Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft
File: gz8MJRPUNTtAzvg5F57r-HOCRcY.mft (raw, json)
Hash identifier: a6CTkihg7Ou9iWouv9Pw8Dok3jEXhn8Zrie2piWaZzM=
Subject key identifier: B5:E2:85:E8:92:F9:3E:2B:8C:07:60:EB:23:BD:42:36:6B:DC:CE:36
Authority key identifier: 83:3F:0C:25:13:D4:35:3B:40:CE:F8:39:17:9E:EB:F8:73:82:45:C6
Certificate issuer: /CN=833f0c2513d4353b40cef839179eebf8738245c6
Certificate serial: 019921B1C6E7D279A07CE15CA397F44990CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft
Manifest number: 1145
Signing time: Sun 07 Sep 2025 01:02:02 +0000
Manifest this update: Sun 07 Sep 2025 01:02:02 +0000
Manifest next update: Mon 08 Sep 2025 01:02:02 +0000
Files and hashes: 1: gz8MJRPUNTtAzvg5F57r-HOCRcY.crl (hash: eIf3J99caX7I3sHIVKapWEV1iujtWZLrsYmVfM8vCjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft
rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:c6:e7:d2:79:a0:7c:e1:5c:a3:97:f4:49:90:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833f0c2513d4353b40cef839179eebf8738245c6
Validity
Not Before: Sep 7 01:02:02 2025 GMT
Not After : Sep 8 01:02:02 2025 GMT
Subject: CN=b5e285e892f93e2b8c0760eb23bd42366bdcce36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:2c:1b:55:fc:e3:ff:29:2f:27:c0:0d:44:a3:
17:23:4f:d4:5a:c8:11:2e:81:2c:e7:59:28:45:4a:
d1:f6:47:6f:ac:58:58:73:1c:03:e4:41:33:1c:d3:
23:40:57:bb:3e:cb:17:fc:c2:d0:7a:5c:6d:08:6d:
53:69:b2:3e:cd:11:d8:f9:a8:0f:c9:3d:c5:e4:ce:
b0:8f:b6:66:73:15:ca:62:7f:94:0f:24:cd:4b:a6:
b2:d7:3a:49:b7:66:58:fc:57:c8:b2:a7:5d:d3:d6:
d7:fb:a7:3a:07:12:76:32:44:e4:5b:67:e3:0f:68:
0d:f9:7d:58:38:c2:6f:94:0f:55:49:a1:14:74:0d:
f3:c9:4e:38:3a:3d:57:04:7f:eb:3c:72:28:8d:cb:
42:c5:f1:ac:f1:49:9d:bd:f2:fe:34:a4:60:bd:a4:
5b:89:88:7c:3f:61:fc:87:9e:71:08:94:d4:c8:34:
32:0e:90:d8:63:09:f0:42:79:96:19:a5:f9:94:a4:
a6:62:7c:c8:e7:80:d6:b1:d5:74:88:64:84:71:12:
29:59:8e:8e:92:d9:45:18:65:19:5a:e0:19:d4:7a:
77:87:70:77:b5:0a:2a:79:79:71:06:db:72:e7:c2:
7d:d2:7b:f0:52:1a:d9:65:e6:41:4f:b9:0e:c8:a4:
3c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E2:85:E8:92:F9:3E:2B:8C:07:60:EB:23:BD:42:36:6B:DC:CE:36
X509v3 Authority Key Identifier:
keyid:83:3F:0C:25:13:D4:35:3B:40:CE:F8:39:17:9E:EB:F8:73:82:45:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:81:35:4c:62:d7:95:76:ae:a1:87:1f:6d:12:2c:37:6f:48:
80:c1:bb:3f:8b:52:a2:b5:ea:75:da:f1:77:bd:32:cd:5b:9a:
b8:65:c5:54:8e:f3:c4:e1:29:ff:34:d8:3f:7a:be:a2:59:e5:
03:d8:f5:58:c0:79:9d:d0:a7:6f:c2:0e:ae:af:4a:3c:9e:5e:
01:2b:d8:65:6d:4a:79:1c:1d:3c:f0:49:ff:48:ae:35:da:e4:
d7:59:c4:18:c8:64:cf:1a:23:6b:9b:6a:35:48:dc:7c:34:51:
e6:ca:9f:e0:4f:da:c4:74:c3:34:29:ce:da:c3:6a:2b:87:ff:
9f:34:b3:6b:88:65:d4:cc:f7:35:88:c0:b9:21:ee:cf:3a:2f:
41:3d:88:a4:4e:2b:cd:dd:20:ef:ec:26:4f:ec:e0:c5:8e:4b:
1c:a4:44:2d:0b:46:97:a9:aa:ea:80:20:14:94:b5:0e:ea:cc:
21:1a:2c:ed:b3:c6:76:ae:66:f7:0d:0c:cd:49:dd:52:4d:98:
52:9d:83:63:6d:6d:a2:5c:7f:ba:7c:07:aa:bf:d7:a5:20:2d:
78:73:c9:23:df:5d:84:fe:f3:52:2f:fb:43:62:51:15:2c:96:
eb:fe:ad:57:1e:2f:22:a9:42:aa:6e:d4:aa:28:5c:76:0a:fd:
c2:84:f4:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:39 2025 by rpki-client