Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
File: 96wXOfUp2vTMczgkibgFl-ugf0E.mft (raw, json)
Hash identifier: tTjOzFbdZhEfOHvlSFw1sXw0blmoTrlGaLQ/9ffmkgY=
Subject key identifier: EF:7D:2E:98:F6:8C:2B:48:87:6B:DF:52:BC:48:96:0B:60:48:F5:DD
Authority key identifier: F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41
Certificate issuer: /CN=f7ac1739f529daf4cc73382489b80597eba07f41
Certificate serial: 0199225554DB0784BD067CDEFC27ACE0DBFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
Manifest number: 08AA
Signing time: Sun 07 Sep 2025 04:00:41 +0000
Manifest this update: Sun 07 Sep 2025 04:00:41 +0000
Manifest next update: Mon 08 Sep 2025 04:00:41 +0000
Files and hashes: 1: 96wXOfUp2vTMczgkibgFl-ugf0E.crl (hash: WjVnoDlPYqnl5spyWwzKTGoBWTKT4pR73CKazulfJQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:54:db:07:84:bd:06:7c:de:fc:27:ac:e0:db:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7ac1739f529daf4cc73382489b80597eba07f41
Validity
Not Before: Sep 7 04:00:41 2025 GMT
Not After : Sep 8 04:00:41 2025 GMT
Subject: CN=ef7d2e98f68c2b48876bdf52bc48960b6048f5dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e3:32:a0:bc:77:ea:fb:df:b4:d7:32:25:27:
05:5f:d4:a9:e3:c7:8c:b2:08:ff:b2:76:17:53:62:
de:3f:2f:bb:11:26:ec:63:0c:ef:ea:76:c8:8d:3a:
77:3f:73:6d:cf:fd:1d:c8:90:13:e9:51:de:ce:c2:
13:f1:a5:61:2b:2f:89:cf:4b:7f:5b:d7:41:a9:23:
a7:64:72:9f:82:79:8f:9d:7d:b5:13:05:b1:c7:be:
a2:55:56:c2:32:ce:6a:4e:2d:e3:b6:a2:fd:b0:f7:
df:5c:0d:28:e6:87:5d:90:4e:0a:a5:a0:51:c5:3e:
02:a8:24:d6:e1:8a:49:20:29:15:86:2f:a7:06:b3:
43:f0:90:0f:0d:6d:85:61:35:34:33:32:24:92:53:
bc:ea:9f:b2:fd:7f:49:a5:4d:71:ef:42:2e:93:84:
31:27:37:9c:2e:ef:bf:03:5c:d8:c4:05:b9:9f:64:
02:98:0d:94:75:be:19:38:47:84:42:9e:60:96:6e:
41:74:68:ff:62:bf:02:f5:ab:4c:4a:5c:a1:0f:85:
92:54:26:3e:48:9d:b9:a5:25:6e:96:78:a1:ea:ae:
e7:7a:9c:9f:bf:5d:c8:d0:97:3f:09:0e:e6:2a:2b:
cc:7c:0d:5a:d5:36:2b:ca:3d:c5:75:35:a0:7b:45:
a8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:7D:2E:98:F6:8C:2B:48:87:6B:DF:52:BC:48:96:0B:60:48:F5:DD
X509v3 Authority Key Identifier:
keyid:F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:a2:4d:d6:58:62:c4:ab:32:fc:b0:76:51:c2:76:6e:40:f6:
8a:43:2e:76:f6:8b:75:93:39:0f:c0:91:a3:12:34:f3:3b:6c:
db:c7:13:7e:c2:44:a3:d2:3a:97:18:d1:90:bc:e1:08:54:11:
ad:aa:86:c7:4a:28:e8:14:ca:ef:f8:ed:80:5a:b3:e1:7c:8d:
e6:08:89:f3:74:b5:98:89:6b:6f:a0:16:3e:6a:4b:14:b6:c4:
5f:e7:24:af:61:06:74:38:4b:36:3e:53:cb:4b:ca:e5:b6:9d:
38:d7:83:52:ca:a9:22:3a:8d:26:df:f9:8e:51:4c:b1:ec:da:
82:09:44:9c:b2:73:dc:95:d3:82:9f:2c:53:47:a8:91:49:f1:
c5:5d:17:7c:03:0f:32:18:24:c5:6a:e3:c5:7e:b4:4c:16:6a:
2c:3c:ae:49:5c:b4:8b:ed:5c:53:f2:8e:a9:74:49:41:28:36:
ae:26:eb:a4:95:eb:be:78:b7:58:0f:e2:af:de:98:23:95:b5:
bd:7d:65:e0:87:e9:63:3f:b3:9f:12:0e:d6:09:e6:e9:ad:60:
4f:d5:97:d2:8e:8c:ec:7c:05:17:e1:ab:0c:2d:16:00:f7:6f:
6f:03:29:1d:2f:81:d1:ec:1f:b9:ed:ba:17:57:94:36:bd:b1:
1a:3b:3c:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:53:27 2025 by rpki-client