Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft
File: cUt8OIAz4WI_xti-t69cOUJRkds.mft (raw, json)
Hash identifier: JVHEhQ4HOpAv1JHFIgN7RA4UP788gmX9dPkne6ZS65s=
Subject key identifier: C7:6A:AC:CD:8F:CB:FF:99:70:FA:D9:2E:12:2F:CE:65:AD:DF:BD:94
Authority key identifier: 71:4B:7C:38:80:33:E1:62:3F:C6:D8:BE:B7:AF:5C:39:42:51:91:DB
Certificate issuer: /CN=714b7c388033e1623fc6d8beb7af5c39425191db
Certificate serial: 0199180972CD34ACC1C841B30DB96C7CD369
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft
Manifest number: 0823
Signing time: Fri 05 Sep 2025 04:01:36 +0000
Manifest this update: Fri 05 Sep 2025 04:01:36 +0000
Manifest next update: Sat 06 Sep 2025 04:01:36 +0000
Files and hashes: 1: cUt8OIAz4WI_xti-t69cOUJRkds.crl (hash: n0EpBJ5BhX7mSPQFbeorJsJNwkayi7lINndHUwDY3H0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft
rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:72:cd:34:ac:c1:c8:41:b3:0d:b9:6c:7c:d3:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=714b7c388033e1623fc6d8beb7af5c39425191db
Validity
Not Before: Sep 5 04:01:36 2025 GMT
Not After : Sep 6 04:01:36 2025 GMT
Subject: CN=c76aaccd8fcbff9970fad92e122fce65addfbd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9b:40:cf:06:26:ec:60:c8:8c:97:5d:5e:92:
41:e8:d9:c0:a1:c6:1f:52:05:25:00:50:13:83:52:
28:f6:7a:a2:5e:fe:fd:a0:5e:60:c1:54:66:51:d3:
71:16:f3:2b:4a:e9:49:a5:70:e3:f2:43:61:a2:b3:
0e:bf:0f:09:c0:74:86:6a:4a:e3:61:6d:ca:a8:52:
32:d8:df:e8:6f:e4:b0:ff:43:d9:28:5b:ea:67:52:
94:9f:92:4e:ad:c8:f4:1e:6b:09:6c:71:10:3c:ce:
2d:1d:cb:70:06:f0:be:ea:a1:52:e7:f6:2d:46:15:
e4:36:0f:96:99:9b:92:39:cb:9c:f5:ba:62:ce:90:
48:e2:f5:d3:b9:8a:d3:e3:78:a9:be:79:7c:2a:31:
03:ef:fc:48:e2:7f:57:f8:94:ef:38:6f:0c:8c:d8:
38:90:94:66:bc:63:88:55:38:9c:f6:a5:f9:23:5c:
74:a8:59:05:7d:c8:c1:01:13:6c:31:e9:47:cc:d3:
ef:23:5c:5e:ac:cc:bd:52:9f:a6:8d:ce:ee:7c:54:
bd:44:81:0d:67:39:1b:2a:ba:70:ea:3f:37:45:3b:
45:24:e9:58:78:3a:03:e1:14:09:9c:b1:41:56:ee:
e4:4d:74:72:93:5c:0c:77:f2:5b:b0:b4:4e:4c:e0:
6f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6A:AC:CD:8F:CB:FF:99:70:FA:D9:2E:12:2F:CE:65:AD:DF:BD:94
X509v3 Authority Key Identifier:
keyid:71:4B:7C:38:80:33:E1:62:3F:C6:D8:BE:B7:AF:5C:39:42:51:91:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cUt8OIAz4WI_xti-t69cOUJRkds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/e0564d-9453-4dc2-aca2-a038be15b97b/1/cUt8OIAz4WI_xti-t69cOUJRkds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:0c:ca:68:e4:ab:9f:f0:48:66:17:3a:63:62:19:ea:ec:16:
10:eb:c8:e9:68:8f:ff:ba:7a:94:be:74:2f:47:93:89:c5:22:
85:cb:f3:a4:e9:ea:14:85:22:6f:a8:a2:0f:65:72:a9:f4:19:
25:18:60:b6:13:73:b5:e4:0b:5f:86:f0:cb:8b:ff:c3:87:f7:
92:68:1f:5d:4d:42:b7:77:c8:34:da:b2:6f:ee:2a:80:be:12:
a0:e6:7b:37:71:d4:a5:5d:72:1a:b3:0f:42:dd:a0:6b:50:c6:
1e:59:15:30:90:b5:91:91:2f:e4:0b:5f:95:90:53:99:23:24:
0d:f9:57:ae:b3:d8:6e:61:1c:4b:0a:02:62:84:e7:48:88:77:
e9:e9:a6:89:d8:47:44:dc:a9:1c:71:9a:5a:69:cb:bf:a7:db:
da:c5:41:25:b0:2c:5e:d0:c7:a5:0a:88:0f:c6:4e:33:ca:17:
42:c3:5e:b7:2f:c1:a9:73:b1:f5:6a:59:73:3c:6f:b4:c1:2d:
a0:15:29:21:86:9a:b8:ae:bd:2d:ad:c4:b7:69:bb:68:f6:fb:
47:25:a8:47:e2:22:9d:3e:42:cd:fd:35:e2:e4:91:2d:94:23:
11:fe:fd:7e:5a:3d:e6:99:71:31:20:29:29:8e:28:91:51:09:
32:28:3e:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 07:36:20 2025 by rpki-client