Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: lqY+92llX5R3Fl7ANQ1NojCP9HHjGx3VfPzDn5gKRlY=
Subject key identifier: 53:AE:F8:9F:07:76:E1:4A:C0:F0:BA:38:B3:17:49:85:BF:DD:4A:DF
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 0198D73BC24CD68BDC09551B47ED487B7573
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 08D2
Signing time: Sat 23 Aug 2025 14:01:14 +0000
Manifest this update: Sat 23 Aug 2025 14:01:14 +0000
Manifest next update: Sun 24 Aug 2025 14:01:14 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: TqkmTKYABaCH/V7dZYFRg7KZj9Se63y+IvGFMtDVrfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:c2:4c:d6:8b:dc:09:55:1b:47:ed:48:7b:75:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: Aug 23 14:01:14 2025 GMT
Not After : Aug 24 14:01:14 2025 GMT
Subject: CN=53aef89f0776e14ac0f0ba38b3174985bfdd4adf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:af:6c:f0:da:c7:ca:70:be:c7:1d:8c:fa:36:
e8:15:30:c6:3a:28:fa:46:fd:9c:89:f1:8e:cf:8d:
78:c0:04:86:f2:b1:f6:d3:7c:ae:d6:89:67:d5:c2:
c3:7d:12:6e:2b:8b:88:e5:ed:61:8d:c4:ae:97:91:
fd:f9:01:4c:8a:24:30:ae:a1:60:a2:1d:cb:d3:53:
86:b0:2f:14:eb:7d:ad:0c:5b:6d:b0:e7:ae:c7:1b:
cc:f8:29:5c:b3:ba:a2:03:f9:a4:49:ad:bc:d9:35:
a9:19:62:ed:d5:58:b1:a9:b8:ff:e4:3e:17:fc:5e:
38:07:f7:a9:73:e1:96:e5:19:42:c7:5d:16:7c:42:
d8:ab:e8:fe:2a:7b:4c:5a:8e:f2:ce:03:44:2b:60:
e3:03:ac:5f:f2:0a:24:cf:ff:ca:ec:3d:aa:81:a5:
75:65:cf:76:37:74:b5:1f:70:0d:68:d8:19:ca:6c:
0b:bb:c8:f0:e2:c2:52:f9:10:83:58:a5:82:b4:0f:
a0:5d:17:28:78:11:c4:df:f3:17:6e:18:55:c3:bf:
1a:1e:f5:4d:46:cf:5d:39:94:0d:8a:13:70:fe:23:
e5:76:e8:7a:3e:da:51:28:0e:05:6e:67:08:63:ff:
40:c7:43:6b:d0:cf:d5:3a:78:50:7b:27:64:d7:d7:
14:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:AE:F8:9F:07:76:E1:4A:C0:F0:BA:38:B3:17:49:85:BF:DD:4A:DF
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:f7:ec:a2:88:a0:85:83:2b:33:cc:33:00:0c:82:04:f5:78:
3f:83:4f:49:cc:44:3f:fa:ff:68:35:07:53:06:36:8d:be:4b:
c4:ef:da:57:27:a3:b0:97:4f:c8:46:f7:11:9f:81:d6:3b:7f:
d6:52:7f:7a:a7:e1:49:8c:85:3c:77:4d:d5:67:19:9e:8c:3d:
04:98:6b:5f:c9:75:25:d0:dc:b1:cb:2d:af:17:f7:9f:d1:de:
d0:31:67:bc:53:b5:eb:df:2b:a5:c5:15:0e:97:74:9b:57:8e:
e7:92:c6:91:7a:2f:6f:80:c1:d2:20:93:b7:85:75:66:9e:58:
67:48:d2:db:87:fd:1f:f9:29:2d:fd:ee:1d:cc:4d:c8:07:8f:
76:ac:e3:e9:95:c7:bc:1b:d2:02:14:c1:53:69:c9:19:e7:2e:
5a:98:57:b0:9c:96:a7:10:ff:0d:5a:24:cb:41:fc:e5:a6:8b:
ba:6d:b8:98:4b:4c:1e:40:b3:f9:4a:dd:a7:8c:b2:e0:63:11:
e9:71:b3:23:bc:4b:3a:84:7a:dd:54:8c:d6:be:5e:87:c8:87:
ed:fb:5b:30:6a:ee:6a:b6:17:c7:a0:5a:ce:a0:7d:63:81:cf:
0c:64:84:08:eb:86:88:00:bc:d8:0b:7c:c9:b5:07:b0:2c:ec:
2a:38:03:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:26:37 2025 by rpki-client