Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
File: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft (raw, json)
Hash identifier: eQG/pGxeBGBW24qne6ohHeU44A2yyuskzXZgsWoBBKI=
Subject key identifier: D0:F0:20:32:25:E7:32:64:C6:8B:45:3C:9E:D2:E9:C8:7F:17:DF:74
Authority key identifier: D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC
Certificate issuer: /CN=d271e4ed8425383f6c81c21a4894a43763675efc
Certificate serial: 01984AAEDED66B5EB9D53E5C8019D989EF45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
Manifest number: 0109
Signing time: Sun 27 Jul 2025 07:00:30 +0000
Manifest this update: Sun 27 Jul 2025 07:00:30 +0000
Manifest next update: Mon 28 Jul 2025 07:00:30 +0000
Files and hashes: 1: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl (hash: N95q7uz6UvKwZFMsZOw4xtEIbbwHvIKnAUHxKEh+844=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:ae:de:d6:6b:5e:b9:d5:3e:5c:80:19:d9:89:ef:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d271e4ed8425383f6c81c21a4894a43763675efc
Validity
Not Before: Jul 27 07:00:30 2025 GMT
Not After : Jul 28 07:00:30 2025 GMT
Subject: CN=d0f0203225e73264c68b453c9ed2e9c87f17df74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:99:ee:14:cd:8c:89:3c:b3:5e:42:90:45:c9:
8c:df:c4:f0:e4:e1:87:d1:03:30:dc:cb:0c:9a:f2:
b0:e4:58:f5:4c:d0:8c:74:69:a3:ed:2d:da:91:4d:
c5:ad:66:f2:39:4d:fb:3f:d6:86:6a:a7:cb:c4:1c:
26:9e:dc:27:89:ff:c5:a0:b3:ac:66:a8:bd:f7:cb:
d9:f6:c7:24:f2:2c:56:1a:f3:0f:44:2b:0b:43:c2:
b8:d3:a0:38:9d:09:27:39:00:ae:a9:d3:0d:d8:3e:
7c:71:ab:0c:11:fc:a3:66:de:4f:f0:56:f0:f7:45:
74:5d:42:6a:33:6d:26:a2:c4:43:b6:31:10:a0:4b:
29:ec:d1:65:e4:8c:9a:c5:7a:eb:d4:64:8d:da:ca:
47:47:e7:3d:57:b4:0c:72:a1:37:c4:58:b0:89:ae:
2d:e1:b0:d9:54:33:8b:ed:b4:6d:1f:bf:ad:50:01:
ce:9d:5f:bd:ed:a0:1a:fd:15:51:f0:18:b4:63:1f:
3b:aa:d3:19:a7:36:00:63:86:60:f8:fc:9a:7e:7f:
39:c0:e1:fb:19:39:b7:8e:af:35:ec:d4:a2:bc:85:
b5:63:51:95:2e:66:7c:0d:c6:50:06:1e:dd:ab:cc:
79:11:24:9d:5f:99:3b:49:94:df:5c:bf:1f:21:c5:
d1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F0:20:32:25:E7:32:64:C6:8B:45:3C:9E:D2:E9:C8:7F:17:DF:74
X509v3 Authority Key Identifier:
keyid:D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:c3:7a:79:6d:2c:95:50:b0:22:8c:7a:26:f3:50:80:dc:af:
82:bd:fa:d5:55:de:54:85:68:d9:48:a8:86:0f:f1:35:53:68:
39:1a:61:11:ac:5c:86:48:c9:e2:d9:b6:8b:8a:65:8d:91:da:
85:cf:39:1b:0d:df:fe:53:88:fc:83:2a:5a:43:ae:f9:81:f3:
76:10:c5:71:44:d2:90:da:77:6f:76:cc:cd:73:5a:fb:55:85:
d6:0d:97:cb:f5:d2:a7:98:a5:fd:6f:39:7a:5e:0f:e9:37:e6:
65:9d:e0:ef:fe:5a:e6:ad:08:aa:b2:9a:bc:c6:5b:25:3c:9d:
87:3b:66:3f:92:92:fc:ea:b7:33:70:54:a4:2f:ce:da:3f:43:
86:e7:c7:ac:53:59:ee:dd:1b:96:85:99:05:11:f8:9b:bb:19:
bb:40:1f:ce:9c:b6:19:d3:46:46:e0:c1:a0:c1:2c:fe:44:60:
29:59:e5:62:ba:51:6c:42:4b:65:af:6b:ad:d7:ea:d8:b1:8a:
65:32:93:c9:b9:17:a8:4c:a6:29:1e:90:df:47:f0:ea:2c:0c:
16:cb:5d:88:e2:98:a2:63:9f:0e:80:69:8c:c2:a8:c7:63:44:
97:d3:45:a4:c1:b2:9d:a8:eb:c2:0b:42:fd:f9:f5:dd:ff:14:
ef:d0:cc:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 12:18:02 2025 by rpki-client