Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
File: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft (raw, json)
Hash identifier: 9TvHERxyB5vj6GJYc17m5quzf5jqFbNQU0AlBCVjCVs=
Subject key identifier: D4:83:38:24:87:44:57:F9:8C:B8:7A:29:CE:AE:FC:3C:E7:17:3B:EE
Authority key identifier: B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
Certificate issuer: /CN=b284cdf0507443e16e509d57a229e914f73566a4
Certificate serial: 0198D5BC580053A770C243BD6D00AA8B783D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
Manifest number: 14F0
Signing time: Sat 23 Aug 2025 07:02:26 +0000
Manifest this update: Sat 23 Aug 2025 07:02:26 +0000
Manifest next update: Sun 24 Aug 2025 07:02:26 +0000
Files and hashes: 1: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl (hash: pOMLwgoOM/4eqEEqtXo7ljtEy4oU/XjYGEnp5gOra6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:58:00:53:a7:70:c2:43:bd:6d:00:aa:8b:78:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b284cdf0507443e16e509d57a229e914f73566a4
Validity
Not Before: Aug 23 07:02:26 2025 GMT
Not After : Aug 24 07:02:26 2025 GMT
Subject: CN=d4833824874457f98cb87a29ceaefc3ce7173bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b8:41:47:39:19:54:35:c2:17:b6:7f:0d:2a:
c3:56:6f:d4:0a:af:8e:d1:db:92:98:f3:6a:1e:f9:
95:16:cb:db:f6:82:9d:9b:94:7f:d1:29:90:9d:34:
1d:0f:54:9d:e4:3c:31:88:a8:96:d0:f1:d2:db:a5:
3e:a4:d1:ca:eb:77:22:bb:68:59:c9:da:81:d1:95:
98:53:c5:ce:a0:d1:a2:99:10:cd:93:ed:ff:db:f0:
dc:ea:aa:26:90:0c:92:df:18:08:7a:6c:b3:64:f4:
67:a9:69:84:73:37:98:01:21:b0:7c:08:58:3b:53:
67:72:da:67:cc:63:3f:69:a6:19:25:cd:1a:6e:41:
c8:5f:f2:5f:fe:56:67:5c:e2:ef:eb:d5:ef:17:20:
53:10:e3:1a:02:13:70:af:7d:f1:ab:64:f9:f9:39:
21:69:6e:fd:13:68:11:92:e4:ea:93:f5:b8:4e:1a:
ac:96:6a:ea:92:4f:17:3c:3b:8e:3f:77:0a:78:33:
56:d5:db:67:df:f6:b3:f9:30:ba:a0:bf:14:67:09:
d1:07:62:5a:a1:4c:2d:19:e8:5e:34:80:dd:47:b2:
8f:5e:32:84:63:95:43:d0:da:f8:7b:c2:81:61:0f:
65:bb:e7:34:eb:15:fb:24:4b:36:fe:1b:46:e6:5d:
07:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:83:38:24:87:44:57:F9:8C:B8:7A:29:CE:AE:FC:3C:E7:17:3B:EE
X509v3 Authority Key Identifier:
keyid:B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:64:6e:d6:b1:8a:e6:ab:5e:25:44:be:d8:c8:f3:cc:e0:3f:
4e:0e:94:89:a8:95:c5:ff:42:4b:e7:3c:db:52:5b:d0:a0:57:
10:f2:8c:48:ae:c1:ad:3a:e0:0e:22:bd:21:ff:75:92:25:3a:
5f:59:6a:73:bd:ad:ed:4b:6d:18:68:98:b4:d9:d8:e8:fa:fa:
9b:b4:e3:a0:10:77:f9:8c:d4:0c:6d:e3:6b:4a:ed:ca:84:af:
3e:61:7a:44:44:ba:8f:03:9f:53:85:48:20:4e:8d:64:07:5d:
f2:2d:4e:13:eb:b2:d4:b2:87:5f:22:7c:cc:8f:25:cb:14:d3:
e0:5c:74:10:0c:63:54:f9:ec:88:05:ab:91:19:36:89:38:2c:
8b:c4:e0:4e:87:fe:7f:d3:65:3f:0c:4a:bd:06:43:99:65:1a:
2a:b2:31:24:63:5d:6c:21:6d:87:4c:11:6f:06:23:92:fd:0f:
ad:1a:66:9d:86:76:21:2b:de:57:c9:3d:b2:57:b7:3b:ce:93:
11:43:43:62:ae:6c:49:0e:18:0e:f6:40:25:ba:b0:23:5c:ef:
0d:0f:f4:d4:42:df:d2:b9:e0:b2:c1:bf:78:bd:a4:fe:27:fd:
1e:18:94:a0:d2:77:34:90:2a:5b:e1:46:9c:62:49:5c:ae:ba:
5c:bf:0b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:22:04 2025 by rpki-client