Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
File: IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft (raw, json)
Hash identifier: 3ZvtZJjeruyqfEClfFfg3kBMqTu2wpV/CcwRFCXv5LI=
Subject key identifier: 07:78:3F:B6:BF:96:B7:CB:42:35:ED:0F:FA:DD:AA:CF:0B:E3:7E:63
Authority key identifier: 22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D
Certificate issuer: /CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
Certificate serial: 0198D54DEE1D7C9881EA2CA0254780912F2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
Manifest number: 0C1A
Signing time: Sat 23 Aug 2025 05:01:50 +0000
Manifest this update: Sat 23 Aug 2025 05:01:50 +0000
Manifest next update: Sun 24 Aug 2025 05:01:50 +0000
Files and hashes: 1: IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl (hash: Rw38gGrR5iKKflc4eWeJN7rBCSMSksmem2rgKsHSYcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:ee:1d:7c:98:81:ea:2c:a0:25:47:80:91:2f:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
Validity
Not Before: Aug 23 05:01:50 2025 GMT
Not After : Aug 24 05:01:50 2025 GMT
Subject: CN=07783fb6bf96b7cb4235ed0ffaddaacf0be37e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:50:2d:02:08:95:d4:a5:c6:da:d0:f3:fe:f8:
61:bd:14:ce:8f:92:b8:85:8d:0c:57:52:2e:3b:56:
a9:e9:24:0b:b7:7c:3b:fd:6d:37:53:4e:07:66:73:
2c:f5:ac:19:48:d1:17:1e:0c:63:cb:84:c3:8c:98:
29:17:55:cc:2c:aa:be:99:9a:29:07:0b:23:19:e8:
52:9f:f8:56:be:41:86:29:c4:de:cc:bf:3b:ed:1e:
9c:0c:41:54:0e:13:cc:b0:10:fe:04:26:bc:58:22:
54:24:9c:5f:49:26:4a:18:d9:c9:ae:d4:17:e1:9c:
b9:8d:8c:58:51:4c:c0:00:cd:83:ee:d7:f1:ef:eb:
dc:0d:24:33:39:23:36:19:91:ac:83:a2:3e:fd:74:
4c:9a:8b:e0:0a:47:8f:2a:4a:98:af:61:ac:4f:5f:
8c:ba:6d:0f:0f:15:7a:33:9f:3c:c9:bd:eb:ee:16:
50:bc:c1:32:30:3e:c2:03:a9:cf:1d:16:0c:05:6f:
81:c9:e2:9a:0d:4c:d2:b5:26:fe:ff:05:bd:bf:72:
4a:b2:2f:7f:08:9f:5a:9d:aa:c7:e9:06:e9:44:19:
15:c4:aa:22:41:9f:8a:e6:a3:3b:26:61:af:f3:c8:
ce:8b:de:bb:7f:8a:fb:dc:01:82:10:1e:b1:ef:02:
e2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:78:3F:B6:BF:96:B7:CB:42:35:ED:0F:FA:DD:AA:CF:0B:E3:7E:63
X509v3 Authority Key Identifier:
keyid:22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:13:18:e9:1f:9c:10:6c:e7:d2:0d:4d:c7:5d:fa:e9:d2:c2:
b9:cc:ac:98:9f:a6:ca:4b:75:8b:9f:e4:cb:c1:f6:a5:58:7b:
5a:e5:7c:d5:5a:0d:b0:63:75:37:1e:98:5c:86:59:62:f0:dc:
6f:2b:09:ef:ac:4b:fb:8e:99:ed:ea:27:2e:f5:1d:d9:db:c4:
6f:dc:45:b7:b7:e0:a0:d3:35:04:40:6a:12:a8:e1:17:57:3c:
f6:1f:c7:ac:12:8a:71:bc:09:01:4e:48:40:38:8f:9f:37:4d:
43:67:60:8f:aa:70:53:b5:8d:0c:d1:0e:58:61:30:3d:65:3d:
26:ca:b5:58:9b:c8:49:91:49:b3:37:e4:07:68:da:60:92:8f:
d1:23:e3:4a:2c:e6:82:eb:1c:58:c8:b2:83:4d:94:be:a6:3a:
8e:9c:3b:c2:ca:e6:49:fa:ef:5d:f6:80:87:43:ca:64:93:83:
ab:83:03:08:5e:ad:06:f6:bc:61:b5:21:6c:2e:92:cc:4a:2f:
7d:66:87:eb:20:8f:09:c9:bc:17:bb:d5:ca:98:1b:97:c6:6d:
8a:92:59:f3:d8:31:8c:7f:30:35:80:48:38:c6:c5:72:9e:ff:
10:c5:25:b5:29:9d:5a:7d:e2:a2:69:03:8e:df:7f:30:a7:92:
df:61:d4:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:50:01 2025 by rpki-client