Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
File: 09XiCPMtcw1DHUpNTtgJWx59lDE.mft (raw, json)
Hash identifier: gvlnZc8doym0Qf2AkaEMx7bMBmsrWI7PQQ30UvSSF2g=
Subject key identifier: 81:E0:CB:8D:B9:DA:B8:C5:82:CE:55:9D:B2:C1:E8:57:50:CE:32:4D
Authority key identifier: D3:D5:E2:08:F3:2D:73:0D:43:1D:4A:4D:4E:D8:09:5B:1E:7D:94:31
Certificate issuer: /CN=d3d5e208f32d730d431d4a4d4ed8095b1e7d9431
Certificate serial: 0198D4725801BDCA6111576D5F65DC457557
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
Manifest number: 0176
Signing time: Sat 23 Aug 2025 01:01:59 +0000
Manifest this update: Sat 23 Aug 2025 01:01:59 +0000
Manifest next update: Sun 24 Aug 2025 01:01:59 +0000
Files and hashes: 1: 09XiCPMtcw1DHUpNTtgJWx59lDE.crl (hash: ilT/NtAgB6jyOrjgOC4cigtBQ6YperaPJlaseZdvark=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:01:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:58:01:bd:ca:61:11:57:6d:5f:65:dc:45:75:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3d5e208f32d730d431d4a4d4ed8095b1e7d9431
Validity
Not Before: Aug 23 01:01:59 2025 GMT
Not After : Aug 24 01:01:59 2025 GMT
Subject: CN=81e0cb8db9dab8c582ce559db2c1e85750ce324d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4f:aa:c9:fc:1c:fa:2b:cb:3c:be:d1:65:ee:
57:8f:2a:c8:07:bf:8d:07:7d:39:89:53:e9:3c:be:
1c:b4:b1:4e:df:8c:0a:a9:4f:8b:7c:05:50:46:f2:
78:af:fc:dc:f5:f7:d5:bf:6f:75:55:81:50:bc:f7:
1c:44:95:0c:70:44:e0:17:82:0b:dd:6a:39:51:f4:
5a:0b:48:6a:bb:94:18:9f:ec:e0:00:f2:45:b1:f7:
0f:d3:b0:d1:28:7a:d0:76:c3:f7:83:62:e7:ed:6f:
e9:7c:1f:25:50:da:f7:42:50:9e:96:c5:0f:62:7a:
ac:49:26:51:c1:51:76:9d:28:f9:b9:a3:f3:3c:66:
20:fe:91:2b:1d:7e:19:a1:e1:ef:f6:29:01:02:67:
3e:15:16:47:48:ab:cc:69:29:d2:8f:6b:68:ef:ad:
bc:90:4c:de:e5:51:0c:8d:83:3e:24:d0:61:81:03:
83:ec:3d:c6:53:fd:72:ca:23:2d:f3:f4:14:80:81:
04:ba:25:f4:d5:43:b8:c3:1c:79:01:e4:19:0b:93:
5f:e3:a2:82:70:24:83:56:b5:89:b9:50:b0:63:47:
5e:87:5a:ec:df:d6:67:15:2c:1a:9d:6e:70:2f:75:
6c:f3:84:08:ad:b9:24:aa:c2:7d:9f:95:01:29:3e:
6a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E0:CB:8D:B9:DA:B8:C5:82:CE:55:9D:B2:C1:E8:57:50:CE:32:4D
X509v3 Authority Key Identifier:
keyid:D3:D5:E2:08:F3:2D:73:0D:43:1D:4A:4D:4E:D8:09:5B:1E:7D:94:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:ee:a3:59:45:79:b3:ad:d9:63:42:ea:93:f8:28:62:71:e6:
f7:bb:86:b3:9a:f1:24:43:ee:52:bf:e0:4e:bb:83:60:ed:4c:
79:0b:8d:56:15:a7:e9:fd:43:2b:a7:96:76:df:73:e5:8d:76:
01:39:1f:50:b5:fa:dd:e4:d3:46:a3:af:21:17:10:f5:d8:13:
7d:88:96:12:e3:15:51:06:c0:7f:1b:80:4d:b8:44:07:c4:c9:
35:63:49:27:de:e7:97:92:96:66:1f:38:f5:66:e1:31:0c:a2:
2d:51:95:9d:36:c5:95:4d:f2:af:da:59:0f:b6:26:75:52:a9:
a8:ac:c3:7b:ab:4e:d7:00:ec:16:51:50:0a:34:e2:f8:f7:80:
b1:7c:48:2a:12:0c:77:f2:1d:fb:1c:97:71:78:04:fe:4e:f5:
30:51:04:6e:9a:48:b5:b1:d6:fc:82:8d:1c:e3:32:d1:8d:e4:
6a:94:8f:20:35:c2:fd:c8:0b:d6:34:b4:ea:be:10:89:22:bc:
7f:f0:63:9d:c0:08:cf:7e:12:9f:ac:89:4a:72:c8:75:2c:81:
f6:b6:cf:57:e0:c8:70:e2:12:b0:93:4c:ea:09:df:a5:fc:ae:
06:5a:87:b4:d8:d4:50:6f:12:48:f0:df:24:c3:22:bb:90:c8:
a1:85:17:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:05 2025 by rpki-client