Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
File: 4IZuWnxyXctqE4zGw0DP2tQxXT4.mft (raw, json)
Hash identifier: B+thGktxHWY7zZgc1T2kLld1Tjmc5A8IbV3SmrwCk80=
Subject key identifier: 39:A9:9E:49:9D:58:09:2B:55:03:A6:76:A3:56:DE:18:50:45:C5:BD
Authority key identifier: E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
Certificate issuer: /CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Certificate serial: 0198D4DFF69AEAE584BB836646E64E88F216
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 03:01:44 +0000
Manifest this update: Sat 23 Aug 2025 03:01:44 +0000
Manifest next update: Sun 24 Aug 2025 03:01:44 +0000
Files and hashes: 1: 4IZuWnxyXctqE4zGw0DP2tQxXT4.crl (hash: rksfBUdzrKmrRLyX1xjOHl552qThjA0POGD34Ltt1xc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:f6:9a:ea:e5:84:bb:83:66:46:e6:4e:88:f2:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Validity
Not Before: Aug 23 03:01:44 2025 GMT
Not After : Aug 24 03:01:44 2025 GMT
Subject: CN=39a99e499d58092b5503a676a356de185045c5bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:e3:d4:67:2e:7f:0a:3e:0a:89:9c:0f:b8:61:
27:11:d5:da:2f:12:5e:ce:e9:be:15:7e:b0:d3:23:
3d:eb:d3:fb:ff:f2:f7:33:c4:01:75:fc:98:3c:ee:
0c:4e:e5:91:4e:6b:61:63:0f:0e:fb:9e:51:e7:7e:
28:41:1c:2a:eb:d3:a5:db:14:9b:14:e8:92:2c:01:
a3:16:a4:5f:8b:7f:00:37:c2:f4:6c:6b:2d:20:dc:
47:20:b1:2f:80:82:ce:77:49:ad:04:19:57:09:f0:
cc:8a:d1:d2:6f:44:7b:f2:d6:d7:9e:42:69:af:63:
3a:f0:27:1a:88:1d:37:b9:15:a1:83:87:d1:61:ca:
5c:26:74:1f:5b:1c:7a:59:dc:55:65:b8:11:58:c5:
a2:7b:61:cc:49:da:7b:81:6c:fd:b7:f5:3d:c3:63:
cb:b0:ca:26:38:d2:31:6e:d2:ca:a8:63:d1:4c:6b:
35:65:91:ea:bb:e1:93:7f:30:ef:0e:00:4f:ff:ce:
67:db:42:9d:1b:5f:cd:e3:8d:a2:9b:4d:88:9f:f3:
99:ea:42:59:42:8e:ab:c9:ad:29:2f:18:00:8b:77:
ef:77:80:15:73:2a:e0:d4:af:1a:51:9f:70:99:d8:
ef:7f:f6:7d:0a:38:a6:47:ae:59:72:2e:9d:fe:04:
35:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:A9:9E:49:9D:58:09:2B:55:03:A6:76:A3:56:DE:18:50:45:C5:BD
X509v3 Authority Key Identifier:
keyid:E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:bc:3c:88:85:c0:9c:9b:e4:2e:4b:cd:b6:cc:9c:ac:bc:2b:
49:06:86:d6:cc:13:0c:6b:f6:28:a1:65:a5:f9:9b:a2:c6:88:
08:92:64:34:55:d5:36:c8:f2:9f:d6:90:a2:a4:20:c5:ba:e5:
61:63:82:ec:dc:d4:6b:05:bc:8e:44:4c:60:1b:e0:31:9a:3a:
15:95:0c:55:ad:46:f7:c6:92:0e:ea:31:13:0c:b1:f9:90:0e:
00:fa:a2:31:a1:d3:e2:f0:48:17:9c:e1:e7:d0:af:43:e3:68:
88:39:af:e9:39:50:84:47:09:ac:35:3c:bb:5f:b9:bd:29:5c:
f5:f1:5b:96:a1:96:95:5b:c3:3f:e2:31:88:82:e2:69:fa:c6:
8d:5f:28:3b:ba:42:d7:f8:d6:6c:ca:f2:d9:49:d4:65:fc:cc:
b5:a2:5a:2b:18:27:d6:e1:3d:68:74:da:ba:3d:4b:1d:d2:2c:
4c:2e:f4:82:fd:e4:20:d3:76:3f:56:01:af:1f:a9:93:a3:68:
45:42:72:dd:bd:f7:8d:c7:87:33:0d:c8:c0:07:76:24:18:1a:
ae:85:8e:c8:34:5d:57:53:f6:72:e9:b8:42:38:59:29:8e:54:
85:68:e3:b8:1c:07:a0:6f:c6:66:3f:31:59:73:5d:ef:be:df:
15:07:46:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:14 2025 by rpki-client