Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
File: DUlCfYpEd823aAhhqexQ3HMhaYI.mft (raw, json)
Hash identifier: Sf8kCUI0PyD//5EVfqNPdHMmLJvAz4XAK32+yzchsYg=
Subject key identifier: 89:EA:AB:AB:CD:9C:CF:27:4F:18:C2:2D:0C:16:1B:A9:DB:B8:D5:EA
Authority key identifier: 0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82
Certificate issuer: /CN=0d49427d8a4477cdb7680861a9ec50dc73216982
Certificate serial: 0198D47348A19CEB3D99FACCD45EA7A16141
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
Manifest number: 06D5
Signing time: Sat 23 Aug 2025 01:03:01 +0000
Manifest this update: Sat 23 Aug 2025 01:03:01 +0000
Manifest next update: Sun 24 Aug 2025 01:03:01 +0000
Files and hashes: 1: DUlCfYpEd823aAhhqexQ3HMhaYI.crl (hash: VFuU7P/cKW0gaJ6w635T6Yk3HAzCSxG1MTzSMCiE65Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:48:a1:9c:eb:3d:99:fa:cc:d4:5e:a7:a1:61:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d49427d8a4477cdb7680861a9ec50dc73216982
Validity
Not Before: Aug 23 01:03:01 2025 GMT
Not After : Aug 24 01:03:01 2025 GMT
Subject: CN=89eaababcd9ccf274f18c22d0c161ba9dbb8d5ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f8:2d:88:6f:34:0f:d0:bd:85:7f:49:ca:a8:
1c:a0:85:b3:b0:ab:fc:c4:ff:80:0e:d7:49:bc:6c:
af:b5:ca:ec:ef:40:01:c9:ec:f8:de:00:4a:59:2f:
59:cd:77:44:63:ff:70:3f:53:52:87:35:82:4e:28:
83:d0:1a:72:49:77:0d:9c:ff:37:4b:b6:28:9d:ef:
d6:3c:71:84:4e:20:1c:02:4e:e7:4f:11:f4:b4:41:
70:d8:25:5d:de:f9:4e:c7:26:b0:2b:f9:49:ba:0e:
b7:c7:48:a4:f1:d3:d6:b8:0c:8c:ca:3d:a8:a2:a9:
1b:d5:3e:55:f9:b0:ff:44:c0:1a:0d:04:95:18:03:
4f:d1:83:ad:91:b8:ca:0b:a2:cb:9b:91:15:05:94:
d2:6b:9f:71:16:96:56:79:f8:6d:93:5d:45:68:2d:
35:14:40:cf:99:c2:f1:50:c0:d3:c3:06:5c:94:08:
83:bd:b5:e9:57:92:ac:08:93:7d:5c:45:53:6c:a8:
76:e4:3a:57:ac:04:b8:1c:89:35:bb:33:ac:64:93:
ca:70:f3:8b:55:8a:e0:63:8d:aa:ef:aa:b7:26:eb:
65:39:37:b5:20:5b:df:af:15:12:d7:07:11:23:08:
f1:ad:d8:7e:b1:25:4c:60:e6:a5:1a:83:5f:f4:dd:
fa:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:EA:AB:AB:CD:9C:CF:27:4F:18:C2:2D:0C:16:1B:A9:DB:B8:D5:EA
X509v3 Authority Key Identifier:
keyid:0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:9e:45:68:59:e2:41:40:14:03:7a:e4:8c:88:6b:25:5e:90:
0b:45:d5:ac:c2:5f:5c:40:61:20:69:6a:25:51:6d:95:f6:2a:
80:51:18:00:44:ff:c4:3a:89:e7:2e:44:bb:2a:b2:eb:be:83:
ce:00:65:2f:8a:24:ae:37:03:62:9c:97:c4:bb:32:fb:12:cb:
4b:56:52:69:f2:cb:ce:fc:d0:5c:85:ad:61:05:57:8e:2a:af:
81:5c:ae:08:4b:d6:4a:c1:26:ad:b3:bd:af:02:6a:d0:34:35:
01:3c:7d:55:a3:44:de:6f:6e:6b:d7:0d:26:c8:77:70:ec:b9:
1c:a9:01:fe:01:ad:30:bf:f3:c2:dd:66:9b:c8:71:d9:cc:72:
4d:ac:1d:74:d1:bd:fb:e8:bf:c7:68:ec:7c:9b:34:f1:69:bb:
84:3b:57:8d:dd:ee:5b:b1:1a:eb:60:52:d5:1a:e9:26:f5:f0:
4e:0c:6e:49:8e:2e:ee:85:35:f0:2d:15:e6:06:af:f4:ca:7a:
1e:bf:f6:96:65:6c:68:9e:d4:93:c1:64:79:de:05:ca:62:7b:
06:4a:9a:9a:81:c3:89:65:69:fb:69:24:e9:52:39:83:e8:77:
84:39:6b:c0:f6:5e:e2:3e:75:98:7b:83:23:d5:d2:95:de:05:
4d:3a:52:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:39:59 2025 by rpki-client