Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
File: cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft (raw, json)
Hash identifier: /W3OhFs6uSCV9Zu7WjAEla5d4AAma153uN8qZVohY+I=
Subject key identifier: 32:18:4A:A7:71:12:B1:2F:6D:EA:16:40:EE:33:82:58:95:41:41:61
Authority key identifier: 70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5
Certificate issuer: /CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
Certificate serial: 0198D5BC372354434E18F1E00182343C8303
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
Manifest number: 03F3
Signing time: Sat 23 Aug 2025 07:02:18 +0000
Manifest this update: Sat 23 Aug 2025 07:02:18 +0000
Manifest next update: Sun 24 Aug 2025 07:02:18 +0000
Files and hashes: 1: cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl (hash: SRP25Kj2rnYs/9RD+brwpIKramd7f/s29vbXwWE5ZB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:37:23:54:43:4e:18:f1:e0:01:82:34:3c:83:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
Validity
Not Before: Aug 23 07:02:18 2025 GMT
Not After : Aug 24 07:02:18 2025 GMT
Subject: CN=32184aa77112b12f6dea1640ee33825895414161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:02:77:d0:1c:5b:bf:eb:1e:ec:cc:70:df:68:
1f:65:18:82:a4:38:6a:55:aa:8a:21:f0:dd:7e:89:
01:26:e2:2a:47:45:00:05:70:ef:ad:07:74:06:a1:
80:d9:cb:43:40:d0:da:ee:a5:7d:25:50:35:1e:f3:
9e:81:6f:be:2c:5c:72:a4:da:02:0e:cb:f2:fd:45:
78:af:56:06:60:f4:a6:a9:5d:79:e0:40:ed:05:87:
7c:25:e8:ec:55:a8:02:43:93:32:e3:8a:7e:78:56:
f8:3b:50:6f:5a:4d:1c:a5:64:db:3d:13:45:69:98:
da:57:8f:5e:b9:97:fc:db:52:fe:33:af:50:46:92:
01:10:02:81:7b:48:a7:25:bc:26:e6:37:f7:53:83:
73:a8:92:f2:67:91:46:f5:53:59:cb:6e:dd:6e:c9:
9e:d7:b7:7a:49:cf:37:d0:5b:8d:c4:a3:8c:ed:02:
66:b2:16:b1:8f:e8:59:10:d6:24:03:c3:f3:3e:ce:
ce:2f:5d:ce:c7:3e:4b:15:43:d5:43:fc:3f:be:7a:
8e:60:46:d5:ec:7b:7a:ff:bc:ad:d0:f3:c3:2b:3a:
00:ca:03:54:76:3b:f4:25:7f:ba:db:10:4c:0a:4c:
f8:5a:0e:db:be:08:2d:75:3d:d6:fd:03:84:5f:50:
aa:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:18:4A:A7:71:12:B1:2F:6D:EA:16:40:EE:33:82:58:95:41:41:61
X509v3 Authority Key Identifier:
keyid:70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:0d:5a:ff:10:36:9a:07:e7:fd:13:25:54:b9:42:5a:e5:34:
c9:35:a2:53:75:8f:35:da:f9:21:de:c0:0f:01:f7:73:80:a5:
52:f0:17:68:a5:86:11:db:d6:de:d3:e4:d8:7c:31:99:d1:c5:
f5:ef:d9:84:f5:61:0a:d3:b4:fa:84:3b:11:e8:df:19:46:dc:
17:b9:f0:da:ea:12:58:e0:d0:9e:bc:5f:8d:c5:71:60:ba:69:
3f:37:5a:b0:60:0d:2c:82:ae:b8:7c:6c:d1:b0:c9:f4:dc:5b:
3a:11:7f:77:2d:aa:81:36:18:fe:e0:64:3d:0b:46:be:0b:d0:
06:c9:7e:72:a8:88:06:02:97:a0:07:31:0a:fa:b0:40:3e:c1:
bd:a4:60:27:45:b3:17:51:6e:37:09:f6:75:e1:5c:e1:5d:14:
ee:c5:cb:ca:af:6d:3a:89:95:41:cf:79:f6:e8:bc:b7:c9:3e:
6b:5e:6b:18:35:2c:05:1d:5d:b8:7d:30:ab:7c:de:68:9e:4f:
86:39:de:a3:c3:15:86:9c:7a:d6:d5:91:90:86:39:69:ad:a0:
37:37:8c:0d:70:9e:83:5d:87:ef:e6:e5:bf:85:c1:a4:74:ce:
8a:20:4c:ba:f6:2a:b1:d4:57:a3:66:03:d6:d9:cc:94:4b:5b:
82:8d:f2:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:59:41 2025 by rpki-client