Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
File: 21LN5wkMV9jpwx1Rh0jfkiueBM4.mft (raw, json)
Hash identifier: /lP7QSnKG52et+9439FWnbT6LmdyDwY/0ioqGBTaomA=
Subject key identifier: 14:74:13:FA:19:27:CE:C2:16:89:11:D1:CF:B8:2C:C9:87:8E:5C:D5
Authority key identifier: DB:52:CD:E7:09:0C:57:D8:E9:C3:1D:51:87:48:DF:92:2B:9E:04:CE
Certificate issuer: /CN=db52cde7090c57d8e9c31d518748df922b9e04ce
Certificate serial: 0198D5BC1A9EC840DBBCB639642CAE22DC4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
Manifest number: 14BD
Signing time: Sat 23 Aug 2025 07:02:11 +0000
Manifest this update: Sat 23 Aug 2025 07:02:11 +0000
Manifest next update: Sun 24 Aug 2025 07:02:11 +0000
Files and hashes: 1: 21LN5wkMV9jpwx1Rh0jfkiueBM4.crl (hash: wU6MYG4Em3zcjPR7fVdg8EEVVnzQKcTfo6OdkPUYI9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:1a:9e:c8:40:db:bc:b6:39:64:2c:ae:22:dc:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db52cde7090c57d8e9c31d518748df922b9e04ce
Validity
Not Before: Aug 23 07:02:11 2025 GMT
Not After : Aug 24 07:02:11 2025 GMT
Subject: CN=147413fa1927cec2168911d1cfb82cc9878e5cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:10:dd:80:b8:e5:cf:4b:91:0f:3a:43:b4:89:
eb:79:60:17:07:b5:a0:0f:50:18:7e:fa:8a:e2:88:
6f:fd:1d:69:67:91:45:0c:3d:61:5a:64:49:12:b4:
d9:8d:97:6d:42:30:f9:d4:c4:af:48:be:28:e9:a7:
dc:9d:3c:83:a7:ab:64:bf:61:6e:61:0c:b0:b4:db:
f0:3c:98:58:46:72:62:b8:35:9c:f9:44:27:b3:69:
e3:3d:e0:ed:fb:bc:01:92:71:e5:00:19:0d:d4:0c:
51:6d:81:97:6b:aa:81:31:1d:1f:21:55:6d:3b:fe:
53:df:23:3f:ce:b3:e2:25:a0:91:a6:f6:24:83:bc:
72:0c:55:10:59:74:41:6f:10:d7:83:bd:d2:50:52:
34:6d:b1:7d:23:3e:f7:3e:22:bf:2f:95:78:ba:4b:
19:a1:32:4c:b6:42:26:82:15:ea:a8:51:c7:db:98:
75:3a:25:90:47:e6:df:c1:aa:91:5e:f4:22:25:34:
33:52:bf:71:0b:69:e8:6b:a3:c1:b6:27:98:2c:c6:
76:72:fd:24:72:50:da:ad:61:2b:e5:f5:c6:15:5e:
a2:c9:d9:c3:bf:df:cf:a7:86:56:19:a5:3b:22:98:
9a:61:68:03:41:82:a0:8f:75:ff:cf:4c:bc:e4:0c:
5e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:74:13:FA:19:27:CE:C2:16:89:11:D1:CF:B8:2C:C9:87:8E:5C:D5
X509v3 Authority Key Identifier:
keyid:DB:52:CD:E7:09:0C:57:D8:E9:C3:1D:51:87:48:DF:92:2B:9E:04:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:b2:fa:a3:c6:9d:20:19:04:f7:44:a3:ba:5f:a7:8b:25:88:
9d:6e:58:87:c5:4e:f6:50:cf:ef:63:80:9e:ff:4d:43:3e:ab:
30:49:14:e1:fd:86:be:7c:8c:be:1b:85:69:1e:b6:75:a6:4b:
ad:16:0c:a9:76:0f:8c:1f:f5:f5:eb:c3:64:97:7c:69:c9:43:
1e:26:85:90:9d:02:3f:9d:52:a9:c3:80:3f:d7:bf:cc:ab:27:
ec:c6:73:5a:c7:f9:d7:de:6f:1b:3f:dc:c8:da:95:8c:df:3e:
2e:a0:f8:f6:87:43:e1:6c:d8:d9:9c:1c:eb:7a:3a:14:90:47:
90:99:0e:37:6d:25:a4:89:40:73:50:25:7c:ee:3a:22:35:7d:
ae:9f:8c:fc:c9:69:61:7e:ea:cb:28:78:b6:7f:b6:dd:76:7f:
0f:ca:d2:b1:e8:c1:40:56:f1:01:11:0c:b7:97:9c:a2:bb:4e:
4d:c6:ed:a6:4f:06:a8:f2:49:9e:21:f8:2d:09:bb:dd:25:81:
43:e7:1e:92:ed:e9:d8:b2:94:16:c2:09:12:74:d1:74:f1:d9:
28:5d:4b:88:00:ef:8e:e2:1c:05:08:07:2b:69:4c:8f:76:30:
9c:9e:0e:8d:5e:83:80:6a:d3:d3:79:8f:5d:7f:c0:19:7a:d0:
6d:f2:96:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:16:34 2025 by rpki-client