Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
File: ISApS0bJAtk8B5wWhs_kW7ozGMs.mft (raw, json)
Hash identifier: Bnn25l7U0M0BwB2Fn/oWHaXxVel6HqpxQBlqe9navAQ=
Subject key identifier: AF:50:FE:2B:49:48:61:E9:4C:68:D6:B9:D3:CF:05:DB:12:0F:64:CF
Authority key identifier: 21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
Certificate issuer: /CN=2120294b46c902d93c079c1686cfe45bba3318cb
Certificate serial: 0198D47432EBF620478AA3083AEF64AFB5CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
Manifest number: 0DDF
Signing time: Sat 23 Aug 2025 01:04:01 +0000
Manifest this update: Sat 23 Aug 2025 01:04:01 +0000
Manifest next update: Sun 24 Aug 2025 01:04:01 +0000
Files and hashes: 1: ISApS0bJAtk8B5wWhs_kW7ozGMs.crl (hash: E9H1NPofB4ipbyws39/QrR24v915zM3GIYF59zSI+Q8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:32:eb:f6:20:47:8a:a3:08:3a:ef:64:af:b5:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2120294b46c902d93c079c1686cfe45bba3318cb
Validity
Not Before: Aug 23 01:04:01 2025 GMT
Not After : Aug 24 01:04:01 2025 GMT
Subject: CN=af50fe2b494861e94c68d6b9d3cf05db120f64cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d5:4c:46:08:06:89:37:e6:d8:a5:17:b7:76:
15:c6:11:03:0a:e7:60:69:21:8c:a5:bf:e0:54:e1:
b3:8c:c7:26:c9:3f:b7:12:a3:6b:61:a2:e3:a2:2c:
34:a7:ad:69:1b:29:c6:28:61:10:6b:ca:62:b4:86:
a2:ca:e6:a4:af:17:08:5a:01:a1:5b:c8:be:36:9d:
a0:99:85:24:ff:96:81:9a:fb:8f:dc:77:7c:6e:d3:
cd:2b:6b:66:93:c5:8e:71:aa:ae:28:cc:d7:08:e1:
84:39:19:ad:e0:b9:86:75:c7:27:99:de:2e:52:ae:
84:06:2e:63:a7:1c:bd:97:8c:65:10:6f:c1:db:3a:
1f:41:19:42:f1:d6:1a:ae:49:e0:7b:21:6c:d2:28:
c0:3f:27:8a:b9:7a:e9:db:64:00:e1:e3:e4:21:c2:
dd:90:1d:da:c1:82:0e:c6:93:d7:79:a8:0b:ea:66:
b4:20:9b:c3:41:53:07:f7:22:d2:c2:32:0a:ce:80:
e5:0f:64:2c:c6:09:60:42:33:9d:29:5e:89:aa:e5:
e8:5f:65:09:7d:cb:b6:a4:ad:cf:df:fd:8a:52:9e:
40:c5:4c:a9:67:be:8e:5a:f9:02:ba:d0:bb:f0:2e:
56:b4:4c:3a:26:e4:63:f9:82:69:5b:b5:8b:d5:a8:
21:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:50:FE:2B:49:48:61:E9:4C:68:D6:B9:D3:CF:05:DB:12:0F:64:CF
X509v3 Authority Key Identifier:
keyid:21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:81:0a:0f:c0:dd:be:16:61:a7:d2:cf:4e:f2:73:6c:c3:25:
63:d2:f9:47:fc:7b:27:2d:5d:02:ab:de:5b:8c:a4:96:5c:a1:
74:08:ab:5e:ee:c2:44:6e:31:53:6f:2f:39:44:d0:59:96:10:
f5:8b:75:9a:51:c2:08:8d:07:c9:a8:57:30:7a:d2:6c:89:22:
d7:a5:83:ad:43:77:ab:ea:2b:46:4d:2f:0b:cf:4f:25:e2:97:
ab:63:5a:94:f9:99:e4:67:50:4f:5e:a5:c3:33:1a:7b:1a:c7:
3b:58:56:83:9e:73:9c:02:21:54:85:f0:6d:bb:00:b6:7c:1b:
ce:c6:20:f9:10:f2:e5:ba:73:b8:a6:83:9a:27:e6:96:a3:8c:
bd:57:4d:3c:16:ff:ec:88:26:bc:45:07:21:7d:8f:36:03:06:
2d:e7:03:54:5b:44:b7:d0:75:09:36:95:a9:ce:cc:1e:ff:36:
a3:8c:6b:d5:53:0c:18:ef:a7:99:28:e0:12:af:02:c5:2b:e5:
18:42:87:3e:59:77:3b:95:39:fc:3e:50:11:b2:37:ea:c1:8a:
db:50:f6:cb:cc:05:9a:e9:d9:f7:bf:06:a1:d9:50:7c:7b:37:
42:76:51:27:96:08:24:92:60:af:9b:2a:7e:23:63:b1:69:35:
07:70:9b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:20:17 2025 by rpki-client