Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
File: r5aNFt0rQdNStf0zxJs-xP2tQlg.mft (raw, json)
Hash identifier: s2Uobej+Eubk0e1bG8mdqiJDV2H8RzYXq42Za+I6XX8=
Subject key identifier: E8:47:67:06:77:12:E0:73:D4:12:4E:B8:73:41:56:7E:6E:23:48:F5
Authority key identifier: AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
Certificate issuer: /CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Certificate serial: 0199176403BBD4352185E1F2C967DCC674C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
Manifest number: 0F7C
Signing time: Fri 05 Sep 2025 01:00:54 +0000
Manifest this update: Fri 05 Sep 2025 01:00:54 +0000
Manifest next update: Sat 06 Sep 2025 01:00:54 +0000
Files and hashes: 1: r5aNFt0rQdNStf0zxJs-xP2tQlg.crl (hash: sHWWmVnIxt1jhwc/iQsqhc9yoUIV3ejlnpZqoU3yTiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:64:03:bb:d4:35:21:85:e1:f2:c9:67:dc:c6:74:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Validity
Not Before: Sep 5 01:00:54 2025 GMT
Not After : Sep 6 01:00:54 2025 GMT
Subject: CN=e84767067712e073d4124eb87341567e6e2348f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e9:db:d2:10:c5:ad:97:62:b2:63:70:64:4a:
92:38:87:63:26:f0:68:17:75:b0:6f:9c:1c:e2:17:
f7:1c:bf:bf:69:00:07:64:81:e9:8f:14:20:fb:43:
9f:1b:a2:d1:d3:34:0e:14:4a:6d:87:55:f8:16:ce:
4b:a9:ba:fb:cb:e9:60:65:60:ea:01:df:d3:97:96:
3d:fa:fd:55:0f:91:c1:41:13:7c:c3:10:f3:31:9f:
7c:5a:7f:24:71:02:c9:a4:51:0e:67:5d:f8:28:9e:
3c:bd:d9:4b:24:35:49:ab:5f:74:1b:6f:08:9e:cb:
8f:44:66:5c:e1:4d:2c:ee:a3:5f:ab:49:99:d6:d6:
6c:f9:1e:a9:4e:39:17:0b:8b:a8:0b:00:ca:3b:dd:
1b:f6:0d:d4:28:1d:f8:a9:8b:28:96:06:1c:d7:15:
6a:ce:08:11:86:d2:d0:5a:03:ba:86:f9:20:fc:ec:
0f:2d:b7:3c:1d:0a:42:45:2d:64:ac:c7:ff:a4:ec:
97:4a:13:03:1e:19:62:40:96:85:eb:24:42:be:04:
27:91:87:a1:78:15:bc:83:44:0e:3a:fc:39:eb:26:
5c:f3:da:92:06:03:f9:14:e9:d7:7b:36:4c:22:0c:
20:67:2a:b9:de:df:78:92:04:04:a0:33:00:35:e0:
4f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:47:67:06:77:12:E0:73:D4:12:4E:B8:73:41:56:7E:6E:23:48:F5
X509v3 Authority Key Identifier:
keyid:AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:3a:c9:8b:3f:ec:df:05:14:a1:e9:c5:c3:87:d9:32:cb:24:
e6:99:69:92:c2:a1:2f:87:78:40:bf:e1:4a:2b:f7:aa:36:fc:
86:2d:ae:f5:0d:6d:67:a8:9a:e8:a1:ae:40:28:4c:ec:06:35:
7a:46:71:3f:19:48:ba:28:6e:8e:42:ed:bd:a3:78:d3:f6:3a:
4f:ed:c4:d1:25:cc:74:3d:89:79:db:44:66:62:5d:e7:80:01:
16:cf:1f:93:fe:ba:19:cc:c6:19:86:ae:b6:83:8a:3e:fc:32:
ab:6b:69:81:3a:db:20:2e:c9:05:ca:d3:5d:60:a8:60:43:c8:
9e:d4:c0:81:9a:b4:44:79:68:e6:1f:3f:9d:60:e2:b7:ac:b8:
74:81:eb:3c:07:b3:ef:90:8b:d7:34:3e:2e:66:cb:66:21:c2:
2f:98:ef:65:6d:77:fe:b4:bd:0b:c8:13:39:e4:10:3d:eb:10:
75:a0:91:33:21:15:0b:d3:03:30:89:d9:6c:64:44:18:41:7b:
92:ab:f9:3e:05:de:1a:36:df:f4:c9:d0:f2:cb:78:a2:93:21:
c6:fa:3f:6d:25:0f:73:06:ab:48:f5:0d:0f:87:ab:b7:86:6b:
0a:ea:0d:13:f1:f5:66:8f:ac:52:1a:ad:0f:f9:3b:4d:d9:c7:
ff:95:ae:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 07:33:07 2025 by rpki-client