Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
File: cRc4aXP7-IqGfIKohnsFD8pgsBE.mft (raw, json)
Hash identifier: wYv4aGkgZWfeSxvnjZ9eDHikVR2VeC4ewBLlgWDytxk=
Subject key identifier: AD:EF:60:1A:42:1F:B6:A3:69:45:2B:44:E1:81:A3:2D:EA:54:AD:38
Authority key identifier: 71:17:38:69:73:FB:F8:8A:86:7C:82:A8:86:7B:05:0F:CA:60:B0:11
Certificate issuer: /CN=7117386973fbf88a867c82a8867b050fca60b011
Certificate serial: 0198D473CD65CB8A959E9052269CD8A174ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 01:03:35 +0000
Manifest this update: Sat 23 Aug 2025 01:03:35 +0000
Manifest next update: Sun 24 Aug 2025 01:03:35 +0000
Files and hashes: 1: __J8knmzK0D7LeHPBcfH9mDXmDA.roa (hash: KGCws32qTez6CiaSk45QNDqYkcqePM9SEByg+MzKHwo=)
2: cRc4aXP7-IqGfIKohnsFD8pgsBE.crl (hash: cFqT9cbKhFdkKllJLpnPTBD2ILuYJMY5yT0sd26IM7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:cd:65:cb:8a:95:9e:90:52:26:9c:d8:a1:74:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7117386973fbf88a867c82a8867b050fca60b011
Validity
Not Before: Aug 23 01:03:35 2025 GMT
Not After : Aug 24 01:03:35 2025 GMT
Subject: CN=adef601a421fb6a369452b44e181a32dea54ad38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:30:d1:45:7e:77:18:8c:90:26:3e:e3:52:e9:
10:0b:2b:96:72:54:11:85:e5:c3:91:3e:3e:e7:0a:
a5:20:24:e8:cb:2c:99:60:1c:a4:33:f0:7d:2e:3d:
9e:66:ab:9e:70:b7:3e:67:59:c7:45:29:ec:a0:a3:
6f:9f:11:6b:30:87:9a:54:58:b5:08:2a:45:82:c7:
af:e7:b5:88:32:a3:eb:c9:33:07:7f:16:d9:1f:ba:
84:f1:76:aa:bc:42:5d:ca:3e:2a:52:fc:d8:90:fe:
67:ee:4e:c0:2b:03:16:9f:ba:dd:74:4f:2a:5f:09:
06:6e:58:11:9d:14:9a:0a:27:1f:f7:0b:b8:08:c5:
c5:b7:6c:24:fd:fc:55:fa:9b:a5:8a:d2:7c:6f:46:
12:c1:e7:92:f2:7b:0a:b1:29:40:3d:fa:ad:10:8b:
0c:a8:ab:33:35:7e:af:c9:e2:cb:59:43:e2:c9:fd:
09:ed:a3:ec:ec:40:42:85:47:f1:7e:d7:11:5c:06:
1e:27:e6:7d:52:c2:46:b9:b6:3e:40:f3:a3:0f:f5:
44:53:3c:ca:4f:6d:9f:38:bb:b2:0e:e0:98:6e:0c:
4d:aa:b4:d1:f3:3a:d9:14:19:ee:c7:8a:3f:98:36:
2d:06:90:67:b7:42:8c:2a:6c:b6:5f:0e:b7:8f:28:
ca:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:EF:60:1A:42:1F:B6:A3:69:45:2B:44:E1:81:A3:2D:EA:54:AD:38
X509v3 Authority Key Identifier:
keyid:71:17:38:69:73:FB:F8:8A:86:7C:82:A8:86:7B:05:0F:CA:60:B0:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:7f:0f:df:93:36:fd:82:3b:47:90:aa:87:f5:88:6f:b2:81:
3d:b0:80:b4:54:00:07:f8:0f:a8:69:7a:16:aa:fc:87:28:d0:
a0:93:a5:fc:1d:82:5b:31:df:eb:f8:db:a9:2b:c4:be:eb:0d:
a5:3c:2c:d4:d5:9f:a2:b7:41:4d:54:7e:f6:69:46:a4:d2:36:
99:f0:07:f9:e0:cd:3e:84:51:72:e4:3a:44:8d:0e:71:8f:fa:
53:3e:67:a0:95:1b:21:ed:35:d7:1d:9d:6f:a8:83:21:1e:73:
98:a2:7d:9b:c3:02:84:3d:93:2b:b4:70:a7:e9:60:6f:fb:6d:
13:48:48:a5:19:58:5b:e5:df:86:cf:07:8d:55:43:ff:a2:f6:
68:e2:26:c4:39:13:e3:c2:b1:23:8b:2a:1e:d8:48:af:d4:a2:
33:44:eb:f8:71:c3:7e:25:47:fc:d2:1c:95:55:5a:3c:5b:83:
b7:b5:71:94:b6:32:ca:1b:ee:f9:8d:c8:3e:bb:40:9c:3b:bf:
4e:98:dd:20:c6:4f:8a:7c:60:7c:50:f2:77:c3:d7:3f:46:fb:
bb:12:36:9e:d3:fe:e4:15:e4:9c:db:c5:6a:21:4f:73:4b:d1:
bf:50:f8:e7:6a:bc:7b:9a:93:bb:d0:f8:bc:04:21:e4:89:f7:
fc:fc:66:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:55 2025 by rpki-client