Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
File: 8A5uimGIP2gBZbX0FUhfjw1PWo0.mft (raw, json)
Hash identifier: tLngZX5GAgwZLtiYC4hWp3+UPAWAONcxiuGduaNYCjc=
Subject key identifier: AF:51:24:04:54:DF:7B:43:08:0B:C0:DF:46:A5:9B:B3:D5:3C:47:92
Authority key identifier: F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
Certificate issuer: /CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Certificate serial: 0198D4E0074592EA331CEE7368E968A4CE9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
Manifest number: 1342
Signing time: Sat 23 Aug 2025 03:01:48 +0000
Manifest this update: Sat 23 Aug 2025 03:01:48 +0000
Manifest next update: Sun 24 Aug 2025 03:01:48 +0000
Files and hashes: 1: 8A5uimGIP2gBZbX0FUhfjw1PWo0.crl (hash: IYq1NqOSGEyxys27IJzJS3/N2P/AM7u3nThiX7Qzc4A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:07:45:92:ea:33:1c:ee:73:68:e9:68:a4:ce:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Validity
Not Before: Aug 23 03:01:48 2025 GMT
Not After : Aug 24 03:01:48 2025 GMT
Subject: CN=af51240454df7b43080bc0df46a59bb3d53c4792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e1:16:4b:3e:55:41:b7:12:89:a9:eb:46:3c:
3b:d9:db:e7:23:0e:f6:7b:c7:15:f9:6a:99:dc:83:
51:98:41:46:56:9f:47:ce:ca:9b:c5:74:f2:dc:d0:
31:75:c9:a9:53:52:16:42:5e:e9:58:1c:62:f1:c6:
66:c3:fb:6e:13:7f:d9:36:43:89:90:1a:59:eb:5b:
71:e7:51:12:3c:64:66:14:7f:32:57:1a:b6:73:35:
ba:07:e3:31:08:53:43:39:b3:9e:e1:94:4f:c1:57:
d8:ec:a8:ca:96:13:36:57:1c:b3:74:d0:25:55:03:
52:4f:25:55:6f:85:55:5b:5a:bb:e8:82:6a:51:b6:
00:cf:77:2f:bb:1e:a5:4d:30:9e:af:bc:21:9b:a9:
93:ac:e0:ed:17:81:80:db:05:e0:f6:43:db:2c:0b:
88:45:8f:9a:fc:06:ca:3c:26:b7:d6:b3:d5:f8:f1:
32:aa:f4:eb:1c:6c:92:75:7e:de:5f:66:d6:93:48:
1f:bf:4a:64:b6:19:e0:3d:66:60:e3:f3:9d:37:90:
2b:55:57:c6:ea:a2:bb:d8:e8:5b:20:1e:7c:d2:08:
85:12:b9:b3:cf:e0:d7:24:65:f0:fa:a0:68:ec:01:
93:63:1f:41:aa:8b:5f:89:20:4a:82:4d:8e:2f:91:
b6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:51:24:04:54:DF:7B:43:08:0B:C0:DF:46:A5:9B:B3:D5:3C:47:92
X509v3 Authority Key Identifier:
keyid:F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:98:e7:4f:6d:6f:d2:cd:45:09:0b:a7:f0:ad:68:c9:68:af:
c5:5d:4a:bc:18:af:b8:79:52:39:d6:7c:6f:9c:56:f5:77:ee:
04:c6:38:c4:57:d0:84:3d:e4:b9:0a:64:26:cd:7d:55:9e:33:
e8:99:28:27:18:4d:b7:d6:de:31:eb:ee:90:ee:d4:c8:56:53:
f1:fa:37:ab:b3:cc:f0:82:ab:f6:b7:65:88:2f:6d:0b:cf:53:
e0:84:bf:48:05:f8:95:34:1b:67:47:92:1e:a5:d9:2a:f5:04:
c3:f8:e3:6a:8c:21:cd:9c:83:5a:24:b9:3a:a2:79:73:d6:cd:
68:c6:25:12:ed:55:d7:e6:ea:e9:a1:24:93:19:e9:26:b0:82:
64:ee:cd:9d:ce:59:94:e8:d3:81:a4:f0:4f:83:24:08:a8:2d:
78:fc:ee:2d:a6:09:bd:39:e5:08:95:96:2c:f4:eb:e1:72:fc:
b6:66:82:81:65:ff:c1:98:e3:a8:fe:53:a1:9a:a4:aa:50:d5:
ea:05:f1:23:d6:dc:dd:8e:38:58:d7:dd:c1:e6:cf:f4:1a:20:
6b:d0:cd:41:3c:65:2a:e2:3a:6c:f0:96:c9:42:a6:e2:89:8a:
f2:79:bb:a6:d5:3f:c0:f8:0a:cb:ef:f5:cc:57:99:b7:84:18:
36:7f:b1:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:38:45 2025 by rpki-client