Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
File: icKIUyrvyGlxuY1bTR2YGW2ey4U.mft (raw, json)
Hash identifier: 1Cg4nGepfn1ss0gi0xUPK3ZDgulsugQnjo5ppJyQch0=
Subject key identifier: 03:24:C5:F3:A4:2A:65:33:BE:0C:1A:9B:FF:F2:E7:40:02:01:4E:DB
Authority key identifier: 89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85
Certificate issuer: /CN=89c288532aefc86971b98d5b4d1d98196d9ecb85
Certificate serial: 0198D660706B9CE4AA24A9FE054FE1AFCB27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
Manifest number: 07BA
Signing time: Sat 23 Aug 2025 10:01:41 +0000
Manifest this update: Sat 23 Aug 2025 10:01:41 +0000
Manifest next update: Sun 24 Aug 2025 10:01:41 +0000
Files and hashes: 1: icKIUyrvyGlxuY1bTR2YGW2ey4U.crl (hash: MfiWfQfKdsnnluY7lAHtTaz+kCJGqgpxRqAp5uyCRZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:70:6b:9c:e4:aa:24:a9:fe:05:4f:e1:af:cb:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89c288532aefc86971b98d5b4d1d98196d9ecb85
Validity
Not Before: Aug 23 10:01:41 2025 GMT
Not After : Aug 24 10:01:41 2025 GMT
Subject: CN=0324c5f3a42a6533be0c1a9bfff2e74002014edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9f:9e:cf:5e:65:af:cc:89:38:f4:75:16:48:
18:94:54:b8:37:0c:0d:87:65:eb:ef:36:42:51:2d:
66:73:1a:a0:60:e2:65:0a:39:42:67:69:9a:c6:f9:
6c:cf:a6:bb:71:52:69:f7:ce:6c:95:9e:c0:04:eb:
35:80:64:fd:ad:4b:ba:4f:39:90:67:ac:65:68:1e:
21:f3:be:22:f3:6c:d6:92:ef:06:f9:ac:e6:e3:7a:
2f:d7:8f:51:17:e9:68:28:fd:5c:69:94:9e:3d:e3:
57:8d:90:ac:19:b2:05:d3:90:e2:27:6d:86:dc:b1:
cb:09:0d:1a:46:cc:d1:b3:af:36:d8:11:d9:e7:e6:
e0:e5:e3:66:25:10:52:93:c7:d8:32:a8:a8:1c:8c:
f1:75:2f:74:ac:d3:09:d6:b9:8c:9b:65:71:96:4c:
12:1a:2c:67:92:cc:f3:db:d3:88:86:a2:bb:e9:64:
5f:4a:2c:0a:51:fd:87:0e:f4:3f:8a:e2:36:79:bd:
62:1d:f3:47:1f:91:a1:32:16:88:48:6b:56:ae:65:
61:98:63:01:43:5e:8a:77:a6:9d:22:d7:00:52:d2:
3d:88:82:79:a2:82:19:a1:2c:cd:49:02:67:a3:85:
5b:69:b5:94:16:e9:19:e0:8b:98:ee:5f:4b:d6:8f:
5b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:24:C5:F3:A4:2A:65:33:BE:0C:1A:9B:FF:F2:E7:40:02:01:4E:DB
X509v3 Authority Key Identifier:
keyid:89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:0e:ce:f5:dc:20:b4:cb:62:6f:68:95:05:3e:f9:17:b0:9a:
86:ea:8c:c5:9f:7c:8d:f8:1f:d9:0b:19:b1:fd:f4:06:07:34:
90:c0:95:21:25:c6:05:29:d8:19:6d:75:39:9b:25:cb:bc:3b:
43:91:d7:cd:a3:72:20:a6:74:82:a5:2b:60:a9:f4:c2:a7:41:
2c:bf:ea:2d:02:c1:14:ab:b9:f2:13:d1:b8:e3:1f:c8:7e:1e:
f2:54:fa:00:06:9b:53:95:7b:45:0e:ea:65:00:10:67:dd:ba:
d0:9f:78:3e:ad:5a:76:e9:23:a4:2a:b6:9f:e2:2f:16:40:4c:
2f:b4:c4:b3:07:0e:95:f6:ae:d5:95:cf:98:59:d2:df:45:47:
94:4f:96:18:5d:bd:55:13:b2:bf:f7:1a:9f:64:f1:cc:47:5f:
05:c8:14:24:06:de:cd:29:39:3f:76:1a:97:33:ca:58:9d:5e:
fd:42:39:3a:df:37:5c:fd:fd:f1:30:df:cc:1d:42:c1:8e:85:
a8:af:4c:a8:ca:ab:0a:f7:9e:33:a7:74:5c:05:92:ae:e3:15:
b0:18:42:6a:12:8b:11:7a:b8:bb:3c:1b:c5:84:cf:5e:5a:c1:
0e:ca:4f:4c:19:88:39:cc:5f:67:84:a4:02:73:e1:47:c9:1e:
84:76:7c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:22:50 2025 by rpki-client