Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft
File: f5kYyrbx817xteWDyyg56bdIsVg.mft (raw, json)
Hash identifier: XHBotXUIEPZxdcLT+eiDdeBzNSgiSVUk++uhYiDSqf4=
Subject key identifier: 85:5A:07:F6:F6:6C:C8:9F:E4:D3:F5:09:3A:4A:5F:0F:7C:35:5C:E1
Authority key identifier: 7F:99:18:CA:B6:F1:F3:5E:F1:B5:E5:83:CB:28:39:E9:B7:48:B1:58
Certificate issuer: /CN=7f9918cab6f1f35ef1b5e583cb2839e9b748b158
Certificate serial: 0197BA7E39B74B1B86441A7B8D879179FF97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft
Manifest number: 128B
Signing time: Sun 29 Jun 2025 07:02:03 +0000
Manifest this update: Sun 29 Jun 2025 07:02:03 +0000
Manifest next update: Mon 30 Jun 2025 07:02:03 +0000
Files and hashes: 1: f5kYyrbx817xteWDyyg56bdIsVg.crl (hash: /OLqDo4nf8Tb7Q0neU0Zha+HQ8ZJIp9Jg/20XL2wOTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7e:39:b7:4b:1b:86:44:1a:7b:8d:87:91:79:ff:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f9918cab6f1f35ef1b5e583cb2839e9b748b158
Validity
Not Before: Jun 29 07:02:03 2025 GMT
Not After : Jun 30 07:02:03 2025 GMT
Subject: CN=855a07f6f66cc89fe4d3f5093a4a5f0f7c355ce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:91:08:de:72:03:b9:81:54:15:90:e9:01:96:
da:db:a8:0a:61:1e:33:23:62:e9:b3:1f:4a:db:45:
09:1d:61:f3:c0:0b:77:01:6a:56:ea:29:9f:6d:83:
83:5b:be:bb:39:67:f7:6d:b6:12:70:66:32:14:49:
ac:3b:25:04:83:39:bf:47:f3:da:6d:51:73:6b:fd:
91:38:37:1f:f1:89:13:46:e6:96:6e:6b:e2:0f:6d:
0f:70:fa:58:86:4a:24:eb:9a:37:9f:24:13:95:bb:
0b:67:e6:eb:31:e1:71:51:6c:ab:63:4c:f4:39:cb:
7a:4f:aa:df:e5:3d:26:ea:3e:98:ee:81:7b:32:e6:
dd:7a:10:bb:26:6f:03:4a:69:23:cb:0e:94:49:0b:
24:7f:6f:ec:50:69:35:ab:1f:8a:29:6b:88:c7:84:
1a:37:ef:b1:3f:72:f2:cb:d6:d9:18:61:cc:11:3e:
7a:f4:cc:d3:c5:79:d3:74:23:ef:85:d2:66:b3:03:
f5:cb:8c:9a:b0:fa:62:6f:a3:06:ae:28:a1:b4:62:
fb:97:bd:57:23:2f:64:16:cc:92:9e:5d:f0:e2:d1:
81:40:78:13:ca:8a:3e:b3:2b:32:f4:5d:18:4b:d8:
f9:39:47:ad:ea:d8:f3:26:d0:be:d3:25:2d:b4:83:
00:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5A:07:F6:F6:6C:C8:9F:E4:D3:F5:09:3A:4A:5F:0F:7C:35:5C:E1
X509v3 Authority Key Identifier:
keyid:7F:99:18:CA:B6:F1:F3:5E:F1:B5:E5:83:CB:28:39:E9:B7:48:B1:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5kYyrbx817xteWDyyg56bdIsVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/df82fa-118d-4219-ba16-1a9683c9d6cb/1/f5kYyrbx817xteWDyyg56bdIsVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:39:04:3c:e9:5d:fd:7c:8f:39:4f:a8:a7:ca:8e:37:c8:a2:
68:bc:63:64:a4:1c:53:c9:83:93:28:2c:2c:18:aa:2d:42:f1:
78:34:e6:57:38:c7:17:cf:69:d0:29:b7:44:35:01:8e:2f:86:
a3:2f:1f:d7:09:e8:0a:57:c8:fc:a6:74:f6:8d:0f:43:0f:2a:
0e:cd:ac:65:30:ba:b3:37:d3:f5:32:05:f1:77:78:a8:8b:10:
c8:89:6c:f5:b5:ac:99:6e:fc:e0:cb:4e:ba:d5:0d:d2:4a:ff:
8c:80:e2:fb:d3:4c:7f:cf:d9:67:a0:5f:c1:a8:58:7e:9f:a0:
5f:31:a4:54:5d:19:76:05:ac:e3:96:bc:55:bd:37:fc:1a:6a:
81:6c:d1:6f:99:4a:6a:ee:e3:75:53:ff:b7:b6:d2:c6:c9:61:
ff:48:bd:62:f3:82:72:9f:d6:0a:48:db:e6:d4:cc:5b:4b:8c:
f2:4f:90:7b:37:4c:a4:dc:3e:de:77:54:ce:c2:8c:85:67:6b:
40:62:36:56:d0:a6:00:79:4e:22:7f:b3:2f:27:16:11:8d:62:
75:61:41:1c:db:c3:e4:0d:83:80:df:5c:0c:cf:31:93:79:90:
f1:7c:f8:b4:2b:5c:8f:54:b0:52:84:56:5a:5b:82:56:e0:d1:
f2:5d:1b:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:33:14 2025 by rpki-client