Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
File: IPdQab1W78UXA4PtMcrSJGT98DA.mft (raw, json)
Hash identifier: 8GihEncD6T2tiKfZGbms0QUzQl4701VYss/WR7BWpSI=
Subject key identifier: 33:65:E1:7F:54:63:32:D4:1D:B6:EB:EB:F1:EF:87:A1:B9:86:1A:01
Authority key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
Certificate issuer: /CN=20f75069bd56efc5170383ed31cad22464fdf030
Certificate serial: 0198D70588B2C5A215E3A2645698BD4E4F53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
Manifest number: 03F9
Signing time: Sat 23 Aug 2025 13:02:00 +0000
Manifest this update: Sat 23 Aug 2025 13:02:00 +0000
Manifest next update: Sun 24 Aug 2025 13:02:00 +0000
Files and hashes: 1: IPdQab1W78UXA4PtMcrSJGT98DA.crl (hash: oXL2ypzPxX3HKTpVQsm76sgfgQsLjJgwSGdneW7ndD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:88:b2:c5:a2:15:e3:a2:64:56:98:bd:4e:4f:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f75069bd56efc5170383ed31cad22464fdf030
Validity
Not Before: Aug 23 13:02:00 2025 GMT
Not After : Aug 24 13:02:00 2025 GMT
Subject: CN=3365e17f546332d41db6ebebf1ef87a1b9861a01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e0:6c:93:7f:df:75:6c:30:42:94:c1:fc:ed:
9c:fd:25:2f:20:83:54:6d:c5:85:08:86:81:1b:1f:
fc:4a:45:62:c6:17:b6:57:9c:1d:3b:18:55:84:36:
01:f9:86:54:77:d4:d7:f6:7c:fa:37:73:e7:b3:fd:
af:8c:28:68:f4:70:34:51:d3:cc:2c:ae:a2:f2:9f:
e6:0f:8d:82:27:b4:e5:88:1e:c0:9d:14:1b:7a:14:
1e:c9:14:e0:65:7a:6d:a4:01:40:bd:3a:aa:f6:14:
c8:8d:f8:6a:92:ca:98:aa:2e:fe:8f:72:1e:c6:08:
e6:71:3d:a9:74:5b:94:3f:b4:b6:a7:15:3c:18:25:
61:71:97:4f:0c:12:e3:95:d9:bc:73:11:9d:68:96:
3d:b3:a9:f6:5e:96:6a:06:b1:46:4b:7f:7c:af:e4:
3e:fe:e3:f0:a0:1a:e8:9c:27:13:93:80:16:6d:49:
18:1f:2e:df:f8:bd:c8:99:6d:93:eb:56:eb:4a:34:
66:81:ef:94:34:10:0c:88:49:d8:1a:24:00:48:a7:
f1:ec:fa:26:7e:23:97:f0:ec:11:8b:5e:89:5c:0d:
46:ae:80:59:35:e8:bc:5f:d1:66:a1:a2:b8:8c:03:
e3:0a:ec:26:af:81:ac:a4:16:72:4d:d9:6d:24:81:
fc:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:65:E1:7F:54:63:32:D4:1D:B6:EB:EB:F1:EF:87:A1:B9:86:1A:01
X509v3 Authority Key Identifier:
keyid:20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:8e:ba:a5:77:c5:48:35:f8:b2:4f:d3:67:19:47:fd:6d:ca:
92:b2:2c:fd:8f:4a:1e:fe:d2:81:d6:f6:92:67:6b:00:9f:f3:
0c:e7:c7:c3:82:66:6b:15:f2:43:0f:da:59:fc:6b:67:f5:bc:
53:a3:0a:51:83:ae:fd:69:fd:f0:94:8c:c1:5c:9a:5b:db:48:
7f:dd:47:7d:c1:63:a4:e2:bd:68:34:ac:d6:d5:ac:0a:fc:c5:
59:1d:75:66:ac:81:7b:ba:50:f1:1f:81:7e:ba:b2:6f:20:20:
48:81:2d:bf:e6:db:0c:8e:a6:e2:1d:3e:b1:ed:61:fb:c1:cb:
4b:fa:cc:52:37:cd:37:6b:f7:9e:27:2a:06:25:55:46:00:15:
0c:3a:be:52:09:6b:5f:e2:fd:ae:99:a6:e3:f6:07:9f:e2:ce:
c3:a7:12:08:96:ff:fb:39:69:dc:b5:dc:a4:1f:0e:8d:f8:2f:
17:08:e0:e8:d1:97:d5:5d:f3:22:41:f9:39:21:b8:6e:d5:7a:
d8:be:e2:d7:5b:de:09:54:4d:e8:5c:41:e2:ff:3f:ed:8e:ab:
f1:16:a0:5d:0a:7c:31:9d:bb:f9:b9:bc:db:3e:f4:73:83:e7:
82:bb:f4:41:8b:05:ed:b9:d4:27:5c:ea:60:1c:27:a6:70:5a:
83:ab:34:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:11:59 2025 by rpki-client