Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
File: mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft (raw, json)
Hash identifier: LuCvLGN/dM40tThrurZWaMWpIpbpRuJ0ghcUdT+Cc/c=
Subject key identifier: 88:DA:5D:5A:C5:DB:DD:D1:71:56:23:D9:E6:6E:03:AA:B1:52:AF:D5
Authority key identifier: 9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
Certificate issuer: /CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Certificate serial: 019921B1C1C01384B9AEB41B411771B22907
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
Manifest number: 1113
Signing time: Sun 07 Sep 2025 01:02:01 +0000
Manifest this update: Sun 07 Sep 2025 01:02:01 +0000
Manifest next update: Mon 08 Sep 2025 01:02:01 +0000
Files and hashes: 1: mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl (hash: X9rVaU5GNdgrs4tlOsDyZjHe37qMo8vfEUANU0+POC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:c1:c0:13:84:b9:ae:b4:1b:41:17:71:b2:29:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Validity
Not Before: Sep 7 01:02:01 2025 GMT
Not After : Sep 8 01:02:01 2025 GMT
Subject: CN=88da5d5ac5dbddd1715623d9e66e03aab152afd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d9:f7:bd:e9:50:41:d6:90:6c:a2:86:a3:5a:
b1:b3:0d:2c:33:1e:72:4a:c9:47:51:85:6a:b5:99:
49:e0:cd:c9:f9:85:4a:b7:42:b9:ff:1b:d8:45:6a:
8b:4c:4a:df:a3:01:ca:80:cd:eb:9d:63:02:23:d1:
6f:57:82:85:3a:e7:1c:a5:c7:0e:79:45:c8:40:eb:
32:b8:e1:fe:f3:3a:ad:15:0f:f3:a2:e4:8d:e2:c6:
71:9f:11:3e:6c:a3:63:fa:c1:cf:dd:50:b9:0e:e2:
91:6c:6c:a2:19:dc:ed:74:9d:d1:c1:ce:fe:58:bb:
9c:69:c6:d8:29:9d:36:b7:52:f9:1c:2b:0c:48:e5:
53:f1:1d:a0:45:28:8b:0d:89:43:25:5f:79:b0:2a:
a5:ef:4c:0d:6f:df:db:c3:eb:a2:ee:52:1a:5c:85:
12:15:4c:f3:5d:35:00:f8:5d:5d:0e:be:95:ce:5b:
b5:fe:ba:d9:f6:fd:c0:c7:75:1d:a7:59:a9:b0:69:
3d:e8:28:b5:02:ff:7a:78:33:d9:72:ab:2e:ce:ae:
49:74:a1:4b:9f:f0:1c:91:44:d7:62:8c:e7:77:1c:
d4:1e:cd:1a:01:7d:c2:36:b8:78:32:21:9b:c8:3a:
4e:81:c7:18:b6:d8:a1:e8:72:41:55:89:c2:37:4e:
a1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:DA:5D:5A:C5:DB:DD:D1:71:56:23:D9:E6:6E:03:AA:B1:52:AF:D5
X509v3 Authority Key Identifier:
keyid:9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:77:49:c6:66:c1:59:d6:7c:0e:e7:a9:7c:95:44:df:b6:e5:
f3:2c:bf:41:38:56:f3:04:1f:35:51:26:5a:f3:cc:44:55:c2:
8b:a3:38:d7:81:84:39:94:c9:7f:fb:70:40:fd:4b:cf:1e:dd:
36:7c:89:f9:d0:c7:0a:19:96:ba:cf:cd:54:94:36:9e:52:17:
c2:4c:62:f6:1e:45:7b:51:90:9a:4b:71:85:a5:1e:d8:42:f7:
bb:61:53:a6:6f:81:f1:60:e8:57:07:92:03:20:81:74:70:a8:
1e:7d:00:63:d6:d0:47:82:58:68:19:69:1f:0b:eb:c3:4d:11:
42:90:a6:b0:96:be:f6:14:ff:c9:e2:2b:91:9c:b7:97:58:d1:
2f:20:ea:bb:10:43:4b:83:26:7c:e4:50:e6:d2:b5:0b:21:8c:
cc:9d:4c:8a:37:75:9b:14:55:aa:28:47:e0:07:6a:77:8b:00:
64:50:19:a1:c5:c3:93:08:b8:13:33:4b:86:e5:db:bc:f9:99:
50:04:f0:d8:7e:ba:a1:8b:f2:0c:15:e5:22:08:f7:27:c4:ce:
9b:38:e4:7f:a2:84:ec:c9:ab:d9:09:be:f8:eb:bb:e9:32:f6:
8d:00:af:50:ff:ed:53:2e:a7:07:af:8f:95:5a:52:ae:d9:4b:
a1:c8:41:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:58:22 2025 by rpki-client