Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
File: aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft (raw, json)
Hash identifier: qeRfiflTRu82JzGvS3Oj1ehgT+v/I083gBcZo0BcahI=
Subject key identifier: EC:8E:0E:1A:E1:90:4E:DB:76:18:F7:C8:BA:AE:44:18:3D:7A:0C:92
Authority key identifier: 69:8D:47:BE:DF:84:89:AA:02:D3:DB:46:F9:8B:4F:7A:26:4B:48:0A
Certificate issuer: /CN=698d47bedf8489aa02d3db46f98b4f7a264b480a
Certificate serial: 0198D54E465389FFA4E27D1F82AD5FFBB44A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
Manifest number: 15D8
Signing time: Sat 23 Aug 2025 05:02:13 +0000
Manifest this update: Sat 23 Aug 2025 05:02:13 +0000
Manifest next update: Sun 24 Aug 2025 05:02:13 +0000
Files and hashes: 1: aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl (hash: 0eyag8xMZPUWHJnvEwitaZD9OaUZFl2SSzPVt7Uf0Jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:46:53:89:ff:a4:e2:7d:1f:82:ad:5f:fb:b4:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=698d47bedf8489aa02d3db46f98b4f7a264b480a
Validity
Not Before: Aug 23 05:02:13 2025 GMT
Not After : Aug 24 05:02:13 2025 GMT
Subject: CN=ec8e0e1ae1904edb7618f7c8baae44183d7a0c92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:db:af:aa:45:5d:5c:be:35:74:5a:0a:34:e5:
c8:e4:ae:2d:20:9f:c2:f3:a7:b0:d3:8a:31:e3:ce:
51:37:46:72:d7:af:89:33:6f:17:87:82:9d:82:69:
21:f9:4b:18:59:e8:ef:d0:ef:c3:56:24:82:45:fa:
6b:30:93:66:aa:e6:08:52:04:8d:5c:48:59:35:3d:
b4:0d:10:3f:fd:78:b0:90:bd:23:87:48:d9:4a:65:
9f:cb:ba:ea:8b:75:18:7d:ce:d6:63:24:3e:76:c5:
1f:bc:f4:78:05:47:4f:b8:99:78:c0:2e:1e:57:9a:
62:c1:8a:7e:8f:ef:aa:27:6b:e3:2d:0a:1d:4a:7b:
8f:20:38:96:6e:71:84:0b:74:c5:5c:c8:09:9c:40:
44:b7:c0:f7:a0:c5:d7:6f:e0:4b:ea:73:e2:73:55:
fb:19:03:0a:99:bf:45:8c:b5:d3:e6:94:94:5c:3e:
4e:62:1e:46:cc:2f:ef:26:98:e1:b7:c5:77:e9:a6:
66:78:d4:09:bf:bb:d3:d2:3a:71:b3:e8:fd:d3:b7:
fd:ee:4e:ac:49:30:47:55:d6:c7:32:9a:81:cc:14:
4e:59:1e:15:0c:04:05:52:60:65:da:7f:fa:2b:63:
e3:85:69:15:67:71:5d:ae:42:f2:22:57:3d:7c:9d:
29:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:8E:0E:1A:E1:90:4E:DB:76:18:F7:C8:BA:AE:44:18:3D:7A:0C:92
X509v3 Authority Key Identifier:
keyid:69:8D:47:BE:DF:84:89:AA:02:D3:DB:46:F9:8B:4F:7A:26:4B:48:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aY1Hvt-EiaoC09tG-YtPeiZLSAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/59c063-27dc-44ce-a60f-b149eb705dcc/1/aY1Hvt-EiaoC09tG-YtPeiZLSAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:96:de:28:5b:4c:10:2c:e7:7a:6f:70:28:72:13:1b:71:3e:
a3:fd:61:4f:1d:f5:83:9f:b0:66:6b:f0:5d:87:e9:9f:46:b2:
9e:76:7e:77:71:1f:26:e2:b1:cd:8e:8f:a9:8d:bb:23:d3:83:
ba:0c:d9:c0:ab:10:c6:db:d4:4e:7a:c2:ca:ed:55:43:66:4f:
f3:92:aa:2c:6e:bb:d1:ac:64:aa:ce:3e:8d:04:cb:91:04:e8:
03:84:6e:95:58:49:56:e2:12:88:7b:d0:2f:2a:64:e8:1f:bd:
a2:01:4c:dd:f6:f9:8c:20:23:4c:0b:27:f2:8d:ca:ea:00:42:
89:41:22:5a:14:37:90:72:61:dd:44:31:81:05:58:d0:b3:e1:
22:3b:98:17:59:8b:71:c7:7e:ca:c4:95:59:42:e2:37:02:ff:
1f:ce:c4:42:1e:a6:5a:8d:94:bd:13:a1:ed:d7:61:9e:86:81:
e8:4e:9d:9f:71:5a:d4:c1:ba:24:c7:2f:0a:c6:a0:da:70:cb:
70:98:b0:0a:83:38:46:25:f0:6b:4b:69:40:7d:3b:f9:1a:cd:
1b:38:01:08:9a:a3:17:b4:d1:6c:57:46:6b:b7:e0:22:48:c0:
c2:66:8b:4d:9d:2e:8c:61:98:be:8b:d4:0f:4d:2f:03:c2:65:
66:ba:45:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:39:42 2025 by rpki-client