Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
File: 0c0c1HQkGQk2se35qYScPjBYfzo.mft (raw, json)
Hash identifier: DJabjrcUeoUzT4cKACNknbMn80gv9Lk5OIZqeCPTcT8=
Subject key identifier: 5C:CB:6E:E5:A5:E6:7E:D9:32:75:03:5A:14:C4:B8:BA:E4:50:22:42
Authority key identifier: D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
Certificate issuer: /CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Certificate serial: 0199239F6A7667BDBF50134DD456BB467A97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
Manifest number: 0DD2
Signing time: Sun 07 Sep 2025 10:01:13 +0000
Manifest this update: Sun 07 Sep 2025 10:01:13 +0000
Manifest next update: Mon 08 Sep 2025 10:01:13 +0000
Files and hashes: 1: 0c0c1HQkGQk2se35qYScPjBYfzo.crl (hash: g2hfLP1BhIjvGXVDfHhy5lgaO9sLCii6Wlm0mhJU2eY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:6a:76:67:bd:bf:50:13:4d:d4:56:bb:46:7a:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Validity
Not Before: Sep 7 10:01:13 2025 GMT
Not After : Sep 8 10:01:13 2025 GMT
Subject: CN=5ccb6ee5a5e67ed93275035a14c4b8bae4502242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6e:8b:11:b5:cf:6e:ef:3c:48:72:a2:4c:72:
49:20:3c:48:08:62:a2:15:3b:2f:f4:f0:99:35:24:
66:74:e1:00:c9:0f:ff:23:5b:88:7d:64:07:fc:c5:
2f:ac:cc:6c:cf:d9:97:57:a7:04:70:8f:c2:5e:35:
d2:fb:a7:26:bb:40:a4:76:97:f3:3c:16:a0:f7:e4:
4b:d3:07:19:98:44:0c:cc:af:01:e1:25:a1:e8:5f:
d4:58:b6:c6:06:89:d1:2d:17:8a:51:aa:eb:a2:e2:
5f:d5:0c:d3:e6:ad:50:43:83:46:23:75:4e:d1:cf:
ec:ba:e8:d2:4c:e8:97:c1:c2:77:cc:e4:fd:43:8a:
79:b7:79:ea:41:4e:79:40:f9:ed:05:1f:e1:07:86:
6f:8a:3f:43:55:7b:89:a3:19:97:c3:d1:42:b2:67:
87:4b:b1:5d:16:3d:8a:46:73:2f:75:58:90:ed:85:
d2:39:d7:cc:04:27:84:2c:98:7f:3f:20:8c:1e:2d:
92:25:0b:2d:aa:ce:0b:1f:dc:76:d4:d4:e2:f9:f1:
29:2d:06:3e:b4:1d:d3:f4:0e:e2:ea:96:c5:69:ea:
8c:0f:f1:37:9c:31:10:fc:60:03:eb:70:98:af:83:
f9:99:a7:c7:01:c9:37:67:d7:0a:df:76:27:1d:cd:
40:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:CB:6E:E5:A5:E6:7E:D9:32:75:03:5A:14:C4:B8:BA:E4:50:22:42
X509v3 Authority Key Identifier:
keyid:D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:5c:06:22:ec:a6:b2:92:e9:e8:53:3f:b8:a0:cc:63:b6:af:
35:28:da:50:62:73:e8:27:54:86:28:ce:48:29:32:4e:3a:cd:
a4:d3:ee:bb:f3:7e:50:c0:cd:fc:10:45:60:66:46:93:03:05:
cc:c3:0b:db:cf:10:95:44:41:1e:ce:ce:ee:f0:37:87:a8:3c:
82:50:dd:69:13:9a:fb:6a:59:98:77:c7:a8:20:ea:36:b6:55:
cb:da:18:09:58:9f:4a:73:9d:a3:0e:b8:e7:da:53:31:76:1b:
af:89:17:d2:8d:93:ab:1a:94:bf:01:51:38:8d:9e:18:7c:33:
df:8b:e0:53:aa:29:c1:a7:c5:da:c0:0c:39:07:e1:9a:3a:b5:
34:0d:7d:44:92:9f:a9:1e:de:1d:ba:18:5d:5c:b5:d7:c3:2a:
e9:c0:e0:76:da:54:b5:c3:16:3c:9f:3f:de:ee:db:71:7a:93:
0a:a4:a1:89:63:df:4b:b2:d4:e1:7d:60:37:1f:b2:ac:5d:3f:
94:5a:0f:bf:77:4a:cb:24:49:46:ac:39:4a:fb:35:f0:26:8a:
2f:9c:3b:0d:78:fe:5d:50:48:61:a6:2e:d9:b2:1b:43:fb:f4:
a4:e4:d7:71:8e:06:d0:64:40:52:0c:e9:23:0c:d2:79:69:21:
41:e8:1d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:49:36 2025 by rpki-client