Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
File: 4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft (raw, json)
Hash identifier: tXhLeEuJLs/lvRGjI/0dFzqEIIzTGlifY4TELL30gxM=
Subject key identifier: CB:D0:B2:DE:F8:72:8F:E1:7D:D8:7B:84:F5:27:2D:E7:F1:A7:CC:32
Authority key identifier: E0:39:64:9F:AA:8F:9D:E3:DA:E9:1B:E7:99:A2:7E:2C:A6:62:87:89
Certificate issuer: /CN=e039649faa8f9de3dae91be799a27e2ca6628789
Certificate serial: 019849650F2376287303881742952DA15AE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
Manifest number: 15FD
Signing time: Sun 27 Jul 2025 01:00:16 +0000
Manifest this update: Sun 27 Jul 2025 01:00:16 +0000
Manifest next update: Mon 28 Jul 2025 01:00:16 +0000
Files and hashes: 1: 4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl (hash: ci6V/l5rllfUYY8DZLmapB3h/GumsMIyvBWfrQh+lD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:65:0f:23:76:28:73:03:88:17:42:95:2d:a1:5a:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e039649faa8f9de3dae91be799a27e2ca6628789
Validity
Not Before: Jul 27 01:00:16 2025 GMT
Not After : Jul 28 01:00:16 2025 GMT
Subject: CN=cbd0b2def8728fe17dd87b84f5272de7f1a7cc32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b2:64:ff:bf:be:c5:9b:80:d8:d5:aa:5c:36:
d0:3e:43:3a:fc:03:24:e4:cf:6f:07:33:11:bf:30:
c0:2d:50:64:cd:e2:2b:73:2f:57:d0:e4:f3:71:15:
33:3d:4c:b7:79:6a:04:ae:09:23:5c:43:9e:37:2a:
29:16:ba:c5:e0:e6:ca:9f:27:2c:cd:55:e2:0d:06:
73:bb:ff:de:b9:6a:3f:43:55:e6:1e:f4:05:9e:5c:
fb:6c:b7:2f:e9:f1:70:e0:71:41:24:e9:24:ab:1c:
6e:a2:e0:c0:c7:3f:cd:be:de:92:f6:34:51:db:a0:
54:96:bf:1d:88:e7:5a:f5:d0:7d:b7:44:c4:d1:a5:
20:d8:72:b6:09:d0:12:f9:e7:62:47:ac:32:12:cb:
93:e7:a7:d4:f6:a3:20:a3:69:bc:3a:1c:1e:93:c0:
52:83:2c:20:10:54:e0:44:2a:94:a4:67:9b:b0:64:
7e:6d:7b:98:8b:58:02:df:ff:3d:d7:27:02:64:c5:
43:bb:8d:35:3a:c6:5d:6c:68:96:c1:fd:40:a3:ee:
26:19:db:39:bb:b5:e1:00:23:67:a0:f6:33:4e:3e:
e6:ac:1b:fd:7e:86:56:e7:0c:50:b9:c5:a8:43:71:
aa:9c:6c:be:1b:74:66:c6:ca:e2:81:56:77:b6:d9:
56:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:D0:B2:DE:F8:72:8F:E1:7D:D8:7B:84:F5:27:2D:E7:F1:A7:CC:32
X509v3 Authority Key Identifier:
keyid:E0:39:64:9F:AA:8F:9D:E3:DA:E9:1B:E7:99:A2:7E:2C:A6:62:87:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:a4:2b:15:cb:c3:c2:13:4a:a6:53:8b:7c:3b:96:3c:49:5e:
d5:8d:3d:5d:d1:62:ea:28:4b:50:2b:fd:73:8e:b8:15:68:ae:
4e:35:64:5f:cd:9c:20:3f:f1:69:f3:b8:bf:59:d2:88:6a:7f:
1c:63:b0:3b:22:df:7b:38:6c:b3:14:49:04:24:e3:c7:fc:c6:
11:8a:ca:29:f2:6f:95:8a:e5:cd:3b:da:0e:f2:de:60:b5:1f:
27:39:c2:0b:d4:57:6e:2d:12:97:1b:5a:8a:4e:35:07:18:c2:
06:e8:40:95:38:7b:2d:57:65:df:61:0d:8e:a3:9e:07:df:cd:
9e:22:5d:ef:5a:15:60:8e:d3:35:19:61:15:78:da:31:ef:d7:
3b:2f:ea:83:f2:5b:1b:67:c6:8a:a0:f3:e5:eb:53:9f:35:81:
91:fd:2f:c3:29:ea:91:96:26:7a:4b:76:63:49:d2:5b:d9:64:
79:24:80:98:ae:71:17:37:02:6e:c8:58:59:99:a2:2d:09:bf:
28:dc:5f:2a:3e:3f:36:a3:87:02:33:5c:b3:8f:69:6f:9d:86:
a7:b1:dd:11:b8:fd:b7:3b:7c:21:3c:1f:7d:0e:bd:34:44:5e:
b0:b3:32:ae:6c:4b:37:d3:4d:3b:8c:d2:74:c2:98:bc:85:e4:
0a:ef:2b:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:06:49 2025 by rpki-client