Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.mft
File: P5oSEPUJkiOdOn8uXoATtatJH_8.mft (raw, json)
Hash identifier: p4mMokpnRmOPLwp5qlxcAccMisAICMOu80MtLvqgEP4=
Subject key identifier: 9C:CC:A5:48:EF:4D:0B:BF:67:B6:DF:35:18:A3:2D:6C:04:4C:88:8E
Authority key identifier: 3F:9A:12:10:F5:09:92:23:9D:3A:7F:2E:5E:80:13:B5:AB:49:1F:FF
Certificate issuer: /CN=3f9a1210f50992239d3a7f2e5e8013b5ab491fff
Certificate serial: 019922FA630048018816967DB65B3D54898A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P5oSEPUJkiOdOn8uXoATtatJH_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.mft
Manifest number: 1240
Signing time: Sun 07 Sep 2025 07:00:58 +0000
Manifest this update: Sun 07 Sep 2025 07:00:58 +0000
Manifest next update: Mon 08 Sep 2025 07:00:58 +0000
Files and hashes: 1: P5oSEPUJkiOdOn8uXoATtatJH_8.crl (hash: /wUcp2E5WimXLpXSKf/dIi9LwNweoh00OIgfq8vzw9c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/P5oSEPUJkiOdOn8uXoATtatJH_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:63:00:48:01:88:16:96:7d:b6:5b:3d:54:89:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f9a1210f50992239d3a7f2e5e8013b5ab491fff
Validity
Not Before: Sep 7 07:00:58 2025 GMT
Not After : Sep 8 07:00:58 2025 GMT
Subject: CN=9ccca548ef4d0bbf67b6df3518a32d6c044c888e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:aa:c5:d1:3d:75:f3:fd:2c:67:b2:05:7a:aa:
96:1d:27:10:e1:30:69:b5:6a:5b:ff:8d:07:04:32:
0f:10:fc:23:81:36:cf:e9:ab:f1:5a:02:93:7e:c2:
83:6d:93:29:a2:fb:ea:dd:d6:48:14:da:3c:40:01:
87:5c:1e:de:64:cc:78:0e:c3:24:cf:39:57:55:45:
34:ad:e2:a4:de:d8:4d:df:d8:91:94:95:b2:7e:ef:
5b:ec:e1:6c:dd:a5:3d:21:3e:8c:df:1c:bc:31:71:
09:fe:c9:d6:15:3f:b0:34:b4:0c:6d:53:3e:ee:00:
6a:11:5f:55:42:00:92:64:8e:72:c7:9b:c6:dd:ce:
a4:04:4d:c9:84:9b:32:e8:98:af:cf:f4:f5:3e:ba:
ce:97:6e:3e:c7:26:af:fa:6d:70:a8:4d:2c:ce:04:
c0:d6:73:a6:b8:37:bf:62:e9:31:c1:a2:f2:ba:08:
7b:d9:1b:d9:90:51:3c:8a:7b:1b:8b:91:ce:0e:d5:
fb:18:4e:1a:6f:86:51:36:75:1b:a3:45:10:94:b0:
f8:9e:eb:38:0f:01:55:9d:50:03:c3:76:3c:eb:ac:
5f:c3:60:55:12:f8:42:8b:b3:58:27:6e:d8:a6:f8:
79:e7:ca:21:a2:c9:60:62:34:2d:a0:5c:a8:f4:c6:
2b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:CC:A5:48:EF:4D:0B:BF:67:B6:DF:35:18:A3:2D:6C:04:4C:88:8E
X509v3 Authority Key Identifier:
keyid:3F:9A:12:10:F5:09:92:23:9D:3A:7F:2E:5E:80:13:B5:AB:49:1F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P5oSEPUJkiOdOn8uXoATtatJH_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/14a5e8-f3bf-42f9-a285-a8734f703b98/1/P5oSEPUJkiOdOn8uXoATtatJH_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:88:89:a4:04:6c:9c:60:a1:24:d0:2a:9d:6d:76:9c:25:83:
90:61:ba:df:4a:5f:fd:70:55:11:aa:8f:d5:47:f5:ea:5b:f5:
7d:ad:a7:ac:10:6a:d1:12:2d:ad:80:57:10:15:a0:ab:65:8a:
50:da:1b:df:dc:49:0b:83:24:00:ee:87:b2:dc:f8:38:93:5f:
85:db:3f:10:c5:c8:cd:a9:e3:02:b9:74:5f:f8:28:d4:c8:0c:
f0:3d:fc:3e:2f:d0:9d:31:0f:9b:c5:43:e0:78:ee:d0:69:a8:
4e:bc:9e:f9:7d:01:1f:92:c8:8a:db:49:f6:37:ac:52:2b:bc:
fc:87:cf:33:7e:53:c4:93:1c:43:78:f4:fb:26:fa:d5:f8:8d:
49:b4:0a:60:9e:f6:f7:8d:ff:c4:f4:6f:d0:5d:81:9d:33:83:
6e:fe:ab:84:a3:28:8c:77:d0:e5:c7:e7:4e:65:d8:17:60:ef:
23:dc:db:61:ad:fb:fa:8c:d1:da:02:28:91:e8:3a:6e:15:03:
bd:ce:56:bf:50:5f:c0:c4:f8:88:f5:dc:f9:69:1d:ac:77:5f:
d2:99:58:7f:ca:c1:e3:01:7e:1a:1d:e6:6d:d0:d2:8c:76:77:
e1:8a:67:8b:73:b7:c4:fc:17:39:ba:98:fb:4f:b3:0e:e6:57:
06:6c:9c:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:11:24 2025 by rpki-client