
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
File: mtVmfEEoFBE5zKfFBH_BclC_Y68.mft (raw, json)
Hash identifier: lylSPuzMoNZyuV7K4SmeIUdxBu8pxzMHJgC6JqmJ/cI=
Subject key identifier: B0:64:2F:52:2C:9A:39:77:B6:B7:F7:AB:92:FB:EA:A2:BC:C7:7D:B8
Authority key identifier: 9A:D5:66:7C:41:28:14:11:39:CC:A7:C5:04:7F:C1:72:50:BF:63:AF
Certificate issuer: /CN=9ad5667c4128141139cca7c5047fc17250bf63af
Certificate serial: 0198D4E01BF98E93DC04A95A01AFAC5CD705
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 03:01:53 +0000
Manifest this update: Sat 23 Aug 2025 03:01:53 +0000
Manifest next update: Sun 24 Aug 2025 03:01:53 +0000
Files and hashes: 1: mtVmfEEoFBE5zKfFBH_BclC_Y68.crl (hash: f4NMbTYzF8yPYY+ET1nHvxe+kSTk/9ighoX3U89Nn4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:1b:f9:8e:93:dc:04:a9:5a:01:af:ac:5c:d7:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ad5667c4128141139cca7c5047fc17250bf63af
Validity
Not Before: Aug 23 03:01:53 2025 GMT
Not After : Aug 24 03:01:53 2025 GMT
Subject: CN=b0642f522c9a3977b6b7f7ab92fbeaa2bcc77db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2d:94:b4:bf:59:3f:27:9b:72:83:b4:ff:24:
bd:66:04:34:de:a4:e0:d8:ad:a3:49:40:61:64:e2:
67:d0:24:fc:f6:6a:8e:93:6d:6e:9b:57:e0:86:a0:
22:db:0f:e3:65:70:f6:92:70:4d:4e:38:f5:34:90:
ca:a4:59:a8:1d:15:4e:a1:80:c9:f8:eb:26:e9:2d:
a6:1b:24:56:57:45:ef:32:24:90:d4:0c:eb:dd:d3:
b8:5b:95:35:15:08:90:04:78:16:16:46:6a:eb:e6:
0d:10:f6:23:83:8c:a5:86:69:02:d5:83:88:75:be:
0f:4c:51:32:e6:76:df:1e:38:0f:43:19:7e:41:32:
40:a2:ae:ba:fa:17:18:3a:30:b5:d4:35:bc:76:d3:
d6:d6:5e:07:f4:9a:58:ac:6b:8a:71:5f:ad:63:98:
83:be:9b:c0:17:44:bd:c2:4f:e9:5e:07:5a:b6:09:
74:92:40:e2:53:d7:6d:18:1a:03:8d:c1:e4:8e:c1:
51:ed:d9:ed:98:5b:d1:16:46:01:be:78:75:f1:13:
f0:9e:48:45:2d:ef:fa:d7:59:d0:60:40:d5:46:dc:
c4:99:a9:b0:fa:5f:be:91:30:70:88:f8:17:a0:f6:
6b:5a:7d:36:2d:8f:22:b1:e8:95:6d:68:9c:d5:f8:
8e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:64:2F:52:2C:9A:39:77:B6:B7:F7:AB:92:FB:EA:A2:BC:C7:7D:B8
X509v3 Authority Key Identifier:
keyid:9A:D5:66:7C:41:28:14:11:39:CC:A7:C5:04:7F:C1:72:50:BF:63:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:a4:90:0f:af:60:cc:f9:db:6e:ee:e4:6c:5e:5f:43:50:36:
b1:21:79:ef:9a:8d:88:85:2d:cb:7b:f9:10:46:c4:86:45:92:
62:6d:2d:97:8f:3f:22:bb:8c:b7:3c:3e:33:28:3d:48:93:f5:
c8:41:ba:57:b0:02:85:0b:1d:57:a1:54:fa:f1:81:79:9b:4b:
f4:e1:ba:eb:11:82:12:f5:5d:ea:c2:6e:60:20:a4:60:cc:af:
cb:06:21:e0:82:93:ee:aa:61:bd:1e:b4:09:f2:a6:12:48:4f:
27:2c:94:8d:62:98:95:92:5c:aa:c9:71:c1:cb:63:e5:a3:ca:
7e:fd:79:32:8d:b4:33:0e:fd:0a:2f:8f:ed:d6:da:a6:59:e0:
de:7e:a7:ef:fb:31:dd:9e:db:44:38:d7:8c:3d:64:d1:0b:af:
52:b6:04:f1:d2:18:d6:0d:73:52:1b:01:8d:c5:cc:c6:aa:b2:
a7:ca:13:f9:e1:11:91:e6:5c:22:6c:8c:a3:ca:cb:c9:45:9c:
27:32:d5:c2:b5:2a:e6:a4:54:44:d3:f4:1e:55:20:8b:77:2c:
7a:f7:62:6a:10:fa:53:5c:92:aa:78:a8:e7:11:68:fb:1b:c0:
db:ed:3a:81:13:48:76:f5:5d:55:f7:25:0d:f6:c1:97:3a:aa:
5e:d6:8c:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:00:15 2025 by rpki-client