Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
File: IEBQzFlTby2UB2koI4kMzdqFRQg.mft (raw, json)
Hash identifier: W5znuLVvDg8HgIIJDbcwUCTVn4K0Qq74eqDKCGzKUvE=
Subject key identifier: 14:A6:7E:E4:82:AA:A0:B0:E1:C2:0F:52:82:82:22:59:0B:58:C5:0F
Authority key identifier: 20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
Certificate issuer: /CN=204050cc59536f2d9407692823890ccdda854508
Certificate serial: 0198D4A8493CFB1000F84350114BB2E8BDFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
Manifest number: 0458
Signing time: Sat 23 Aug 2025 02:00:55 +0000
Manifest this update: Sat 23 Aug 2025 02:00:55 +0000
Manifest next update: Sun 24 Aug 2025 02:00:55 +0000
Files and hashes: 1: IEBQzFlTby2UB2koI4kMzdqFRQg.crl (hash: cn/FQfxhX3Nr63tl9oWMda0WCNHHBJWCGakraiwJHaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:49:3c:fb:10:00:f8:43:50:11:4b:b2:e8:bd:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=204050cc59536f2d9407692823890ccdda854508
Validity
Not Before: Aug 23 02:00:55 2025 GMT
Not After : Aug 24 02:00:55 2025 GMT
Subject: CN=14a67ee482aaa0b0e1c20f52828222590b58c50f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d8:33:72:de:d0:d0:80:1c:ec:b7:a7:fb:1a:
41:d2:23:c9:92:95:8a:42:d3:da:87:a6:27:40:5c:
09:8a:91:00:7a:e2:80:eb:95:45:2d:5d:6e:d6:40:
d9:0c:0e:b3:a7:81:f6:95:55:fb:48:91:7a:dc:45:
cb:35:ca:df:09:45:b0:b3:ab:7c:bc:f3:e7:e8:eb:
a1:11:2c:60:3b:82:3d:2d:41:c2:f2:41:f2:ed:f7:
05:7c:18:10:04:ba:a6:39:b8:24:3a:f2:b2:7f:75:
be:cc:0f:b1:c8:2b:56:a1:9f:58:85:f3:be:9f:87:
c4:70:38:ae:ce:fe:ee:ac:07:e3:fe:b5:67:ff:06:
fe:04:21:f7:37:a7:f8:85:f6:46:a5:59:c1:f5:24:
c1:d4:f8:83:14:94:aa:ac:81:8d:38:48:8b:05:6a:
d4:3b:0b:ee:ee:38:6a:eb:27:f4:c5:c2:02:28:23:
7c:8c:d7:0b:0e:26:47:9a:87:7f:14:8e:12:87:1c:
a5:b2:17:62:45:12:7c:9d:48:1d:5a:ec:b2:42:76:
fa:1a:cf:10:30:b7:33:61:f2:95:b0:a0:fa:b1:c7:
82:c5:96:4d:09:09:84:10:8b:c0:fa:0a:bb:d7:99:
07:6a:66:ce:45:5d:2d:79:96:fb:32:8c:c4:26:21:
ee:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A6:7E:E4:82:AA:A0:B0:E1:C2:0F:52:82:82:22:59:0B:58:C5:0F
X509v3 Authority Key Identifier:
keyid:20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:7a:96:68:79:50:0a:5d:20:cf:0b:86:ff:14:10:4b:0d:6c:
ae:c8:c0:b3:0b:80:05:90:20:a2:0d:ea:0c:e0:2e:ad:7f:95:
79:74:6f:24:62:87:86:91:ea:18:45:c2:98:b5:a1:52:f8:5d:
22:40:44:dc:b4:ca:42:34:9a:62:3c:8a:28:4a:c2:6b:ab:16:
6c:de:cc:4a:a4:f6:80:f9:2b:b9:37:61:00:05:10:57:2e:cd:
ba:4e:8a:92:99:09:85:67:29:8b:65:71:a8:b1:cd:fd:dc:ad:
4a:db:4e:46:f4:50:8a:c4:8d:0b:11:e2:aa:8f:15:da:f0:36:
fc:18:fc:4a:6f:ec:13:15:9f:b2:ff:7c:9f:d6:b2:b4:89:4b:
ed:43:11:9a:7c:e0:5e:25:fb:09:ef:57:9f:59:5e:5e:64:31:
24:64:e4:5a:fc:26:7e:7e:12:2a:72:b2:21:11:4c:8a:49:0b:
bd:da:b3:dd:da:de:33:25:80:15:5e:0c:59:7c:5e:e4:8c:50:
ca:e7:5f:24:e2:d4:a9:29:43:4d:ac:88:7b:5c:50:63:8e:bc:
17:fd:55:2b:ea:17:b0:04:27:62:0e:52:9d:ab:da:6c:89:e6:
ad:0d:0c:0d:2d:97:f6:64:e6:02:61:79:d1:5d:3b:49:75:5b:
9a:68:14:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:24:32 2025 by rpki-client