Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
File: I6lUuSO6IAjpheuiQdG3AHF_iEM.mft (raw, json)
Hash identifier: yC1w9BBNxPXxzIRfgwsX6ofXI5Q53V80OskVc0httfE=
Subject key identifier: 0C:71:12:99:5E:41:B0:36:DE:BC:D8:55:97:9E:13:78:D4:54:22:47
Authority key identifier: 23:A9:54:B9:23:BA:20:08:E9:85:EB:A2:41:D1:B7:00:71:7F:88:43
Certificate issuer: /CN=23a954b923ba2008e985eba241d1b700717f8843
Certificate serial: 0198D66113CF3D101E663B59C528CAE22D5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
Manifest number: 1492
Signing time: Sat 23 Aug 2025 10:02:22 +0000
Manifest this update: Sat 23 Aug 2025 10:02:22 +0000
Manifest next update: Sun 24 Aug 2025 10:02:22 +0000
Files and hashes: 1: I6lUuSO6IAjpheuiQdG3AHF_iEM.crl (hash: q7EquFuu13igM5sSE9pFZP43odXt/wajifndrB9ToBg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:13:cf:3d:10:1e:66:3b:59:c5:28:ca:e2:2d:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23a954b923ba2008e985eba241d1b700717f8843
Validity
Not Before: Aug 23 10:02:22 2025 GMT
Not After : Aug 24 10:02:22 2025 GMT
Subject: CN=0c7112995e41b036debcd855979e1378d4542247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:85:9f:97:da:00:43:a2:b8:54:87:f3:89:5a:
d7:de:9d:4d:ac:3e:23:57:f4:46:2c:db:06:48:35:
ac:e4:30:6f:57:58:b5:49:36:18:3d:3a:e1:cc:77:
78:8e:e3:4b:63:2d:f7:4e:c3:07:14:2d:51:d7:d6:
4b:6d:22:51:e0:58:6c:2e:d1:51:0d:9f:8f:80:c6:
f9:9d:f0:42:54:e0:51:70:1f:54:92:9b:c8:af:06:
ca:84:5a:ab:a6:d3:ef:fd:d8:96:7d:99:f2:69:56:
91:86:6b:77:04:72:22:c1:1d:03:83:d2:8b:0b:34:
d6:29:70:c5:de:55:7a:36:a7:f0:72:0c:67:0e:cc:
44:e6:06:5c:83:0e:2b:ad:90:59:94:44:53:b5:75:
cd:fa:2a:7f:ef:95:5b:4e:b4:98:09:bc:30:6c:a2:
38:cf:7a:3f:db:bd:7c:22:c0:02:d1:8c:1e:57:66:
79:0b:bb:c9:15:1e:f8:5e:ee:b9:6e:7f:3e:13:fc:
e7:d0:d8:a1:0a:dc:0a:f3:ef:56:56:04:d5:a3:81:
3f:20:85:3d:25:97:95:80:6a:a8:30:86:4b:49:39:
8a:2f:93:b4:de:03:d6:f0:eb:58:5d:ae:72:60:a1:
d9:52:5d:3f:0b:b1:f5:e2:8a:63:64:d2:59:37:22:
5e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:71:12:99:5E:41:B0:36:DE:BC:D8:55:97:9E:13:78:D4:54:22:47
X509v3 Authority Key Identifier:
keyid:23:A9:54:B9:23:BA:20:08:E9:85:EB:A2:41:D1:B7:00:71:7F:88:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:b0:72:1e:fe:18:87:c2:ed:f5:56:60:94:d9:f3:93:2c:cb:
e7:bd:ed:d1:f7:0d:0e:16:7a:ff:6c:d6:10:ab:5f:7a:01:7e:
50:28:58:d2:6b:a0:87:6d:08:7c:cc:0e:ed:9e:bf:d7:84:28:
18:64:6d:9c:6b:96:94:66:ca:6b:aa:ff:1c:07:b9:6d:af:4c:
15:19:7d:9d:a7:bf:9f:05:89:aa:53:1a:4d:5b:50:06:95:6c:
24:cb:eb:a6:db:2e:00:a3:31:fe:c0:ce:19:8a:59:ab:83:e7:
b6:71:60:55:3f:e1:e3:78:da:ad:db:6c:8d:6b:9f:ec:e1:ae:
53:3c:ee:2a:ec:1d:6f:76:0d:0b:89:58:69:33:cf:30:52:96:
ea:68:fd:73:20:d8:48:3c:b5:ce:b3:7c:b5:cd:9d:6c:22:cf:
a2:3b:c6:28:b8:d8:c6:1b:19:12:76:5f:65:6b:f6:a6:eb:cc:
c7:68:9e:fe:f5:0b:fa:2e:c0:72:6c:5f:7c:74:15:be:d2:a8:
03:22:1d:a8:01:4a:71:11:12:3f:bc:e0:a1:22:51:9f:1d:57:
0c:85:3e:c4:e0:a9:03:6c:33:b7:c7:ea:88:a1:ef:7f:58:33:
ee:99:c3:59:c9:4f:d3:68:34:51:01:4b:7a:17:00:a8:42:87:
88:cf:14:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:29:47 2025 by rpki-client