Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
File: f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft (raw, json)
Hash identifier: TqKt70udULMa7TGrBYCeD0q/EozHyQ25JRZAqjp1UnQ=
Subject key identifier: 1B:1E:3B:72:51:16:C2:6A:92:25:FD:2D:1E:B3:A2:AB:DB:4F:D3:DF
Authority key identifier: 7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46
Certificate issuer: /CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46
Certificate serial: 0199228C4C117C0CFEB6558A18B2067232B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
Manifest number: 05C0
Signing time: Sun 07 Sep 2025 05:00:43 +0000
Manifest this update: Sun 07 Sep 2025 05:00:43 +0000
Manifest next update: Mon 08 Sep 2025 05:00:43 +0000
Files and hashes: 1: f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl (hash: dY0oPIB1Z6jeyIXbXnizVpPKFC1eEElr9s+v2Dkot+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:4c:11:7c:0c:fe:b6:55:8a:18:b2:06:72:32:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46
Validity
Not Before: Sep 7 05:00:43 2025 GMT
Not After : Sep 8 05:00:43 2025 GMT
Subject: CN=1b1e3b725116c26a9225fd2d1eb3a2abdb4fd3df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:50:0d:1b:6f:58:d8:7c:d6:df:4c:e2:bd:13:
3a:09:b1:f7:35:39:7a:ca:eb:a9:5f:69:d2:f6:e3:
a2:ca:f6:87:90:df:bd:67:c9:60:10:65:b2:ae:3f:
e3:01:c7:91:9b:1b:98:5c:21:11:cb:a0:62:39:9f:
25:46:d1:5d:62:24:26:e6:0c:4c:5d:01:58:ad:5e:
c3:24:1d:85:7d:dc:0e:82:09:1a:24:c9:f6:73:a2:
8b:ed:9f:03:2d:2e:8e:c6:b2:a4:5e:10:33:d1:69:
28:88:41:95:39:5a:60:84:ed:2b:ea:3a:0f:e8:61:
7e:4c:6c:e6:7f:93:91:ee:1e:c7:57:e7:a9:69:9f:
92:89:63:0e:aa:30:ba:31:1e:35:78:f9:5e:a0:dd:
64:f6:4b:8e:37:6e:fd:f1:a3:8b:5b:0b:74:97:79:
ad:5d:e9:8b:a4:2b:7a:fd:91:ef:31:45:ed:32:1c:
1e:1d:2d:21:2c:f4:10:3a:35:92:95:30:0c:17:18:
0b:c0:3d:c7:2c:35:01:a1:3d:08:fe:4b:7b:47:db:
fb:47:9b:11:ea:b7:df:62:86:98:8c:de:82:5e:87:
f2:02:bb:76:e2:de:64:a6:36:f1:81:d1:ba:e3:c4:
49:3a:82:56:c2:48:f0:4c:78:8a:94:6c:11:89:5e:
58:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:1E:3B:72:51:16:C2:6A:92:25:FD:2D:1E:B3:A2:AB:DB:4F:D3:DF
X509v3 Authority Key Identifier:
keyid:7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:31:4a:40:86:42:26:d7:7b:37:80:67:d9:17:a6:e4:5f:48:
44:da:01:92:32:e6:42:5e:4e:24:7a:13:42:0b:96:97:4d:c1:
1d:00:84:7a:5f:c7:2e:c2:32:f8:f4:f1:8a:52:98:ef:88:ef:
66:e2:93:7a:44:71:36:f5:22:48:df:de:6a:8c:f6:8d:d3:5b:
ce:63:77:1a:94:4a:8e:13:b3:99:c4:48:21:73:78:7b:a1:4f:
4a:b6:08:bb:e6:f5:fa:0d:c3:a3:e2:ac:41:4a:7a:37:0d:7b:
92:7f:a2:8f:83:85:3d:25:91:b7:21:a1:1c:b3:6b:9a:96:8c:
62:3c:41:e5:fa:d8:3e:4c:6b:74:7e:62:a4:53:87:ff:b8:6b:
f8:ae:1b:80:6c:46:e0:30:ab:c6:56:9e:9d:aa:b0:51:13:60:
0f:bc:f6:af:78:53:2e:5e:3d:92:d0:b5:9c:56:d9:68:53:fb:
55:4b:6e:00:41:ce:61:bd:7d:8f:06:40:ed:44:a8:da:c7:e7:
2a:5c:0e:81:cb:01:2b:a6:e4:52:34:1b:4c:c0:0a:eb:d9:22:
41:9a:68:1d:08:d8:70:f7:aa:c9:81:d0:48:24:44:cd:b5:ee:
b1:d1:7f:7e:ea:76:6e:0d:6e:d1:e3:1d:0d:1f:51:fc:53:29:
08:6f:8d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:55:32 2025 by rpki-client