Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft
File: ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft (raw, json)
Hash identifier: GeHgOJ3qGDt+ffZV3Q5BQEFONDiHcWZWEKgjjsNVGUc=
Subject key identifier: 34:FA:6F:59:D8:28:6B:24:83:DF:E0:E0:33:4D:9B:AE:F8:43:8D:17
Authority key identifier: 72:20:2E:64:5F:72:CD:70:AA:81:43:B7:3B:CC:0D:DD:93:BF:E9:1A
Certificate issuer: /CN=72202e645f72cd70aa8143b73bcc0ddd93bfe91a
Certificate serial: 0198439B5ED7CDD62B9E53F7FDA922842D12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft
Manifest number: 034D
Signing time: Fri 25 Jul 2025 22:01:52 +0000
Manifest this update: Fri 25 Jul 2025 22:01:52 +0000
Manifest next update: Sat 26 Jul 2025 22:01:52 +0000
Files and hashes: 1: ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.crl (hash: 9A5UHNk545I4Ah6CFffl8YjwC/06yP/m9o1tqPwg4v8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft
rsync://rpki.ripe.net/repository/DEFAULT/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 17:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:43:9b:5e:d7:cd:d6:2b:9e:53:f7:fd:a9:22:84:2d:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72202e645f72cd70aa8143b73bcc0ddd93bfe91a
Validity
Not Before: Jul 25 22:01:52 2025 GMT
Not After : Jul 26 22:01:52 2025 GMT
Subject: CN=34fa6f59d8286b2483dfe0e0334d9baef8438d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f4:31:2d:87:38:59:78:27:be:39:b8:19:c5:
86:e9:5e:66:1d:34:47:7c:d3:c2:55:ee:e3:f8:a4:
79:19:55:36:4e:58:66:77:42:f6:ea:c8:8a:1b:06:
53:6e:a3:57:89:5f:a0:8c:50:13:8f:37:b9:c7:a1:
b1:8d:ce:ce:d3:16:6a:0f:5d:82:9f:5b:22:a2:ca:
ac:67:cc:2f:6a:64:1e:1b:81:83:7d:06:b5:75:4b:
aa:05:33:97:89:5f:ef:d6:50:cf:28:42:f7:1f:b7:
ac:61:52:94:50:3c:4d:01:33:ab:4a:87:b6:23:2d:
56:fd:c3:9d:af:10:a8:4d:be:6d:2c:6e:35:b3:7a:
88:42:04:cf:4b:04:58:95:07:88:47:24:bb:b6:8f:
11:9d:49:8c:7c:73:a4:0b:67:99:94:f3:78:34:bd:
68:53:87:e6:13:92:18:84:7b:22:20:e7:38:f3:b4:
0e:55:cb:84:9f:49:ae:c8:1e:e3:22:f5:5c:3e:e6:
22:2d:67:84:b2:eb:56:da:9b:f3:0a:70:e1:fd:52:
f0:43:f6:8d:8a:29:0e:ac:c0:c3:ff:e3:e6:93:bc:
26:a2:e5:86:4e:8a:3d:e0:16:8c:ae:ac:21:c7:7e:
df:ce:b9:76:9e:b7:80:09:f2:dc:b2:7f:6a:41:b0:
94:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:FA:6F:59:D8:28:6B:24:83:DF:E0:E0:33:4D:9B:AE:F8:43:8D:17
X509v3 Authority Key Identifier:
keyid:72:20:2E:64:5F:72:CD:70:AA:81:43:B7:3B:CC:0D:DD:93:BF:E9:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/ee1127-f99c-4aea-b2fa-40cc16f2afa4/1/ciAuZF9yzXCqgUO3O8wN3ZO_6Ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:ab:59:b7:cc:1c:9c:7c:9a:63:2f:83:3c:5a:7f:f6:ee:f8:
c7:b8:f9:49:a2:07:8a:10:87:e7:25:94:4b:fc:c5:2a:08:0d:
7c:d0:0d:cc:8d:65:ab:b7:f7:5c:7b:85:3d:eb:c2:64:f9:7d:
11:5e:a3:5a:76:f8:9d:d1:b6:70:fd:b4:28:8f:48:14:b4:83:
6a:c7:ef:cb:a1:0b:02:e2:e7:b3:a8:be:72:e8:5d:f4:2e:3f:
16:46:50:83:ad:5d:12:49:55:bf:ce:fb:f0:df:e3:98:56:75:
90:5a:eb:a6:99:81:b4:82:f6:9a:ab:ad:e0:96:2a:8a:9e:65:
cd:3b:e7:7c:90:ec:49:74:a0:fc:8c:7c:31:dd:8a:01:e7:c2:
ab:d0:c0:37:26:db:9c:1b:da:1d:a3:59:26:b8:f4:b1:29:3a:
df:df:a9:75:ec:2f:34:4b:6c:b6:f7:24:99:34:d6:3f:6b:e6:
99:80:22:7d:2c:88:13:6c:e8:18:0f:61:4f:d6:de:33:ea:1c:
48:7a:fa:3c:c8:94:fb:cc:93:a4:3c:23:05:fa:6c:c0:79:1a:
0f:67:e6:77:03:29:1a:13:3a:13:3c:00:81:4a:b1:0b:4c:25:
83:6d:9b:ff:b0:5f:0b:69:7a:65:d9:b4:dd:42:f1:77:ac:44:
e8:b2:72:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 00:09:17 2025 by rpki-client