Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
File: Iycd4-AQWavm0aWTxKJP9uGI1k8.mft (raw, json)
Hash identifier: 60jUD+PV3nnDy8uuDlPMbIBoK9W9qsXwbtt4rjC0DhY=
Subject key identifier: 01:F3:3A:52:7C:FB:67:07:0C:07:DA:10:0C:DF:7C:F9:4C:D3:4F:8F
Authority key identifier: 23:27:1D:E3:E0:10:59:AB:E6:D1:A5:93:C4:A2:4F:F6:E1:88:D6:4F
Certificate issuer: /CN=23271de3e01059abe6d1a593c4a24ff6e188d64f
Certificate serial: 019921B0C2A0B02853CF54CBE8B9432FC9C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
Manifest number: 0E71
Signing time: Sun 07 Sep 2025 01:00:56 +0000
Manifest this update: Sun 07 Sep 2025 01:00:56 +0000
Manifest next update: Mon 08 Sep 2025 01:00:56 +0000
Files and hashes: 1: Iycd4-AQWavm0aWTxKJP9uGI1k8.crl (hash: C1yMAjXxsuFg70M9l4khUMilE+x16TTAvFlJeAMNcvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:c2:a0:b0:28:53:cf:54:cb:e8:b9:43:2f:c9:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23271de3e01059abe6d1a593c4a24ff6e188d64f
Validity
Not Before: Sep 7 01:00:56 2025 GMT
Not After : Sep 8 01:00:56 2025 GMT
Subject: CN=01f33a527cfb67070c07da100cdf7cf94cd34f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5f:dc:57:f6:80:cb:cb:4b:7d:c3:eb:4a:cc:
41:d0:83:34:ed:84:a8:69:7f:84:6b:f9:fc:ff:8f:
08:a3:b8:ac:43:5f:24:3f:41:f3:8c:36:fc:a4:ba:
a7:a5:c6:d4:b8:c8:4b:31:a2:2a:80:73:19:6a:5b:
7c:86:bd:57:60:25:d9:60:d2:94:62:69:b5:17:be:
aa:96:25:dc:4d:29:4d:78:f9:e8:6a:54:98:da:d8:
9e:f5:a4:f4:b7:3a:0b:e4:18:99:f1:1d:c5:b2:d2:
53:3b:2a:24:c1:b9:c4:aa:99:a7:7a:3d:08:91:c5:
07:d1:4c:a9:69:cb:6c:06:86:df:c4:46:5a:a5:39:
8f:d7:3f:f1:9e:12:f8:c3:47:2b:4f:cf:69:51:6b:
23:5e:18:f2:03:8d:fc:74:f1:d0:79:a7:f7:5c:4f:
77:30:91:5a:53:75:2c:d0:84:a6:0f:19:f0:d1:bd:
32:da:17:cb:b0:39:57:27:e6:42:06:45:4e:2d:5b:
b2:1e:67:44:27:37:0e:0a:60:2c:e3:63:3e:8d:b1:
14:e0:05:e5:e7:06:f9:ff:7d:57:8e:b2:ef:71:e3:
58:fb:0b:65:69:f4:91:69:ed:b8:13:ed:a9:38:11:
c8:6e:26:ac:82:50:22:b5:fd:e3:c0:30:01:a4:27:
39:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F3:3A:52:7C:FB:67:07:0C:07:DA:10:0C:DF:7C:F9:4C:D3:4F:8F
X509v3 Authority Key Identifier:
keyid:23:27:1D:E3:E0:10:59:AB:E6:D1:A5:93:C4:A2:4F:F6:E1:88:D6:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:2e:61:c0:08:cd:e5:18:ea:5b:eb:d0:6e:35:cc:2a:90:8f:
73:35:23:6b:3e:e6:b7:3f:0f:f8:a9:b9:87:ed:c1:03:ba:d7:
38:44:44:ee:6f:c0:2e:10:f2:4d:45:bc:b0:11:b9:11:25:ff:
ba:9c:cc:02:ae:bb:35:ee:1c:55:87:01:38:61:52:78:9d:86:
89:a3:c7:bd:7d:df:05:23:ba:40:eb:6c:59:a2:17:80:bc:0b:
ca:92:ba:db:77:8a:08:64:eb:25:0c:43:c3:fd:db:f4:a1:db:
ad:8e:70:b8:bd:30:39:17:46:3a:9f:ae:84:e2:0c:e1:73:11:
7f:4c:a2:3e:7b:8e:35:64:ca:79:4f:31:cb:0d:6d:9d:a6:c8:
90:a2:93:2c:3f:5a:9f:29:e2:ba:89:83:fa:10:08:09:2c:60:
2c:4b:97:59:f2:59:8e:81:42:b3:68:54:fa:1b:0c:03:15:cb:
11:ae:4a:97:20:f5:67:7b:36:16:56:81:97:ae:31:0b:c4:71:
97:2d:1c:0a:8d:b7:13:3e:69:e7:79:94:af:1a:b5:47:d4:ce:
28:0b:25:3e:09:69:83:44:24:a9:dd:43:5c:2c:00:cf:cd:51:
55:34:e5:1a:77:e3:c8:f1:fc:c9:fb:32:20:b4:77:19:28:bb:
e1:f5:ef:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:40 2025 by rpki-client