Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
File: 04BE23ZiygAUgai9swt6vRi86ao.mft (raw, json)
Hash identifier: Uke/XAb5VnN/JyXLnoXW8HwzK4R2gGseBN8oiKgU5ek=
Subject key identifier: 8F:EF:68:6A:2F:92:15:D4:09:66:75:DE:3E:C1:2A:6D:AA:9A:21:5E
Authority key identifier: D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
Certificate issuer: /CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Certificate serial: 01992255403882FE59EDF051495475242918
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
Manifest number: 1134
Signing time: Sun 07 Sep 2025 04:00:36 +0000
Manifest this update: Sun 07 Sep 2025 04:00:36 +0000
Manifest next update: Mon 08 Sep 2025 04:00:36 +0000
Files and hashes: 1: 04BE23ZiygAUgai9swt6vRi86ao.crl (hash: 9RmuZaeYsG0/LFKPP790rwpMCHRIderGuVlgdNvS6rY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:40:38:82:fe:59:ed:f0:51:49:54:75:24:29:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Validity
Not Before: Sep 7 04:00:36 2025 GMT
Not After : Sep 8 04:00:36 2025 GMT
Subject: CN=8fef686a2f9215d4096675de3ec12a6daa9a215e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cc:b1:61:15:d9:3e:86:3c:39:74:53:2b:1c:
27:e0:7a:7c:93:4d:8b:b7:a6:e2:4a:c3:e7:f7:07:
02:90:2e:07:d5:78:f7:0d:71:28:52:2f:77:5d:a6:
82:a1:14:ac:cf:59:8c:e9:1a:23:fc:53:34:da:3e:
38:ba:8c:d3:02:ca:12:56:d4:50:82:df:10:f3:51:
9b:ec:5d:b3:cd:c5:e2:fb:60:25:b4:a2:40:54:52:
2e:d6:76:d0:64:d0:90:9d:11:45:e8:ea:fe:5a:38:
46:86:15:85:bc:d6:f8:22:ae:aa:90:ec:65:52:72:
ab:46:a1:b2:de:18:21:64:fe:ca:74:de:1e:48:7d:
d9:7e:94:93:4f:7f:1f:0a:36:16:41:45:91:90:25:
01:88:bd:2c:4e:40:79:a7:cb:bb:ce:e1:91:6e:30:
88:bc:33:5e:5b:90:e4:8c:dc:da:8d:c1:e0:18:61:
75:e5:d5:30:92:01:8d:57:9e:d9:5f:85:25:61:82:
c5:ef:ea:e6:dd:6e:9a:f6:98:61:6d:58:60:5e:1e:
58:b9:6e:73:02:37:53:77:02:ad:7e:d5:20:cd:b1:
aa:b2:0c:1b:92:b9:d9:ab:b5:56:ba:5d:51:a6:b4:
c4:96:0e:d7:7e:1e:82:1f:ee:aa:28:cc:29:22:8c:
67:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:EF:68:6A:2F:92:15:D4:09:66:75:DE:3E:C1:2A:6D:AA:9A:21:5E
X509v3 Authority Key Identifier:
keyid:D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:63:72:e2:bb:3b:d4:4f:2d:11:a2:8e:04:fb:1f:20:8d:80:
48:33:73:cd:71:a5:13:76:cb:f1:66:92:cb:a6:62:e0:e6:4a:
22:c5:16:31:8f:7d:d1:29:13:57:a7:5e:8f:15:15:23:95:2a:
e0:a7:b2:a2:57:53:39:06:73:c5:a4:dd:65:3c:5f:41:e9:37:
34:de:55:d7:46:1b:0f:4a:99:21:87:3f:d8:9c:f7:e3:ac:d4:
e1:64:ee:08:5e:bb:b6:6c:8d:d5:38:5b:3a:a1:88:54:13:5e:
55:3e:3f:52:00:ab:4e:03:d1:27:5f:36:96:27:2f:24:eb:4f:
80:3b:46:c4:3b:1c:60:14:4e:be:11:7b:cf:7f:34:e0:ae:86:
4b:82:ba:6a:ef:93:99:87:95:9a:9a:b3:29:5e:ca:8c:46:ea:
6b:ab:45:97:00:90:3b:1d:5f:cb:b1:ed:50:1f:f0:0d:a4:93:
e1:63:cb:53:4c:0d:f7:f7:37:b2:5a:cf:c6:5b:e1:83:94:1d:
ac:92:6f:f2:35:da:9a:83:4d:41:86:24:57:a0:85:b6:c7:b8:
3e:09:d1:d2:07:4c:20:83:2b:c1:d7:48:55:31:f3:cf:c9:e9:
3f:6d:f0:4d:a8:8f:71:60:fa:19:b6:ba:d9:09:c8:e2:41:1f:
a9:eb:71:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:02 2025 by rpki-client