Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
File: coCW6KzXbpqhfz62eAQG49pWPtI.mft (raw, json)
Hash identifier: oLosifJHoxyFNLKGexGZTJbGYbmPEWRunZcil9mFHEg=
Subject key identifier: 4A:E4:C5:E9:E8:1F:89:A8:0A:B6:2D:F1:D4:BF:B3:FC:79:F1:E0:33
Authority key identifier: 72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2
Certificate issuer: /CN=728096e8acd76e9aa17f3eb6780406e3da563ed2
Certificate serial: 0199228C86BBA1E6BD2F1F9A3E534ADAF9DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
Manifest number: 152B
Signing time: Sun 07 Sep 2025 05:00:58 +0000
Manifest this update: Sun 07 Sep 2025 05:00:58 +0000
Manifest next update: Mon 08 Sep 2025 05:00:58 +0000
Files and hashes: 1: coCW6KzXbpqhfz62eAQG49pWPtI.crl (hash: Yw2N7W20jpaEK5Y9P8fK2eNZ0ZSbJsr3BclyqoebMqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:86:bb:a1:e6:bd:2f:1f:9a:3e:53:4a:da:f9:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=728096e8acd76e9aa17f3eb6780406e3da563ed2
Validity
Not Before: Sep 7 05:00:58 2025 GMT
Not After : Sep 8 05:00:58 2025 GMT
Subject: CN=4ae4c5e9e81f89a80ab62df1d4bfb3fc79f1e033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ae:56:eb:28:61:51:47:4c:d5:6e:cf:23:8c:
53:a6:f2:a9:46:0e:f8:62:69:c1:04:96:17:dd:94:
88:02:ce:d6:f8:df:01:f9:df:2f:c8:e0:d4:26:89:
d2:d8:0f:7e:11:62:ea:5b:c7:5d:bf:32:d8:fd:5f:
33:a8:84:f9:dc:b3:8c:98:1e:39:c4:34:fc:80:14:
53:5a:c2:ee:79:66:4e:ba:31:53:f1:23:90:e3:47:
7d:74:90:44:5f:75:78:8a:36:5c:ea:12:aa:80:2a:
50:25:6b:7a:d8:bf:80:91:76:2b:3e:2d:34:ed:7c:
70:bb:1a:fc:48:55:d2:d8:51:24:37:61:74:9f:a4:
88:7c:e3:31:07:85:04:fe:0e:91:3d:56:a2:e6:67:
48:90:09:ec:51:bc:a4:2c:da:58:9a:5e:84:55:8a:
ac:82:e0:06:cc:8d:69:11:14:73:26:6d:9b:0e:4b:
a8:78:1e:61:84:38:e7:57:4c:02:9f:da:d2:03:d4:
40:01:4e:72:2a:ec:aa:cf:b7:47:39:c8:a5:06:77:
c3:a4:bc:4c:ff:3b:02:d9:25:ee:28:b0:82:05:9a:
ab:5e:dc:fc:ec:89:cb:f9:a5:2b:fe:e1:17:92:26:
4a:2a:17:9e:cf:22:1b:9e:6c:b5:ba:be:2b:fa:35:
99:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E4:C5:E9:E8:1F:89:A8:0A:B6:2D:F1:D4:BF:B3:FC:79:F1:E0:33
X509v3 Authority Key Identifier:
keyid:72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:72:24:79:b9:8c:63:4b:a3:d0:8f:ea:7e:47:1a:d7:0f:3c:
ce:de:c2:02:57:96:e3:98:1e:62:0c:81:7c:9b:1f:d0:60:93:
65:d1:56:47:42:9b:29:d3:a4:7e:0f:58:4c:41:78:2a:b9:92:
29:28:6a:55:31:bc:4a:f4:0e:cc:0e:63:64:01:7a:60:f3:33:
69:96:56:fe:04:c8:58:57:56:e1:f0:5f:5d:ec:8c:ce:d2:f0:
c6:d2:6a:f4:61:f3:62:98:ad:90:7e:1e:e3:3d:19:c2:3c:c6:
1e:a7:87:5e:d1:af:d6:a3:6b:7a:51:6b:8f:6e:76:8e:d8:2a:
57:53:53:03:d6:bb:a9:5e:89:ea:f1:75:4c:d4:7b:01:5b:ef:
44:20:1b:10:a2:1c:f7:e8:3c:6d:12:47:76:7d:7c:e7:41:81:
39:9f:3a:19:75:02:ec:27:58:96:58:98:ef:33:2c:7d:1f:b5:
95:c0:1a:72:6b:61:de:7d:aa:2d:98:7d:50:9b:53:4a:d5:b4:
48:e0:48:2a:fe:54:05:b4:03:7c:d0:8d:a7:66:64:bb:3c:ad:
d4:31:4f:05:39:a6:96:b3:f6:93:88:e3:ec:0e:fe:04:e8:93:
5f:ce:63:b8:1a:46:5e:02:10:91:6d:3e:ee:b4:be:29:fa:9a:
94:3e:ad:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:33 2025 by rpki-client