Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.mft
File: ci0p5qil5cpi3rc-r_OrE95VBq0.mft (raw, json)
Hash identifier: FgPQ3DHhWz4NAsGqh9Ypi+aduEeWSXulOpA1XF9lyWo=
Subject key identifier: D5:AA:3D:B3:AA:48:D1:DA:CA:BE:56:65:F1:ED:C4:26:18:3E:85:4E
Authority key identifier: 72:2D:29:E6:A8:A5:E5:CA:62:DE:B7:3E:AF:F3:AB:13:DE:55:06:AD
Certificate issuer: /CN=722d29e6a8a5e5ca62deb73eaff3ab13de5506ad
Certificate serial: 0198D5BBC1EDAE87C43A5129D0498F443F8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ci0p5qil5cpi3rc-r_OrE95VBq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.mft
Manifest number: 0150
Signing time: Sat 23 Aug 2025 07:01:48 +0000
Manifest this update: Sat 23 Aug 2025 07:01:48 +0000
Manifest next update: Sun 24 Aug 2025 07:01:48 +0000
Files and hashes: 1: ci0p5qil5cpi3rc-r_OrE95VBq0.crl (hash: i7+zxZYuPnSGl5gEpQqQw4YARKpQ+V5QDl5Uwdvfh1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ci0p5qil5cpi3rc-r_OrE95VBq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:c1:ed:ae:87:c4:3a:51:29:d0:49:8f:44:3f:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722d29e6a8a5e5ca62deb73eaff3ab13de5506ad
Validity
Not Before: Aug 23 07:01:48 2025 GMT
Not After : Aug 24 07:01:48 2025 GMT
Subject: CN=d5aa3db3aa48d1dacabe5665f1edc426183e854e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:29:87:1c:4f:89:65:36:f2:c6:f5:26:64:e5:
a5:1d:31:80:26:e0:49:d7:f1:f5:a8:6b:31:28:b0:
7f:0b:a3:1a:23:d6:66:25:e7:9a:ea:9b:f4:32:c1:
34:98:ec:c4:8d:b8:ba:98:a4:3b:f0:05:89:d3:83:
a1:66:bb:de:a3:b0:52:18:d7:02:28:bc:51:08:16:
9a:7c:ce:0d:f6:c7:92:ac:b8:67:78:27:0e:a5:92:
c4:7d:f9:41:37:ff:eb:c7:ab:ad:e1:45:6b:a4:7b:
5e:70:cc:7f:93:b1:c8:4b:dd:af:99:70:15:97:59:
2f:62:e8:07:82:f0:12:c8:87:4c:08:a5:73:88:d3:
69:65:06:f1:62:71:22:08:a4:a2:33:0d:04:f3:52:
7b:dd:20:e2:72:26:ee:e9:12:14:dc:be:2b:f3:9f:
7e:d7:f3:ca:90:9e:bd:40:07:1a:20:6c:eb:b2:a4:
23:3e:fa:a9:29:3a:2b:ea:ea:38:d1:57:ef:b8:2f:
62:30:8c:35:04:d0:72:8a:bb:dd:24:d4:2d:01:97:
9a:5a:14:33:e1:3b:b8:af:c1:7b:36:9d:be:2b:d7:
a1:f4:a6:14:5a:b4:23:3e:ab:43:b9:0f:ef:2e:91:
d8:30:ee:fc:c6:33:42:c8:ac:39:81:c2:e2:76:d8:
73:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:AA:3D:B3:AA:48:D1:DA:CA:BE:56:65:F1:ED:C4:26:18:3E:85:4E
X509v3 Authority Key Identifier:
keyid:72:2D:29:E6:A8:A5:E5:CA:62:DE:B7:3E:AF:F3:AB:13:DE:55:06:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ci0p5qil5cpi3rc-r_OrE95VBq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/106e0f-ad80-47c3-bd4f-5547900b8d59/1/ci0p5qil5cpi3rc-r_OrE95VBq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:a1:33:5a:cb:a5:a7:da:bd:bb:c2:82:57:17:86:6f:b1:b2:
81:90:66:c3:0e:cf:1c:d2:85:48:4a:a1:d6:90:ff:60:9a:e8:
36:6e:6e:66:7a:a5:20:5c:73:5e:1b:5d:b4:06:e6:c8:81:26:
42:09:9d:e2:72:ca:9d:53:d2:93:96:f9:bf:0a:97:ae:84:ed:
cb:4f:b0:67:54:86:41:35:18:fb:65:16:3e:01:73:4e:85:c4:
eb:ae:77:55:32:d1:2a:ac:b4:e8:64:35:21:98:b8:e6:2f:8d:
e1:45:57:ba:70:3a:f0:9b:5c:6b:ab:42:a8:0f:45:af:76:5d:
7c:73:e2:ff:61:17:a8:ed:a8:7f:53:62:67:84:d3:4f:89:08:
71:94:bc:c3:9f:63:21:4e:1a:82:e1:68:cb:d9:b5:35:c5:f7:
ca:71:64:0f:ad:28:16:92:9c:d6:82:cc:02:fd:c3:03:b7:f5:
35:f8:c8:39:de:4a:c2:67:ea:4d:e1:c5:52:f7:b9:64:df:f7:
a6:67:3e:78:f4:23:38:70:d6:d1:ea:0a:f9:29:d2:f6:66:db:
ff:42:3a:0b:f1:9e:92:36:00:c1:6e:3e:11:16:b0:fc:5f:d6:
9a:7d:e7:87:3f:91:d9:33:61:b1:1a:79:d2:48:49:82:9b:93:
7d:46:d1:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:09:07 2025 by rpki-client