Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
File: ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft (raw, json)
Hash identifier: PmSira6VDbj7yhfOb+/STDTY2tSG3SNtuGPfy5lAkX4=
Subject key identifier: 89:DA:37:C0:CB:7B:E2:5C:A5:C3:3A:48:B9:57:88:48:55:0B:94:DD
Authority key identifier: 82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD
Certificate issuer: /CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd
Certificate serial: 019918093BCBF5414A4F1E9AEE16EC537577
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
Manifest number: 0852
Signing time: Fri 05 Sep 2025 04:01:22 +0000
Manifest this update: Fri 05 Sep 2025 04:01:22 +0000
Manifest next update: Sat 06 Sep 2025 04:01:22 +0000
Files and hashes: 1: ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl (hash: paESqhu1cM5qHNZxxfs93vFBPem23a/SOPuNqXFkRfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:3b:cb:f5:41:4a:4f:1e:9a:ee:16:ec:53:75:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd
Validity
Not Before: Sep 5 04:01:22 2025 GMT
Not After : Sep 6 04:01:22 2025 GMT
Subject: CN=89da37c0cb7be25ca5c33a48b9578848550b94dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0a:17:16:a6:90:0f:1a:4d:03:a3:95:bf:6b:
46:b3:3f:62:44:3d:f8:35:e9:a6:14:c4:95:b2:5d:
cf:9d:b0:c3:57:d0:40:e6:22:a9:d2:20:45:44:ca:
7f:8b:01:b8:0b:fb:71:ef:cd:dd:91:26:27:23:15:
bc:81:7e:3f:4f:be:37:5d:11:ef:03:9c:ae:38:70:
76:3c:30:a4:a2:c9:51:24:d3:68:8c:90:af:06:a9:
25:9b:89:e2:ae:1d:96:0f:f3:3e:23:62:ee:3a:06:
3b:07:9d:eb:7b:9e:86:17:05:a3:57:53:ab:e0:11:
e2:72:f3:cf:0d:e9:4b:6c:49:f0:d9:a5:4f:c3:f7:
46:67:ee:c8:03:60:cc:e0:e8:7c:6a:82:50:8d:76:
97:02:52:f4:60:74:9e:69:65:b4:86:60:6f:85:71:
76:4e:d1:a7:08:5f:15:af:6b:c2:9c:87:0d:23:06:
97:cf:b2:7f:ae:2d:d2:b6:fa:84:e9:a7:f7:15:70:
46:dc:29:0f:be:10:1e:8a:bb:d4:32:5c:a9:12:92:
35:ab:86:eb:21:66:1b:b7:f0:14:90:41:6e:55:f4:
0d:28:89:ed:9d:fe:a0:30:70:6d:9d:48:d5:4f:e4:
a6:51:ba:9e:a3:70:01:4e:9f:8a:e2:c4:97:96:1d:
70:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:DA:37:C0:CB:7B:E2:5C:A5:C3:3A:48:B9:57:88:48:55:0B:94:DD
X509v3 Authority Key Identifier:
keyid:82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:c1:ce:72:2a:38:e7:90:48:01:d3:8a:e9:c4:ac:f3:15:80:
9c:0e:43:ea:9a:ce:c8:a4:3b:9d:7c:9d:fc:86:86:42:50:bf:
e9:b7:d3:2d:5c:b4:96:29:b5:da:16:bf:d1:00:fe:05:f2:58:
7d:1d:02:37:61:19:88:42:dd:97:81:b1:fc:a2:49:2f:3e:cf:
95:19:86:e6:a7:de:44:4c:dd:2a:9d:c2:96:81:3e:09:f6:70:
dc:fe:3e:ed:55:50:3a:1c:84:4b:f0:20:2a:a2:48:79:9c:40:
b6:b2:dd:5a:d5:7f:6d:54:78:3e:b3:9b:63:8c:76:9e:1c:19:
13:6e:18:7f:86:64:71:72:6c:20:07:ef:52:c4:51:39:a9:1c:
ac:51:71:70:d4:94:ef:4a:ba:4a:e0:f2:a8:db:b9:fc:4d:74:
ca:da:9a:7e:0f:4d:c3:0e:9d:12:d0:0e:f5:2d:ba:9c:b8:44:
c5:f0:26:5d:12:a1:67:64:0e:eb:cc:2d:fd:ba:37:58:fa:8f:
8e:9e:99:67:a6:8b:cf:fb:3e:42:55:b3:a1:2a:98:ba:81:1b:
55:57:2d:7f:25:52:41:45:2c:2f:e9:17:77:1a:e9:21:5e:a0:
4a:1d:1a:a9:9b:70:39:4e:73:6c:f7:98:57:5f:d2:40:9b:11:
26:34:cb:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 07:37:28 2025 by rpki-client