Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
File: 4CzXYQ92Hg7SUq57ufMPHisXtec.mft (raw, json)
Hash identifier: vF8X4ZzWiG6hPra7W5EMBDaPOYh3jmBD8aQRxYLRQYI=
Subject key identifier: EA:E9:8C:64:E6:94:9C:3C:1A:4F:C2:E9:48:96:37:E9:00:76:FF:D6
Authority key identifier: E0:2C:D7:61:0F:76:1E:0E:D2:52:AE:7B:B9:F3:0F:1E:2B:17:B5:E7
Certificate issuer: /CN=e02cd7610f761e0ed252ae7bb9f30f1e2b17b5e7
Certificate serial: 0198D6CDC37E33B3021063C52ECBE124291D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4CzXYQ92Hg7SUq57ufMPHisXtec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
Manifest number: 12DB
Signing time: Sat 23 Aug 2025 12:01:05 +0000
Manifest this update: Sat 23 Aug 2025 12:01:05 +0000
Manifest next update: Sun 24 Aug 2025 12:01:05 +0000
Files and hashes: 1: 4CzXYQ92Hg7SUq57ufMPHisXtec.crl (hash: 062jY4Rud3YFSex/CL4GBO+8cYYIQ9zHeuvT3GmGRLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
rsync://rpki.ripe.net/repository/DEFAULT/4CzXYQ92Hg7SUq57ufMPHisXtec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:c3:7e:33:b3:02:10:63:c5:2e:cb:e1:24:29:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e02cd7610f761e0ed252ae7bb9f30f1e2b17b5e7
Validity
Not Before: Aug 23 12:01:05 2025 GMT
Not After : Aug 24 12:01:05 2025 GMT
Subject: CN=eae98c64e6949c3c1a4fc2e9489637e90076ffd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1c:54:1b:25:32:2a:f2:44:4f:cf:b9:ae:74:
00:b6:18:c5:87:df:14:74:ec:79:04:4d:66:00:e7:
60:57:c7:fd:47:d1:fd:f0:d4:4e:73:cd:5f:b3:54:
bd:6f:74:f0:01:25:18:d0:45:4c:a5:4b:11:c3:9d:
eb:89:97:c8:2a:72:60:09:25:0a:ab:fc:c4:ea:0e:
e0:29:18:b3:33:1a:85:b1:92:ba:61:b3:05:7e:77:
e8:24:49:8e:5f:da:33:62:a6:b0:c7:2f:73:dc:21:
b4:07:9e:b2:e6:04:24:ed:ae:21:8f:03:c2:53:de:
51:07:72:3f:87:30:75:ab:6e:6a:6f:7b:be:20:39:
0b:c3:91:f0:b8:91:d6:e9:ea:08:84:dd:9f:9d:ac:
03:50:43:8e:67:f1:7a:96:9e:c2:6b:c0:88:62:8c:
78:d3:9d:90:64:82:d5:10:57:78:25:fc:a4:98:51:
6c:36:53:70:cc:92:d1:7f:ce:60:43:15:e5:9c:1d:
26:8a:48:69:7e:18:99:ab:b5:2f:49:ae:5a:22:c0:
6f:b7:9c:c8:9f:d0:ea:b9:57:b4:79:c5:b4:3a:1c:
29:85:3c:86:74:1f:83:0c:92:e8:f0:2f:f9:4d:7c:
cc:1f:92:5a:d3:24:44:f9:68:98:93:60:9d:ef:98:
92:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E9:8C:64:E6:94:9C:3C:1A:4F:C2:E9:48:96:37:E9:00:76:FF:D6
X509v3 Authority Key Identifier:
keyid:E0:2C:D7:61:0F:76:1E:0E:D2:52:AE:7B:B9:F3:0F:1E:2B:17:B5:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4CzXYQ92Hg7SUq57ufMPHisXtec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/bdbee9-5eee-4561-a523-9435159c93eb/1/4CzXYQ92Hg7SUq57ufMPHisXtec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:c4:ed:87:97:92:90:6e:c3:b8:6b:6c:9c:58:95:2f:7b:3f:
4d:cc:02:b7:05:7a:1d:cd:e4:78:3f:4b:00:04:01:8f:f5:03:
dc:13:b7:b6:94:b1:a0:b1:02:72:d7:bf:be:56:cb:55:fe:94:
bb:c2:d5:e4:6f:41:ef:04:47:ca:39:26:86:d1:69:a4:24:fd:
3c:8c:ae:41:6b:73:09:ff:55:48:85:14:73:e9:01:d6:d2:c4:
bd:2d:1e:13:a9:a9:23:5a:31:a4:76:37:6c:25:f1:1e:7b:c8:
12:fb:dd:b4:4b:50:37:19:6a:57:db:9a:c0:5b:bf:8f:f7:f1:
8f:65:cc:e0:e4:37:a8:da:cc:56:0b:3c:7f:45:46:78:ad:da:
9b:01:f5:0a:b9:34:01:2a:0d:29:e5:01:42:4b:5e:56:90:47:
2f:7e:4d:3c:70:96:d6:02:c1:c8:04:74:ec:ff:e2:57:28:c4:
b2:a3:05:51:9e:ee:f2:7e:2f:c3:07:6c:9e:d3:0b:87:5c:eb:
8d:7e:db:ef:3a:65:e3:f6:05:b6:ad:b3:9e:37:55:a5:da:5a:
62:4d:5b:58:06:8f:de:7a:9a:1c:63:eb:6a:26:8b:93:2a:2b:
88:e6:56:f6:a9:25:3c:cc:cc:54:d1:15:c0:6a:ff:06:c3:ba:
06:05:8b:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:23:46 2025 by rpki-client