Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
File: 0cpnYQKGq3OPhs6TX99e1iDwLZY.mft (raw, json)
Hash identifier: jxt92Tvn54igL2mgx0l+H9uy7TuTaqLVU1+lNDBKlN0=
Subject key identifier: 76:25:97:C6:CD:1A:6E:9F:14:CD:83:1F:53:51:76:7C:1D:8D:E8:1B
Authority key identifier: D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96
Certificate issuer: /CN=d1ca67610286ab738f86ce935fdf5ed620f02d96
Certificate serial: 0198D698341A74B27B569206986D80805116
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
Manifest number: 0541
Signing time: Sat 23 Aug 2025 11:02:35 +0000
Manifest this update: Sat 23 Aug 2025 11:02:35 +0000
Manifest next update: Sun 24 Aug 2025 11:02:35 +0000
Files and hashes: 1: 0cpnYQKGq3OPhs6TX99e1iDwLZY.crl (hash: G+896XvXAd6ElbUl7lDMXYqVq9vNaXHtjZMxJpSs5Vs=)
2: _dBsBWq_R_HniB_oYd_SwrrifoY.roa (hash: lvPRkYEC7iItDLaOxgMbuIXZsy0MYwbc8HCCgTE8KuE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:34:1a:74:b2:7b:56:92:06:98:6d:80:80:51:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1ca67610286ab738f86ce935fdf5ed620f02d96
Validity
Not Before: Aug 23 11:02:35 2025 GMT
Not After : Aug 24 11:02:35 2025 GMT
Subject: CN=762597c6cd1a6e9f14cd831f5351767c1d8de81b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fe:1f:58:79:8e:bb:3d:57:dc:82:bc:20:1b:
f5:7d:4e:b2:a3:34:4e:51:18:e1:25:d0:f4:31:51:
df:6e:fb:b3:83:e9:c2:11:b4:21:3d:1d:62:de:dc:
62:7a:f8:a0:ad:17:44:2b:c6:b0:4d:3b:7d:fb:ea:
b5:92:00:13:71:02:84:83:98:cc:83:17:73:10:58:
77:17:fa:de:c8:20:7e:86:cf:fb:ef:85:2d:89:78:
84:99:27:18:0e:b2:5f:9f:f8:3a:83:b8:01:a8:3b:
9a:10:0f:94:cb:55:d7:8a:18:75:1e:b7:76:13:4a:
87:09:08:21:71:66:34:fb:00:e9:67:aa:09:81:03:
4d:19:ee:76:fd:b0:ad:20:f4:32:2d:0e:94:58:ef:
d2:2a:02:0f:15:a0:21:7b:dd:4e:b9:fd:94:6f:13:
2c:6e:b4:39:9f:ff:ba:a9:59:bc:a9:4d:ed:7a:3b:
37:53:9b:9c:43:a1:09:72:10:43:6c:8c:4e:18:e2:
70:6d:02:4f:4b:6f:3d:44:cc:bf:da:1d:79:b1:c2:
30:b4:6c:77:f5:94:e3:96:86:a7:1e:88:4e:dc:8e:
b5:c0:21:5c:64:f1:05:fb:d3:5e:3f:b5:b2:bd:ea:
fa:da:ad:4e:8b:08:74:ad:cf:3b:7f:3a:d3:0f:ba:
80:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:25:97:C6:CD:1A:6E:9F:14:CD:83:1F:53:51:76:7C:1D:8D:E8:1B
X509v3 Authority Key Identifier:
keyid:D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:13:c1:c9:a7:ce:4a:26:02:53:67:d0:ac:d5:b9:6b:8f:98:
9d:bf:4b:8a:9c:4a:84:d9:42:22:f6:f4:a4:9e:5b:ee:0c:3c:
d1:8e:8c:07:56:b5:05:ed:05:59:db:34:58:2d:43:34:51:e8:
09:0b:08:a0:2b:2e:9c:f3:6d:28:3b:5d:c5:a7:af:b8:16:5b:
57:5f:03:12:ab:9f:ee:f9:03:f9:28:bb:77:43:71:7f:fb:6a:
42:02:25:e7:f1:65:1c:23:05:fe:b5:66:74:7d:bb:76:e7:0d:
6e:4f:c7:36:de:66:b1:28:b2:8c:28:bb:bf:f9:aa:42:16:e6:
21:f7:3d:72:c8:6c:d1:36:2c:4d:d7:ba:61:ad:85:6a:73:e0:
be:5f:38:8c:32:ba:a3:95:47:5a:22:bd:8a:14:5b:a9:f6:59:
ac:a2:dc:d0:b5:31:ba:c4:e2:1c:34:ba:1d:9c:b2:ff:d9:f9:
5d:53:13:b6:de:bf:28:8a:01:11:cc:0c:2a:89:93:f2:d0:54:
f6:94:6e:3b:18:a6:e3:3c:d2:3d:84:83:38:5a:bb:39:8e:d5:
2e:4e:a5:6f:57:6a:bc:15:38:82:1f:4e:e0:bd:96:d7:50:38:
ab:89:ff:33:b8:aa:fc:e4:c8:a3:30:1e:b3:71:ba:67:f9:c5:
4e:fe:a0:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:13:29 2025 by rpki-client