Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: 6Jfe09eCzVYZcQgC6FdLa8G7wbUbjmC6OOqksmhAG78=
Subject key identifier: 8E:5B:A1:3E:28:06:50:E2:AC:EF:06:5B:2F:EC:A9:E8:54:8C:73:81
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 0198D6601865DF2EAF8E83C7135ECBD47AB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 15DD
Signing time: Sat 23 Aug 2025 10:01:18 +0000
Manifest this update: Sat 23 Aug 2025 10:01:18 +0000
Manifest next update: Sun 24 Aug 2025 10:01:18 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: ut2B9TWGAUy7pKmPbBrIq7rp2G+bQm0HBm26YQq4AG0=)
2: pucl_qoNJsFNHYReBDscEGdx2N0.roa (hash: SiJfUuqs3fjKSI6Mo6WtKDUOtA0gOnKfbqvupwDeWPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:18:65:df:2e:af:8e:83:c7:13:5e:cb:d4:7a:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: Aug 23 10:01:18 2025 GMT
Not After : Aug 24 10:01:18 2025 GMT
Subject: CN=8e5ba13e280650e2acef065b2feca9e8548c7381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cf:fe:80:ee:62:1d:f1:f1:dc:26:73:61:02:
45:2a:61:a5:54:ff:11:da:7a:ce:b6:71:b1:98:ad:
3c:67:08:d4:ee:ec:c7:c2:63:2d:b3:4c:bf:50:40:
bb:8e:a1:e5:2b:27:30:94:8d:9e:0d:9a:e5:14:1f:
61:e2:b6:45:27:49:9b:e6:fc:6d:2c:14:c7:ed:6d:
92:5f:ac:e3:b1:de:2a:8b:f9:de:d8:fa:a5:f6:7e:
89:52:e2:81:60:af:a4:80:43:65:9b:f6:76:68:bf:
82:6e:83:72:09:3a:bc:35:51:85:f5:6d:c7:ce:e7:
22:16:0f:37:60:13:c9:11:bc:dd:8d:36:c9:d7:a1:
e9:d5:07:e1:fd:95:49:db:8f:2e:96:d0:66:9a:7c:
07:82:46:76:f8:2c:8f:7b:16:32:8b:e4:a5:96:80:
29:97:30:ac:a6:11:00:90:36:bb:96:f3:79:be:1d:
de:f8:05:8a:b4:05:7c:24:a0:e7:f2:6b:b7:c6:c7:
52:24:60:09:89:2c:f0:e8:ce:51:c2:7a:54:76:16:
c1:d2:b0:3c:6f:8d:4c:e1:f2:0b:85:cb:0e:b8:9e:
40:38:45:f0:3a:c8:4a:50:21:d9:7e:3a:29:13:c3:
c2:30:0a:53:18:f8:e0:c7:2e:4b:3d:19:d1:34:b4:
43:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:5B:A1:3E:28:06:50:E2:AC:EF:06:5B:2F:EC:A9:E8:54:8C:73:81
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:d0:4e:0e:ab:e4:89:11:74:1b:70:0b:f6:31:69:cc:cf:f0:
1c:3e:db:a3:9e:0b:9a:60:8b:cc:ce:c7:70:99:b6:dd:d9:e2:
34:b5:6e:63:32:44:cb:fc:03:c1:e1:e0:67:23:3c:1e:91:a1:
8e:43:c3:13:1a:3b:e6:d5:cc:b7:42:b0:a6:c9:9b:60:7f:c1:
be:39:c7:e5:06:b6:4f:3a:03:71:0f:4c:3a:85:03:1b:d5:77:
8e:1f:2d:ee:5f:a5:14:18:e5:fd:2f:7f:45:9e:02:71:11:46:
e5:ca:2b:73:00:b5:e6:6d:71:09:b0:11:27:41:36:0f:8d:d4:
2f:fe:ce:57:8e:f6:9a:7c:aa:d8:54:f0:fb:fc:20:08:d7:1c:
80:55:e4:31:7f:18:18:30:6c:b2:87:03:9f:b4:5c:8d:c4:ff:
7b:4a:7e:5a:70:16:8d:e7:f0:f5:b5:f4:e3:31:2f:44:51:8e:
cc:61:87:d8:27:f6:e4:2f:a7:20:6a:ee:f3:b0:5e:a0:62:be:
30:67:15:6c:23:b0:c8:a9:40:25:71:51:8f:37:9a:6e:1a:9c:
50:54:0b:d4:95:35:cf:60:42:af:2d:1c:c7:60:14:70:59:51:
e1:bc:86:a4:14:da:d1:5b:8a:1b:b0:d0:fc:1a:a5:50:5d:0d:
c7:55:92:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:51:47 2025 by rpki-client