Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
File: F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft (raw, json)
Hash identifier: eYgaWQT3Dl0/1m8Qk56gQsBPdnO/dYTZfUGj6va0yOc=
Subject key identifier: 58:49:8D:7B:4A:1F:25:F6:37:A1:2B:10:D4:C8:F2:FC:9B:89:CB:1F
Authority key identifier: 17:D8:73:12:06:53:B3:CF:E5:51:72:A9:DC:60:57:E8:CC:D0:CB:5C
Certificate issuer: /CN=17d873120653b3cfe55172a9dc6057e8ccd0cb5c
Certificate serial: 0198D473E1D6315EA755C00D0FEF56C9170A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
Manifest number: 0DEA
Signing time: Sat 23 Aug 2025 01:03:40 +0000
Manifest this update: Sat 23 Aug 2025 01:03:40 +0000
Manifest next update: Sun 24 Aug 2025 01:03:40 +0000
Files and hashes: 1: F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl (hash: oZ1iL0ThSnxXuCkvJjxkD5dv8xaPLvJJKJczkcOrbTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:e1:d6:31:5e:a7:55:c0:0d:0f:ef:56:c9:17:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d873120653b3cfe55172a9dc6057e8ccd0cb5c
Validity
Not Before: Aug 23 01:03:40 2025 GMT
Not After : Aug 24 01:03:40 2025 GMT
Subject: CN=58498d7b4a1f25f637a12b10d4c8f2fc9b89cb1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:76:c1:22:ec:77:ac:41:11:47:e8:06:a6:e5:
c2:4b:d7:6c:ef:c8:aa:e0:39:c6:e2:00:15:73:63:
3c:10:5e:68:21:32:b8:e9:fd:2b:72:09:b9:3d:7c:
58:af:ea:34:f4:1a:f2:9b:ec:e4:ea:ea:f9:54:08:
4a:16:56:87:ee:ef:6e:d9:e2:0f:dc:d9:4a:4a:98:
f2:72:f6:37:fc:59:ef:81:1b:62:4e:d9:8c:ef:ae:
e0:82:8a:20:32:21:57:20:aa:6b:c1:0b:6a:0e:42:
43:53:17:47:f0:66:c2:24:ee:db:d7:db:90:37:e3:
c0:05:55:d4:08:cc:5d:c1:15:d7:d1:c1:f8:7d:06:
1e:71:c9:87:45:d9:e2:dc:74:79:5f:25:b5:42:d0:
9e:c8:c2:46:2c:c1:d4:fb:47:38:b2:8c:e4:c1:48:
eb:be:8a:42:d7:16:a5:f9:92:56:c0:c8:8a:6d:54:
24:7f:04:fd:79:fd:bc:bc:96:32:72:ba:02:75:f5:
5b:6c:30:93:f8:86:78:69:ff:a0:28:82:24:d4:b2:
46:ac:71:dd:4a:3c:33:d0:17:e3:82:ef:3d:0c:94:
ab:be:85:f5:d2:2f:19:59:8d:db:83:45:ae:de:0e:
1e:18:10:34:7a:a5:5a:f4:e5:d4:47:05:a1:24:9b:
98:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:49:8D:7B:4A:1F:25:F6:37:A1:2B:10:D4:C8:F2:FC:9B:89:CB:1F
X509v3 Authority Key Identifier:
keyid:17:D8:73:12:06:53:B3:CF:E5:51:72:A9:DC:60:57:E8:CC:D0:CB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:ea:ef:cb:d4:91:84:20:ed:d2:0f:4e:c5:cc:3f:ea:7b:18:
be:8d:7e:42:d5:c2:e8:48:d1:61:26:72:dc:0a:3b:27:b0:6c:
78:ce:39:b2:b4:88:b0:e3:41:f3:ed:9a:d2:86:86:d3:e7:34:
b6:25:53:b0:33:a2:c2:eb:73:7f:2e:a5:d3:b9:15:3e:d2:5d:
7c:ad:85:18:56:e0:ff:6f:f3:d7:6e:68:cd:8f:9d:f7:60:4f:
38:80:b6:5b:27:78:06:38:49:44:20:7f:b5:e3:31:23:73:c1:
c7:8f:7c:f2:6e:4d:69:e4:18:3b:7b:35:c3:b7:c8:0c:d7:2d:
73:a9:15:0f:34:49:fc:89:66:ed:fb:0e:20:ac:28:0e:e8:e4:
ec:7c:7e:17:0c:40:9b:bf:d6:ae:c3:e4:f4:f8:14:70:27:ad:
a3:28:14:8b:86:53:73:69:72:4e:04:b4:ce:4b:a3:8b:81:57:
91:bb:62:ce:c3:8a:03:2b:ae:81:30:62:38:8f:29:db:d7:5c:
1e:34:e5:0b:4d:c8:e1:f2:67:5c:87:c8:df:0c:31:4b:e6:78:
c5:b5:ed:9b:7f:1f:88:46:4b:22:ca:c7:47:6e:d4:15:f3:7f:
06:52:01:6f:5e:c1:d1:68:b0:c9:88:43:91:f5:fa:cb:f1:3e:
7d:69:87:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:23 2025 by rpki-client