Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.mft
File: d7tRRrULW8gaNXR6K75lKqC3Fnw.mft (raw, json)
Hash identifier: j85xSRHvCNGrlyJMtcN7DfrI4vIwpgII7TyjNkGQhko=
Subject key identifier: 11:08:74:74:ED:24:33:05:9B:6C:0E:A7:F7:39:33:2D:72:B9:DA:06
Authority key identifier: 77:BB:51:46:B5:0B:5B:C8:1A:35:74:7A:2B:BE:65:2A:A0:B7:16:7C
Certificate issuer: /CN=77bb5146b50b5bc81a35747a2bbe652aa0b7167c
Certificate serial: 0198D54EC4751BF0AB1BEE2AB1394D7093F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7tRRrULW8gaNXR6K75lKqC3Fnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.mft
Manifest number: 12EE
Signing time: Sat 23 Aug 2025 05:02:45 +0000
Manifest this update: Sat 23 Aug 2025 05:02:45 +0000
Manifest next update: Sun 24 Aug 2025 05:02:45 +0000
Files and hashes: 1: d7tRRrULW8gaNXR6K75lKqC3Fnw.crl (hash: CkMuoYogpow/PSbTwF3f9uo0K/CPbTFev62dJ2sJx3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/d7tRRrULW8gaNXR6K75lKqC3Fnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:c4:75:1b:f0:ab:1b:ee:2a:b1:39:4d:70:93:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77bb5146b50b5bc81a35747a2bbe652aa0b7167c
Validity
Not Before: Aug 23 05:02:45 2025 GMT
Not After : Aug 24 05:02:45 2025 GMT
Subject: CN=11087474ed2433059b6c0ea7f739332d72b9da06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e7:df:5f:d5:2a:af:e3:b6:eb:39:1e:32:83:
9f:a4:ce:56:98:75:28:9f:db:f5:6b:51:8d:e8:35:
66:72:8a:29:de:11:05:d8:6a:95:ee:97:cf:d9:ca:
eb:c7:e1:9c:b0:81:f4:04:50:bd:fd:2d:1e:f8:a1:
8d:7c:5f:a4:e7:39:cb:cb:7f:11:a9:92:71:ed:fe:
84:e5:e1:ef:6c:6c:d2:fb:5d:93:aa:4e:c7:d6:b2:
2c:a7:3e:f3:de:ae:f6:a2:22:9f:a9:ad:08:f8:10:
26:c6:ae:62:e8:46:73:c0:0e:85:43:24:7b:ce:a5:
6a:e6:c6:1e:fa:09:c8:3c:b6:36:5a:1d:e1:c1:85:
4e:00:77:a2:2b:06:55:27:37:93:be:a8:81:a1:dc:
0e:89:05:52:a2:ef:ba:ed:fb:8d:22:56:ce:c6:6a:
5c:72:d0:07:b2:d0:02:e9:43:86:a8:9f:83:ac:04:
da:65:ae:80:b2:e1:92:54:5f:ad:65:07:98:0e:de:
a1:b9:9f:37:8c:16:fa:6d:8f:7d:92:04:8b:2b:8f:
06:f6:4a:ea:b4:22:4a:b2:74:17:ee:4f:e0:2d:fb:
2b:93:78:43:cf:89:1b:30:e9:e2:da:a7:64:80:db:
f1:ca:e0:a4:93:ec:4e:ea:ef:d4:eb:1d:01:5d:13:
b0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:08:74:74:ED:24:33:05:9B:6C:0E:A7:F7:39:33:2D:72:B9:DA:06
X509v3 Authority Key Identifier:
keyid:77:BB:51:46:B5:0B:5B:C8:1A:35:74:7A:2B:BE:65:2A:A0:B7:16:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7tRRrULW8gaNXR6K75lKqC3Fnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6199d4-3261-4e0a-ab46-f087e4f85e50/1/d7tRRrULW8gaNXR6K75lKqC3Fnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:98:13:a0:ed:5b:f5:c4:67:d3:d5:33:a7:64:3e:9c:bd:60:
e7:0f:3c:16:e7:b5:5c:7c:e5:7b:d6:6c:3b:f1:f7:1f:ba:71:
1d:cc:35:d2:66:d8:d7:2a:2a:9d:97:58:72:31:d7:d8:4e:50:
29:5b:3d:a8:fa:68:9d:9b:ce:55:de:83:46:83:d2:dd:5b:2b:
23:b2:2b:73:b7:5c:a3:9b:e5:21:31:93:19:1d:9e:c0:9d:a9:
04:4a:28:3d:3f:6a:b1:42:97:6f:15:c5:97:a8:c2:12:22:6f:
c3:1f:f3:ce:a2:48:05:b8:ff:74:f2:fb:87:48:6c:d2:9e:a9:
9a:46:bb:30:10:44:cd:87:bb:bc:ec:cc:0f:ac:ec:13:fe:ef:
50:e2:08:b2:c2:a1:e1:e6:68:94:94:cb:c0:10:9a:a7:27:d6:
0e:43:34:70:79:33:a0:97:9d:f8:61:84:4c:c3:ea:18:f6:ee:
42:18:4e:4b:8a:2c:ab:43:0d:8e:af:9b:8f:f0:c0:6c:29:88:
54:89:c7:29:9d:f5:54:a1:be:44:5f:44:70:83:a7:76:52:4e:
c3:d1:38:5f:83:54:ee:a7:6d:ea:b2:14:e9:dd:a7:ba:c6:44:
4e:42:21:6a:66:cd:d4:66:ba:f8:14:ae:91:5f:79:0b:65:47:
68:70:86:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:17:33 2025 by rpki-client