Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
File: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft (raw, json)
Hash identifier: fk5tDtydlDMFLjIQTj/rA4nVftHBE3vVjQ8WIKn5HE8=
Subject key identifier: D6:4C:F0:2D:66:5A:6C:D1:9C:BD:6A:3C:AB:35:E8:E0:15:42:31:AB
Authority key identifier: 74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
Certificate issuer: /CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Certificate serial: 019921B13D3B671F3F1ABC137651691251A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
Manifest number: 166D
Signing time: Sun 07 Sep 2025 01:01:27 +0000
Manifest this update: Sun 07 Sep 2025 01:01:27 +0000
Manifest next update: Mon 08 Sep 2025 01:01:27 +0000
Files and hashes: 1: dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl (hash: 5jwyTlbcC9yCPFUuRh+C3X3H5aFg3MsOhO79jj5iE38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:3d:3b:67:1f:3f:1a:bc:13:76:51:69:12:51:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e43f9e5ae3f6eafb5068ae88f18c29e4435907
Validity
Not Before: Sep 7 01:01:27 2025 GMT
Not After : Sep 8 01:01:27 2025 GMT
Subject: CN=d64cf02d665a6cd19cbd6a3cab35e8e0154231ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8a:78:d0:33:dd:aa:45:5c:9a:a9:49:d2:5f:
c0:03:5d:79:bc:da:f1:42:df:2c:d9:e5:f5:19:4d:
1e:e5:af:35:88:bf:3a:02:d2:7c:3a:17:04:60:ab:
47:94:62:65:df:e5:47:ec:b8:94:54:45:73:9f:24:
c1:21:bf:02:ef:38:3f:29:69:5e:fb:13:85:e6:9f:
8a:3c:7f:eb:a5:a2:90:6e:69:b2:f8:05:65:97:e5:
d0:50:27:22:f5:48:40:9f:e5:c1:d4:31:b8:fd:48:
2d:9c:59:8b:d8:fd:1d:e9:2e:7b:ed:a0:28:4d:8b:
78:03:e8:3f:e3:6d:13:3e:68:41:3d:14:b9:fb:19:
44:d5:af:ec:5d:b6:dc:21:fd:eb:d7:54:e5:a4:66:
67:61:25:de:ee:7e:f9:5e:31:e6:66:7f:3d:b3:28:
fc:8b:5f:aa:bd:86:55:4c:9d:f3:cc:e6:c6:0e:db:
ad:8b:af:c2:48:39:76:7d:e0:33:1e:9a:ad:4c:b9:
e9:62:23:6c:41:fa:4a:ce:88:f8:95:bf:9a:1d:0c:
7e:e8:28:5c:d1:4a:ac:27:4d:76:78:a2:54:ea:3c:
e6:f0:b4:fe:e8:fa:2d:3f:a0:d9:a7:37:0f:a4:1f:
b9:87:1a:72:f3:ea:bb:3b:b5:d7:cf:ff:1c:69:cf:
ef:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:4C:F0:2D:66:5A:6C:D1:9C:BD:6A:3C:AB:35:E8:E0:15:42:31:AB
X509v3 Authority Key Identifier:
keyid:74:E4:3F:9E:5A:E3:F6:EA:FB:50:68:AE:88:F1:8C:29:E4:43:59:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/da33ae-16cc-4c9a-bf9c-717998aa3cff/1/dOQ_nlrj9ur7UGiuiPGMKeRDWQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:9d:4a:af:06:3e:1d:3f:a2:06:d8:27:bb:d8:86:ea:10:51:
e0:05:3d:13:c7:12:d3:4c:3c:9d:18:c6:50:62:94:18:ee:46:
83:b2:aa:0c:a2:d8:5d:c4:a6:75:01:a4:0b:3f:05:d2:ad:35:
72:e0:e6:b1:5d:10:8a:2d:aa:83:22:61:c7:66:cf:47:0e:98:
4d:d4:4e:fc:ea:db:07:88:d0:9b:fe:75:22:1d:09:0b:fa:ce:
85:51:78:58:c4:fc:0b:8a:2a:bd:8a:c1:b7:63:55:7e:04:d1:
26:29:ac:5f:77:a6:cc:7d:b4:80:56:57:08:1b:94:a0:d5:e5:
f7:16:2a:d0:cd:a3:ec:67:7a:7f:82:5c:8f:18:99:72:73:32:
5f:8d:62:aa:63:24:b1:3b:52:ac:32:6d:1c:9e:3f:62:51:ca:
30:71:c4:f0:ca:74:07:6f:0d:9f:c3:5c:16:1e:15:b5:7f:1e:
a7:7d:31:bd:66:72:e0:f1:4b:30:2c:d1:67:a5:b3:bf:fb:84:
ab:f8:ce:fe:70:e4:a6:bb:f6:25:4c:69:b4:12:d0:91:2b:68:
06:70:00:51:ff:a3:ee:f1:9d:6e:98:cb:01:77:b4:a9:34:fc:
c1:b7:56:df:50:38:09:c1:58:51:f4:68:cd:c0:9e:af:67:15:
9d:53:d9:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:24:50 2025 by rpki-client