Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
File: d11030Q8uAUXzkFQ3OImYpQPHXw.mft (raw, json)
Hash identifier: MP5nhVUIqrG3vuciSb26PhG12x52m6XwRe0gkXox5BQ=
Subject key identifier: 7A:36:C9:9B:78:97:32:75:33:4D:44:2D:1B:D4:37:93:9E:CC:D2:EE
Authority key identifier: 77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C
Certificate issuer: /CN=775d74df443cb80517ce4150dce22662940f1d7c
Certificate serial: 0199240CDD4186CED7F910275D3381016FE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
Manifest number: 0AAD
Signing time: Sun 07 Sep 2025 12:00:46 +0000
Manifest this update: Sun 07 Sep 2025 12:00:46 +0000
Manifest next update: Mon 08 Sep 2025 12:00:46 +0000
Files and hashes: 1: d11030Q8uAUXzkFQ3OImYpQPHXw.crl (hash: tQR54qjwdR0faGU39w8yO5ifuIcUhj9vZkCiVKqFK34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0c:dd:41:86:ce:d7:f9:10:27:5d:33:81:01:6f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=775d74df443cb80517ce4150dce22662940f1d7c
Validity
Not Before: Sep 7 12:00:46 2025 GMT
Not After : Sep 8 12:00:46 2025 GMT
Subject: CN=7a36c99b78973275334d442d1bd437939eccd2ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:53:d7:3a:79:cc:c9:52:99:d2:74:a5:c3:ec:
5a:69:e8:58:88:0d:e6:90:e4:2f:ba:8c:1e:2b:75:
6c:93:d4:36:1e:3d:9e:72:ec:d0:75:d7:85:24:10:
bf:e2:a0:dc:d7:6a:cb:a4:05:63:71:78:fa:65:6d:
c7:43:79:cc:97:90:00:fb:79:34:fc:96:64:ef:e5:
0b:d3:18:f9:d5:60:ff:c0:64:be:53:0c:b0:58:02:
54:38:8e:da:a2:7e:60:9b:9c:70:9d:3f:d9:60:bb:
36:79:b5:5d:d4:40:bd:c4:14:3c:c2:f5:bb:73:05:
09:be:11:4c:b1:2b:63:cc:5c:29:66:ac:89:c0:40:
45:71:63:da:47:d6:48:9e:25:eb:92:b7:61:bc:fe:
9e:64:ab:60:35:33:27:39:5e:a4:09:82:ce:6b:2f:
53:07:8e:e7:78:7d:c9:8a:69:da:73:24:8c:f4:1b:
03:95:17:9e:b4:b2:54:51:4a:0c:f5:81:cd:c0:3a:
b9:2a:3a:bd:8a:0f:81:5f:73:36:84:eb:30:6e:63:
5b:59:ad:54:6a:36:ce:b2:98:a0:a6:a3:23:ad:c0:
cc:a8:8b:1d:d1:e0:96:69:4a:39:8f:cb:17:c7:57:
77:c3:ff:5b:78:39:88:7c:39:29:0a:01:9d:a0:a3:
31:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:36:C9:9B:78:97:32:75:33:4D:44:2D:1B:D4:37:93:9E:CC:D2:EE
X509v3 Authority Key Identifier:
keyid:77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:51:1b:05:4b:d0:51:1a:6c:6f:a6:5e:6e:ef:62:a5:29:42:
42:f9:db:e0:3f:f3:d9:f8:d2:22:ce:06:dc:0c:43:73:3b:bf:
d3:c1:2f:6b:40:2c:ed:8e:1d:30:b2:d8:23:4f:31:fa:ff:cc:
5e:a4:0b:f3:3c:7c:87:bc:bc:45:fb:7f:bb:90:3d:40:0c:fa:
49:10:be:59:90:87:71:fa:43:9c:68:5f:00:22:c7:8e:f8:93:
a8:7d:81:e4:81:ca:9b:b4:f1:21:25:df:01:66:7d:85:9a:54:
34:f6:73:72:5d:ec:49:52:2e:fa:c5:93:63:96:08:7b:0e:37:
4f:e3:a8:b5:19:56:64:34:e4:29:6e:bf:84:36:2f:c0:69:32:
47:82:c0:59:e8:09:a9:43:b6:f3:6e:09:fe:15:c4:9e:97:b8:
10:d7:2a:0a:0e:5c:6c:fa:1c:9d:0d:04:b9:3c:d5:41:a7:b4:
34:8c:b4:cc:f3:2e:62:67:9d:2a:90:1d:3f:53:91:fd:92:ee:
a5:e6:f6:2a:ea:9d:94:d4:c9:12:5f:55:58:c0:d1:24:0a:88:
b3:c7:2b:3f:50:83:35:6f:49:7c:ac:03:49:ba:61:92:0c:5e:
57:f8:0a:f8:46:83:c5:78:ad:89:36:38:f2:2c:66:66:fb:1b:
36:35:f4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 15:05:24 2025 by rpki-client