Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
File: id8L4W7M0-twbmQXlLyQ1PfWeMk.mft (raw, json)
Hash identifier: in1ga37BYARzuh8Ho3t0QTRTBwGBTEMtrRxf0Z8Goj4=
Subject key identifier: 90:83:BD:9B:67:03:32:C6:5D:B0:A2:FE:2E:7A:C7:8F:A0:22:05:D0
Authority key identifier: 89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
Certificate issuer: /CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Certificate serial: 0198D54E3BCF52F9A0AE87C437D309A57743
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 05:02:10 +0000
Manifest this update: Sat 23 Aug 2025 05:02:10 +0000
Manifest next update: Sun 24 Aug 2025 05:02:10 +0000
Files and hashes: 1: id8L4W7M0-twbmQXlLyQ1PfWeMk.crl (hash: /ztDnuo6EtpCJNjfGoXMrb387eORgHfrh3zxVQDgZW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:3b:cf:52:f9:a0:ae:87:c4:37:d3:09:a5:77:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Validity
Not Before: Aug 23 05:02:10 2025 GMT
Not After : Aug 24 05:02:10 2025 GMT
Subject: CN=9083bd9b670332c65db0a2fe2e7ac78fa02205d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0c:2a:d6:f9:da:fa:0a:5b:b8:1f:76:a8:ce:
93:ba:35:a5:62:9d:70:bf:5c:52:01:41:7f:a0:30:
15:5e:be:76:02:27:a9:7a:6d:9b:07:66:b7:b4:89:
0b:e3:97:4f:8d:e8:33:db:18:3f:a1:f8:be:ae:16:
9b:36:21:ea:68:c2:e2:a4:0b:4c:e4:ce:7d:b2:0f:
cd:5b:82:74:82:ee:13:dd:c4:6e:f3:e5:72:8b:48:
2b:05:56:59:64:ae:d9:78:3f:63:c7:83:92:77:8f:
0b:4d:7c:11:06:00:a3:52:13:c2:10:27:d6:6b:6a:
35:db:bf:cc:14:a6:e6:43:20:ce:0f:fa:68:73:9c:
60:bf:20:9c:d9:38:7f:c4:a3:27:4d:9d:3f:5e:97:
fc:19:c5:5b:ea:c2:dd:a6:37:7d:e2:02:a3:25:e0:
88:6f:0d:f9:3c:1d:c6:ff:5d:a6:22:4f:34:62:ee:
88:cd:07:88:7a:a6:0c:e0:e8:06:3f:eb:75:d8:ec:
19:24:88:8a:c2:6f:ec:9d:dd:0a:f8:31:5b:fe:ba:
21:2e:4c:6b:83:19:a8:b7:a9:9b:0d:9a:42:3c:5f:
1d:66:a7:14:ae:1b:7c:59:31:ae:56:83:df:fd:86:
91:d8:a8:a1:65:b0:18:f7:d8:68:38:d6:76:29:6f:
d1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:83:BD:9B:67:03:32:C6:5D:B0:A2:FE:2E:7A:C7:8F:A0:22:05:D0
X509v3 Authority Key Identifier:
keyid:89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:e9:5e:99:26:05:bf:2f:4c:c6:9a:fb:1d:fb:77:67:76:0f:
3f:d3:8d:47:83:64:54:17:6a:51:0b:12:8f:d1:ab:7f:98:cb:
9a:b7:e3:67:0d:18:cf:42:5a:c0:be:77:5b:ce:fb:66:4f:77:
3e:34:09:24:eb:ae:c5:db:37:50:f3:c0:ce:3a:f9:80:fa:65:
ab:4b:b7:79:cf:4f:c3:0c:7e:9f:d0:82:31:31:57:10:0e:11:
61:22:d4:92:9e:8e:f7:87:a0:1b:41:44:e8:6d:94:a4:9e:e0:
29:63:89:ab:e1:11:8c:68:57:c5:23:39:3e:74:ee:a8:75:90:
b7:13:63:6d:99:58:86:d2:54:33:f5:2f:ec:fc:91:2c:ce:5a:
54:07:5c:d3:89:57:d9:e3:db:e1:3e:a9:f0:d7:ef:39:c6:2b:
52:3a:9e:c8:55:7c:54:60:0e:3c:7e:0b:be:28:27:cc:5e:40:
b3:79:5c:65:cb:fe:c5:49:87:6f:13:65:5d:e0:68:97:45:ae:
db:4b:32:65:99:52:0b:bf:10:a5:a9:4d:d0:66:c4:51:d3:7f:
d5:46:a5:b0:6e:e5:ef:f4:95:dc:55:b4:4d:ca:62:6b:7a:76:
d6:36:49:02:35:5a:ad:96:62:92:2e:6f:45:d4:ab:9d:8c:a0:
93:fc:d2:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:32 2025 by rpki-client