Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft
File: 7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft (raw, json)
Hash identifier: hRUYKuOHHIXvSVqArWxGY9VoUIxBKc4ymBPcgmFnZR8=
Subject key identifier: AF:1E:23:E1:CC:E5:58:8E:E3:92:E2:0F:CC:33:7A:55:59:72:B7:50
Authority key identifier: EE:68:B6:64:CC:D5:0C:A7:67:D4:6F:FB:34:F5:3A:06:D1:20:B5:23
Certificate issuer: /CN=ee68b664ccd50ca767d46ffb34f53a06d120b523
Certificate serial: 0198D54E22C527F36C1EBA6588E9F0AF52C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft
Manifest number: 0A70
Signing time: Sat 23 Aug 2025 05:02:04 +0000
Manifest this update: Sat 23 Aug 2025 05:02:04 +0000
Manifest next update: Sun 24 Aug 2025 05:02:04 +0000
Files and hashes: 1: 7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl (hash: hnxpuO7oR2AneFRer0phqk7LedXF72NIcJq+14CsrAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft
rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:22:c5:27:f3:6c:1e:ba:65:88:e9:f0:af:52:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee68b664ccd50ca767d46ffb34f53a06d120b523
Validity
Not Before: Aug 23 05:02:04 2025 GMT
Not After : Aug 24 05:02:04 2025 GMT
Subject: CN=af1e23e1cce5588ee392e20fcc337a555972b750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3d:78:49:31:a6:7f:37:7e:97:76:a9:e3:46:
2a:55:8c:0c:6e:bf:fd:5c:06:82:68:42:8b:6f:b2:
05:66:67:b0:a3:0d:5f:bc:ea:67:1e:cd:ed:12:b0:
c2:8d:3d:23:eb:b7:d4:f6:68:fe:99:3a:1d:10:e8:
a2:3a:43:a1:51:0e:18:bb:bf:76:7d:b9:4d:7c:69:
ff:84:cb:f5:03:d5:1b:a7:1a:10:bb:4a:55:66:4b:
2d:49:5e:07:97:1e:85:61:30:23:ce:79:2f:46:29:
86:e0:a1:94:70:86:22:12:84:54:67:a6:d0:71:2b:
87:d4:43:8e:af:0b:84:8a:68:1e:83:5a:2d:2d:03:
d9:36:24:5f:7a:73:7a:66:0a:d1:44:52:c4:cb:6f:
83:24:b9:69:25:62:25:fe:46:06:f6:eb:43:30:28:
0f:6e:94:1c:7b:7a:82:3c:cf:6d:db:b8:45:ff:2b:
4a:98:7b:e4:ad:72:9b:30:ac:95:e7:4f:43:28:89:
cc:ec:b2:cf:fd:e2:17:9e:bf:b7:6b:dc:88:a7:19:
aa:0e:3b:66:a4:98:2a:f4:df:5c:3a:69:2a:88:b4:
ba:83:f7:22:4b:0b:35:6d:78:70:b8:c4:ed:fc:0c:
e9:56:1d:1d:45:e5:c8:16:fd:33:e6:76:31:22:8e:
e4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:1E:23:E1:CC:E5:58:8E:E3:92:E2:0F:CC:33:7A:55:59:72:B7:50
X509v3 Authority Key Identifier:
keyid:EE:68:B6:64:CC:D5:0C:A7:67:D4:6F:FB:34:F5:3A:06:D1:20:B5:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:c7:8a:38:f6:10:21:a2:94:b9:7d:3f:ef:c4:0a:0a:ea:2c:
38:b0:1b:55:a7:85:ff:b1:fc:35:83:c2:7d:6f:0c:bb:92:4a:
46:9b:ab:cd:45:a8:7f:de:19:f5:2b:9c:01:cf:2f:25:9a:54:
fc:48:9d:8f:76:4d:89:13:db:21:29:25:02:06:a5:b1:d9:97:
9f:4f:af:c0:0f:c1:fa:25:2c:46:e2:48:a5:53:56:f3:75:f9:
96:2a:20:fd:15:e4:8a:10:9e:a6:e9:12:e0:4d:a2:a9:fc:75:
2e:43:e3:32:57:f5:c2:39:0c:52:36:12:c6:ae:3f:d8:77:86:
55:a1:a5:16:d7:4b:f2:38:4f:98:16:fe:80:b7:d8:f5:16:36:
5a:00:55:e6:ac:e1:ca:9c:49:b4:9e:d7:b8:b9:15:ff:70:2c:
7e:2a:e7:2d:a5:73:e8:c9:8b:a5:9c:23:95:54:dd:03:f8:3d:
6f:7d:f7:85:56:24:a3:7f:ea:ad:13:e3:11:bd:b2:54:3f:4d:
53:ea:fb:cc:4a:5a:c7:7a:84:c4:37:46:bf:61:4a:2f:e7:3b:
5a:0a:e3:4a:fa:9a:11:f0:0d:ca:4d:ed:3d:a6:1f:eb:ad:df:
41:fc:c8:2c:ce:e8:1c:64:9f:ea:e6:d5:7f:f9:5d:42:a0:2c:
ed:1c:2c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:32:31 2025 by rpki-client