Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
File: R7lNsbPetIBa0mFVS65rpfp0CMs.mft (raw, json)
Hash identifier: yAJxvDBB0YQU4e7V1JXT+8TaqPz8Ynm/1Af0hCjxCwg=
Subject key identifier: 4F:CE:BD:71:C9:E7:5C:4C:7A:72:51:9F:B6:3B:AC:19:64:AD:F3:89
Authority key identifier: 47:B9:4D:B1:B3:DE:B4:80:5A:D2:61:55:4B:AE:6B:A5:FA:74:08:CB
Certificate issuer: /CN=47b94db1b3deb4805ad261554bae6ba5fa7408cb
Certificate serial: 019921B0F8694112B74E89A3DA707F959360
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
Manifest number: 166C
Signing time: Sun 07 Sep 2025 01:01:09 +0000
Manifest this update: Sun 07 Sep 2025 01:01:09 +0000
Manifest next update: Mon 08 Sep 2025 01:01:09 +0000
Files and hashes: 1: R7lNsbPetIBa0mFVS65rpfp0CMs.crl (hash: DZfwuN6cE0BdpDYFab0Cb3fnej6woVkjhBtHQYs/TzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:f8:69:41:12:b7:4e:89:a3:da:70:7f:95:93:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47b94db1b3deb4805ad261554bae6ba5fa7408cb
Validity
Not Before: Sep 7 01:01:09 2025 GMT
Not After : Sep 8 01:01:09 2025 GMT
Subject: CN=4fcebd71c9e75c4c7a72519fb63bac1964adf389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:01:f3:85:25:71:84:42:cd:e7:53:7d:45:db:
9c:4c:53:eb:85:d3:4b:a4:46:80:4a:b7:d7:91:3c:
70:93:39:66:9c:bd:14:c4:9a:60:8a:87:0b:2a:3b:
c4:ad:b6:eb:6b:71:cf:b1:38:8c:a3:69:e0:09:e4:
7a:a8:88:df:01:3f:bd:dd:8a:d4:45:28:72:70:95:
a6:b1:6c:d5:d1:7a:6b:74:cb:92:80:8b:e2:72:c7:
4a:96:79:73:f7:ba:bd:67:32:e2:64:ad:c3:77:30:
21:07:df:71:bc:73:52:a3:ec:e2:82:6b:8a:f4:be:
92:f1:3f:88:c2:11:7f:40:95:9b:12:ec:f6:d2:87:
64:3c:4a:1c:d6:7e:d3:81:6a:e2:88:82:12:88:7b:
5f:97:8e:ea:8e:9e:e7:15:f8:68:6d:ea:55:4d:68:
33:fb:02:c4:aa:bd:92:eb:8e:e9:66:0b:a6:3a:36:
bf:90:e5:b4:21:7c:cc:21:8a:5c:70:96:7e:d0:29:
fa:95:e4:23:14:b0:73:54:86:cb:39:47:e9:74:aa:
99:c7:57:85:15:22:51:96:0b:95:80:db:d4:c1:8a:
96:ac:58:47:14:17:e5:16:90:08:f5:c9:5b:9b:4c:
31:b4:e5:1f:23:b0:59:33:90:2a:3b:a0:9b:ab:01:
d0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:CE:BD:71:C9:E7:5C:4C:7A:72:51:9F:B6:3B:AC:19:64:AD:F3:89
X509v3 Authority Key Identifier:
keyid:47:B9:4D:B1:B3:DE:B4:80:5A:D2:61:55:4B:AE:6B:A5:FA:74:08:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R7lNsbPetIBa0mFVS65rpfp0CMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/871f8e-e7c0-4264-baea-2c294ec81297/1/R7lNsbPetIBa0mFVS65rpfp0CMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:52:e7:cb:26:1f:3d:ec:f0:55:e0:b9:03:9f:ce:95:c3:18:
7f:83:fd:8f:a5:d1:b0:67:b0:aa:da:e0:9d:5a:63:58:d6:bc:
38:be:45:c9:2d:2b:28:a5:1d:8e:6c:c9:76:1a:b8:60:a0:9d:
cc:cb:62:b7:aa:2a:a3:d0:24:d8:0d:da:fd:dd:94:87:3b:8f:
65:fd:dc:01:b5:2d:02:b7:8b:51:57:f2:68:cf:51:22:10:d6:
c4:35:5a:76:6d:51:d0:c4:c1:5f:6e:f0:76:a3:ba:19:e8:e7:
13:d5:e1:20:6a:45:7f:41:c2:e2:8a:1d:1b:c2:dc:0e:ff:43:
d4:4c:33:d6:73:f3:85:8b:cf:6e:6f:83:05:16:82:01:e3:c1:
4b:6e:a7:44:1f:e6:ce:79:f3:01:a0:ea:e5:2a:0a:ce:95:36:
32:cb:87:cd:c1:27:05:22:f8:23:28:01:af:fe:c7:71:18:b8:
ed:c8:60:bc:0c:47:21:b2:29:5e:9c:66:c3:02:67:9e:83:a5:
de:f7:8c:57:93:55:85:07:4a:4a:2c:48:c0:c4:8c:19:f5:94:
75:f3:20:4a:a7:3d:e6:8c:04:62:58:69:91:0e:2d:2f:5c:7d:
6c:9c:42:da:11:49:64:dd:24:d8:19:55:30:2e:b3:81:4e:57:
f9:0b:e4:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:25 2025 by rpki-client