Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
File: I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft (raw, json)
Hash identifier: GneziiwtBR1KATt7Y9NXBTNHsggEuur6ie/QlY2l9m0=
Subject key identifier: D6:81:1F:FC:8F:FD:6E:87:A4:5C:32:43:17:BA:38:00:0A:D5:5B:2F
Authority key identifier: 23:F8:9F:57:D0:72:84:9E:0C:AB:21:95:CD:0B:AF:25:57:93:5E:A0
Certificate issuer: /CN=23f89f57d072849e0cab2195cd0baf2557935ea0
Certificate serial: 0198D5BC07436E08DA4F69EAC60013CF0738
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 07:02:06 +0000
Manifest this update: Sat 23 Aug 2025 07:02:06 +0000
Manifest next update: Sun 24 Aug 2025 07:02:06 +0000
Files and hashes: 1: I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl (hash: M6xkJkzYVjUgAuO4tBXpUEAvJFJr8w1zDNBikdnMU84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:07:43:6e:08:da:4f:69:ea:c6:00:13:cf:07:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f89f57d072849e0cab2195cd0baf2557935ea0
Validity
Not Before: Aug 23 07:02:06 2025 GMT
Not After : Aug 24 07:02:06 2025 GMT
Subject: CN=d6811ffc8ffd6e87a45c324317ba38000ad55b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:04:c2:42:25:ca:f0:5c:63:e0:3c:31:45:49:
0c:ef:94:68:2c:dc:3c:9b:bd:e9:97:72:e9:76:67:
be:7a:45:10:e8:f7:5a:51:34:bf:4d:69:ae:8e:ce:
19:fc:3c:a5:5b:c9:9a:78:8f:74:c0:cb:bd:cd:7e:
0f:e0:c4:50:3d:24:52:e0:6a:4c:1d:0c:93:b6:4a:
c8:39:45:84:86:2b:7d:52:a5:2f:c8:94:4c:af:04:
8c:e7:78:a2:33:20:3a:97:fe:13:3d:65:04:a2:b2:
77:b4:8d:cb:f2:a6:e3:9a:60:34:9e:ce:05:a0:5b:
50:6e:02:3d:8b:89:04:bf:8c:69:3d:0b:80:95:6f:
34:a5:87:35:da:42:c3:0f:1f:7e:77:1a:96:27:a1:
42:11:3f:27:b3:6d:50:0e:1f:58:ca:05:4b:e4:7d:
2e:a9:1a:3c:16:1a:86:a0:ef:72:db:25:52:c3:c5:
5d:f3:57:43:37:56:f6:2d:f2:c1:57:00:42:76:06:
b9:0d:9d:00:d8:87:bd:12:0c:5f:cc:4c:20:08:67:
40:72:1a:31:97:15:eb:1f:f5:70:e4:c0:4c:7e:42:
3b:dd:23:d0:fd:34:7e:40:79:11:ff:5c:3b:cb:13:
e6:14:94:21:01:fa:5b:e0:47:5b:91:bb:0b:19:4f:
aa:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:81:1F:FC:8F:FD:6E:87:A4:5C:32:43:17:BA:38:00:0A:D5:5B:2F
X509v3 Authority Key Identifier:
keyid:23:F8:9F:57:D0:72:84:9E:0C:AB:21:95:CD:0B:AF:25:57:93:5E:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/f1d439-7cc7-449f-a9e2-2ea6f5efb27f/1/I_ifV9ByhJ4MqyGVzQuvJVeTXqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:06:a7:1c:f0:83:74:2d:be:84:a5:f2:70:75:4a:9e:a7:4a:
b6:ab:d6:ac:c7:09:89:34:78:4c:85:db:ac:99:23:79:60:45:
15:c3:4a:82:fb:33:80:f1:7f:3e:95:2b:94:ff:33:7f:85:f7:
03:f2:26:4e:9d:37:30:3f:94:c1:77:bd:9a:79:96:f3:66:5b:
a9:5f:a9:ec:c5:7b:d6:bf:01:64:4a:0b:a4:bb:8a:77:d9:3f:
f3:d7:02:3d:f9:f0:d7:75:9b:ce:02:b4:2e:b6:35:01:6b:cc:
6d:a5:2f:d5:3e:17:23:2a:d8:03:ce:f1:cb:54:72:c9:c6:fe:
5e:fa:14:eb:a5:e3:e9:7e:40:91:6f:05:9b:08:cd:1c:49:1f:
75:57:7f:e5:23:a9:28:f5:10:de:dc:f5:88:08:55:3d:16:10:
2d:77:89:76:64:da:3e:d4:e2:ba:00:3f:2d:d2:b5:7c:4b:14:
3e:7e:27:6d:19:a2:c0:1d:ab:21:df:39:cf:94:18:3b:0a:75:
01:41:a9:d6:f6:aa:0e:0c:56:c6:19:c1:ba:1f:48:8c:c4:51:
48:df:a5:b1:4a:90:3a:43:83:b4:51:ae:bc:a6:69:10:31:64:
f4:9e:d1:3c:1e:33:d1:9d:6e:4a:2d:e9:47:b8:63:82:ef:2a:
f9:85:9b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:05:46 2025 by rpki-client