Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/1f1af6-dd1b-4117-ac17-deab8586f2ce/1/I1PVKkAkkfT5n-VHG90aXdb0K7w.mft
File: I1PVKkAkkfT5n-VHG90aXdb0K7w.mft (raw, json)
Hash identifier: FbbCoYd50MApVWltH0kFPo3gWKy0omCm0LyqKvzuuB0=
Subject key identifier: F8:F3:45:80:5A:CA:0F:8A:57:26:CF:D0:76:13:B3:F4:7A:5F:2D:48
Authority key identifier: 23:53:D5:2A:40:24:91:F4:F9:9F:E5:47:1B:DD:1A:5D:D6:F4:2B:BC
Certificate issuer: /CN=2353d52a402491f4f99fe5471bdd1a5dd6f42bbc
Certificate serial: 0199221EC16DB7A6625DD8FD287659B6B957
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I1PVKkAkkfT5n-VHG90aXdb0K7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/1f1af6-dd1b-4117-ac17-deab8586f2ce/1/I1PVKkAkkfT5n-VHG90aXdb0K7w.mft
Manifest number: 166B
Signing time: Sun 07 Sep 2025 03:01:04 +0000
Manifest this update: Sun 07 Sep 2025 03:01:04 +0000
Manifest next update: Mon 08 Sep 2025 03:01:04 +0000
Files and hashes: 1: I1PVKkAkkfT5n-VHG90aXdb0K7w.crl (hash: 0pQpUHse3PuzAUtvhI8VfQCPiRYA+m5cdsb/9lUcskc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/1f1af6-dd1b-4117-ac17-deab8586f2ce/1/I1PVKkAkkfT5n-VHG90aXdb0K7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/1f1af6-dd1b-4117-ac17-deab8586f2ce/1/I1PVKkAkkfT5n-VHG90aXdb0K7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I1PVKkAkkfT5n-VHG90aXdb0K7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:c1:6d:b7:a6:62:5d:d8:fd:28:76:59:b6:b9:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2353d52a402491f4f99fe5471bdd1a5dd6f42bbc
Validity
Not Before: Sep 7 03:01:04 2025 GMT
Not After : Sep 8 03:01:04 2025 GMT
Subject: CN=f8f345805aca0f8a5726cfd07613b3f47a5f2d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c7:ab:4e:57:d1:b0:ba:d5:61:d0:3f:d2:21:
f0:b6:aa:0b:94:fc:83:35:4f:a9:12:d4:6b:82:40:
92:94:ed:3c:b2:81:ff:8e:84:a0:03:02:32:b8:97:
79:41:e7:cb:97:2a:7f:87:93:5b:3f:26:0f:85:35:
f9:d2:cf:78:a9:87:56:3a:c2:fe:ca:92:23:d6:88:
86:35:31:ae:df:56:d2:99:53:22:8b:43:78:4b:43:
9c:98:80:28:59:27:15:25:d0:32:49:fb:29:75:d9:
54:fa:da:f4:76:a0:c3:fd:f4:ff:32:c2:e1:a4:6a:
fb:9f:ca:3a:15:57:5c:f1:fb:32:77:c9:65:18:09:
85:7e:ee:36:2c:1e:00:28:47:e4:36:1c:93:70:13:
0f:13:81:00:c8:db:45:76:32:22:e4:b8:36:45:47:
01:df:fa:eb:64:39:c5:cc:43:dd:cb:d4:3b:db:80:
2d:93:32:85:56:1c:aa:ea:56:10:2f:3f:ac:0f:60:
8e:23:0b:1d:73:55:50:c6:a5:66:64:d5:d0:03:a4:
46:29:58:64:12:13:57:f0:30:75:4c:53:68:ab:b9:
e5:90:6d:ce:8d:7a:22:c0:a5:ef:70:0c:7b:6f:b0:
e5:ca:c7:09:cf:ac:48:df:57:d1:bf:85:19:3b:5e:
f4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F3:45:80:5A:CA:0F:8A:57:26:CF:D0:76:13:B3:F4:7A:5F:2D:48
X509v3 Authority Key Identifier:
keyid:23:53:D5:2A:40:24:91:F4:F9:9F:E5:47:1B:DD:1A:5D:D6:F4:2B:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I1PVKkAkkfT5n-VHG90aXdb0K7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1f1af6-dd1b-4117-ac17-deab8586f2ce/1/I1PVKkAkkfT5n-VHG90aXdb0K7w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1f1af6-dd1b-4117-ac17-deab8586f2ce/1/I1PVKkAkkfT5n-VHG90aXdb0K7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:10:68:23:26:91:34:63:d1:4a:c5:2d:da:ea:c2:0e:31:a0:
5c:a4:fd:39:9d:7d:ca:6f:29:91:2c:c9:01:62:d6:b8:0c:4c:
f3:9b:f9:f9:aa:d0:5f:80:6f:9a:ea:c9:c7:aa:0b:e3:6a:8d:
8d:5e:df:1c:0b:e4:4c:c8:b7:c4:1e:e6:e1:8e:68:86:65:ef:
46:84:3d:ac:26:b0:ea:9d:4c:9a:d9:fe:1f:07:f1:4f:12:df:
e0:58:f0:3b:01:0c:74:30:d7:d4:c8:00:05:01:eb:91:80:55:
20:74:db:e6:ed:2b:fd:dd:bd:92:7f:5d:47:48:2c:ae:f6:af:
75:d0:af:35:6c:a4:d3:74:bd:02:29:3a:5a:de:d7:f5:d2:b7:
94:2e:2a:07:fa:5f:2f:c3:88:f2:0a:dd:f2:72:99:0d:0d:54:
5d:28:22:09:1a:65:e7:97:d2:53:4e:86:2f:0b:9c:3c:6b:2a:
83:21:66:9d:9f:72:c9:c9:da:41:5f:b4:52:f6:bc:89:94:ab:
63:45:bd:3e:79:96:23:1f:08:4f:86:2f:a0:22:f1:e9:d4:03:
aa:67:36:54:1d:fa:fc:d7:37:f2:c3:7f:96:5f:7e:36:66:fe:
06:16:a2:6a:a0:23:02:cd:5a:05:2d:4d:81:45:0f:be:fb:51:
86:1d:c8:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:41:15 2025 by rpki-client