjyf8BG9Si+8q2LRV/FQ=
Subject key identifier: 7F:5A:31:CB:75:C3:11:FB:15:ED:08:2C:3E:F6:8A:F2:66:87:0A:A4
Authority key identifier: 21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
Certificate issuer: /CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Certificate serial: 019923A0C99666E9E958A4826D292AE037E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
Manifest number: 070E
Signing time: Sun 07 Sep 2025 10:02:43 +0000
Manifest this update: Sun 07 Sep 2025 10:02:43 +0000
Manifest next update: Mon 08 Sep 2025 10:02:43 +0000
Files and hashes: 1: IaqfF_jMpH37krSQLSwrMgPb7aY.crl (hash: 8gw0yjbb/gVvFMDguq4XeOcb5/sZivyoisYQsyYhI6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:c9:96:66:e9:e9:58:a4:82:6d:29:2a:e0:37:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Validity
Not Before: Sep 7 10:02:43 2025 GMT
Not After : Sep 8 10:02:43 2025 GMT
Subject: CN=7f5a31cb75c311fb15ed082c3ef68af266870aa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e3:48:69:73:49:c4:c4:66:cd:a6:94:d3:28:
3f:da:44:f6:c7:de:f4:70:1a:31:64:26:50:37:f2:
55:8d:5f:bc:3f:80:de:12:0b:7e:40:2e:9c:52:1d:
67:b8:c6:3c:a8:e0:bc:c2:0d:17:8e:a8:c9:d6:70:
94:65:85:3c:21:3d:94:6c:89:df:cb:e2:fc:b1:74:
93:b5:a8:a1:ef:84:86:a4:7d:e0:9b:b7:8a:51:79:
30:f6:21:88:2d:0d:46:14:6f:bc:80:f3:7a:96:bb:
da:a2:ee:da:c1:d5:f9:97:f4:ec:15:2d:51:41:ad:
e8:8f:e7:f8:98:20:eb:11:ec:2e:a3:47:4e:fb:2d:
9f:15:b1:0c:2e:d9:c6:3e:8e:fe:15:19:67:f6:6d:
72:db:5d:dd:44:f8:92:93:de:55:bd:76:bf:11:d1:
48:29:e5:40:82:92:56:f5:09:9e:f7:c5:09:d8:fa:
0a:35:11:8a:12:ee:ef:d3:4c:28:40:95:45:82:f2:
fb:e4:99:33:23:7b:64:7a:3f:8f:e6:97:bc:18:f8:
83:8a:2f:98:5d:99:1b:7b:d7:7e:aa:3a:85:3b:f1:
f6:f5:6f:41:76:d4:4f:a7:a5:29:b0:36:5a:1f:91:
d3:1f:19:c4:c3:dd:63:65:cd:fe:ad:87:73:e9:13:
7f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:5A:31:CB:75:C3:11:FB:15:ED:08:2C:3E:F6:8A:F2:66:87:0A:A4
X509v3 Authority Key Identifier:
keyid:21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:e7:b8:69:63:9a:5c:ca:2e:cc:90:fb:e9:13:9e:88:8c:ba:
04:43:fb:15:ee:4a:01:6e:96:e0:ef:26:a3:10:5e:cc:c4:2b:
18:ee:45:81:14:f3:49:14:fb:57:83:ed:2d:9d:95:3c:7c:96:
7d:b1:7e:6f:4f:a7:00:6d:02:45:7a:10:28:b9:86:66:8f:19:
f5:d2:9e:31:41:51:c5:ef:33:3d:4d:ff:28:35:58:13:7b:0c:
28:45:5a:5e:8b:c5:2e:fd:a0:82:93:5f:45:ca:b9:bd:e8:e1:
92:6f:84:ef:06:ad:72:ab:ff:f8:31:5c:21:dc:fc:bc:59:21:
36:1f:bb:f2:3b:ae:a2:79:97:13:ba:f3:18:39:04:18:5e:33:
69:b9:b2:b0:65:32:e5:67:e6:28:84:e6:59:7d:ec:96:e1:4e:
0c:59:e7:fd:36:4e:62:37:7a:bc:81:a0:fa:97:7f:ed:3c:b1:
7f:68:5c:29:c9:67:06:88:76:22:b0:8b:d8:97:a3:35:14:3a:
f9:23:f3:6a:26:65:c8:98:bc:d5:fc:bc:1f:ed:08:e6:e9:5a:
03:6b:65:8c:0c:25:55:38:9a:d3:88:ca:d0:4b:76:da:aa:44:
20:bd:63:2a:1e:da:41:c2:74:71:d4:c0:1e:97:25:c7:a1:b4:
0f:48:ea:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:48:39 2025 by rpki-client