Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
File: _hEX6Xaz4zlTuTYbtLseui9Ane0.mft (raw, json)
Hash identifier: Ht+paizAbd9HvrYb84OYs9Q/6viQQJPPwf5I7kybUPc=
Subject key identifier: 99:FD:91:83:92:27:B5:AB:2F:73:72:E0:79:69:BF:C5:70:E0:5B:D8
Authority key identifier: FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
Certificate issuer: /CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Certificate serial: 0198D54E796C244C4C6650CA6F9870A4E9C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
Manifest number: 0766
Signing time: Sat 23 Aug 2025 05:02:26 +0000
Manifest this update: Sat 23 Aug 2025 05:02:26 +0000
Manifest next update: Sun 24 Aug 2025 05:02:26 +0000
Files and hashes: 1: _hEX6Xaz4zlTuTYbtLseui9Ane0.crl (hash: 8zTGL+iGUdTwuhYQLZ8pBY6UHqf1Bit14H28vHPmZwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:79:6c:24:4c:4c:66:50:ca:6f:98:70:a4:e9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Validity
Not Before: Aug 23 05:02:26 2025 GMT
Not After : Aug 24 05:02:26 2025 GMT
Subject: CN=99fd91839227b5ab2f7372e07969bfc570e05bd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0f:ec:e8:cd:7f:c1:e4:5e:70:65:2b:d0:5b:
44:ca:3e:98:90:97:49:90:6e:70:14:a3:7b:ea:10:
c9:0e:04:90:aa:30:8c:c5:4c:82:78:33:b4:dd:0b:
b9:95:09:06:56:10:8e:43:75:06:ee:07:9c:27:63:
03:49:af:73:67:99:3d:8c:6c:5c:58:85:0f:c7:1e:
2c:41:13:2f:42:60:2a:f5:db:10:d1:66:d5:f3:5d:
59:c4:ec:fc:17:6d:ee:a6:59:58:a3:8a:a5:c7:87:
92:e3:0e:47:db:95:65:28:a4:b0:24:01:7e:1e:86:
54:1d:2a:27:36:55:7e:f9:4d:ec:a9:55:73:f2:99:
14:7f:bb:bc:69:0a:96:39:b3:2b:ad:58:ad:c4:8c:
8f:c6:12:2c:3a:3c:b9:67:07:26:3f:6f:2d:69:97:
ca:63:0e:26:95:e3:57:0b:e6:3e:2d:48:d7:c8:86:
18:6e:ad:34:c2:73:cb:fa:e1:9d:35:1d:cc:ae:c8:
44:40:5c:c7:b2:ba:77:a5:32:54:78:3a:55:42:76:
90:2d:0f:f1:1e:e3:4c:45:28:80:e6:a7:fe:e9:d3:
50:ad:26:d1:23:37:dc:e9:24:30:ed:64:e6:56:f2:
92:be:87:a8:50:cb:59:93:c5:dd:ba:4a:85:eb:6d:
eb:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:FD:91:83:92:27:B5:AB:2F:73:72:E0:79:69:BF:C5:70:E0:5B:D8
X509v3 Authority Key Identifier:
keyid:FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:17:69:4a:23:04:59:81:33:d4:e3:ad:53:dd:e8:03:a9:26:
bb:59:7e:d4:53:d4:d0:63:9c:7f:db:2e:17:58:c5:6b:fc:26:
6b:62:8a:f6:06:f0:f1:d1:95:7c:3f:7e:49:8d:b3:db:ec:6c:
05:dc:ec:ff:25:ba:88:7e:0e:89:63:0f:ce:91:3d:85:33:ba:
67:80:2d:d2:a1:dd:91:3e:f6:4c:84:bb:b8:c4:fd:57:e6:eb:
c3:75:ac:2d:70:ec:1c:6e:80:04:b6:44:fb:36:1b:cf:9a:05:
f0:92:58:ab:18:a7:56:7d:33:33:31:b0:dc:2f:01:c4:a0:d9:
4c:66:60:2a:96:06:55:29:75:0e:aa:ab:23:07:ae:16:e6:be:
a6:fd:24:30:5f:e7:b6:de:16:09:73:c0:3a:6d:22:dc:ab:58:
4f:39:71:4a:d3:e2:b8:86:e5:df:60:55:d6:20:7d:17:9d:46:
11:20:36:56:f3:f8:05:b6:cb:de:c9:08:ed:dd:5f:a0:96:7e:
be:f9:00:2e:f0:d9:52:ba:7e:ac:07:c4:fc:d0:48:ba:90:47:
25:c5:28:60:1b:3f:e7:11:ec:0a:32:af:f3:40:38:1e:cc:d5:
34:ef:24:d3:85:79:17:4f:dd:78:7d:96:79:95:f1:c5:12:5f:
04:58:67:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:12 2025 by rpki-client