Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
File: 13j4yccHK3MEiPnjISjdiVveMtM.mft (raw, json)
Hash identifier: vzJ2H8SRdnNCQUu9lNGr1iMW3A6jQtL7iDulgVUkgok=
Subject key identifier: F8:5F:F8:BB:A9:82:02:6F:CC:95:EF:1D:8D:54:01:6E:3B:E5:CA:64
Authority key identifier: D7:78:F8:C9:C7:07:2B:73:04:88:F9:E3:21:28:DD:89:5B:DE:32:D3
Certificate issuer: /CN=d778f8c9c7072b730488f9e32128dd895bde32d3
Certificate serial: 0198D5838A100DCC2239CB787B8FD2043E4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
Manifest number: 0663
Signing time: Sat 23 Aug 2025 06:00:24 +0000
Manifest this update: Sat 23 Aug 2025 06:00:24 +0000
Manifest next update: Sun 24 Aug 2025 06:00:24 +0000
Files and hashes: 1: 13j4yccHK3MEiPnjISjdiVveMtM.crl (hash: vt5leN47Pfxu4ylrLx9r/dGCS9T0145/ucSz8SyC1y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 06:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:8a:10:0d:cc:22:39:cb:78:7b:8f:d2:04:3e:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d778f8c9c7072b730488f9e32128dd895bde32d3
Validity
Not Before: Aug 23 06:00:24 2025 GMT
Not After : Aug 24 06:00:24 2025 GMT
Subject: CN=f85ff8bba982026fcc95ef1d8d54016e3be5ca64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:74:06:1e:fc:c8:fa:dc:89:76:13:e9:d4:bf:
76:7e:7f:c9:3e:17:63:73:37:2f:89:a8:64:3b:f0:
c0:2e:3c:b0:88:27:32:c3:b8:0d:e5:2b:3f:63:81:
db:7c:49:5c:a6:55:f0:5b:1a:7a:31:32:88:55:b4:
eb:9c:fd:cd:62:88:a2:9f:ce:40:08:40:43:12:cf:
55:9b:6a:4f:57:f5:f2:c1:9d:ba:3f:59:76:a5:d6:
d3:d9:83:00:55:13:df:20:b2:3a:3d:a9:cc:10:38:
d0:02:d9:91:05:5e:81:07:0b:69:39:70:d1:3b:6f:
41:6e:ce:6e:60:fb:49:78:c6:27:f8:37:86:bd:51:
77:73:71:7b:13:b5:36:51:96:83:9f:fd:46:88:6b:
48:3e:ca:59:17:2a:3e:39:51:f4:89:a7:12:ba:0c:
4d:90:e5:ba:82:4b:54:d5:3c:7f:b2:c6:c9:20:18:
77:9e:a2:e2:9e:66:7d:51:82:39:2f:db:7e:f7:1c:
99:e2:aa:51:93:f0:1e:7e:81:ea:7b:58:54:b0:76:
b0:5b:c3:ec:7b:c3:5f:5c:83:d0:b2:6e:43:ec:4c:
21:ce:26:10:22:32:78:c9:a1:c7:20:48:e6:c5:35:
19:d2:00:f0:9b:d4:37:52:88:1c:82:c2:a7:d9:17:
1d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:5F:F8:BB:A9:82:02:6F:CC:95:EF:1D:8D:54:01:6E:3B:E5:CA:64
X509v3 Authority Key Identifier:
keyid:D7:78:F8:C9:C7:07:2B:73:04:88:F9:E3:21:28:DD:89:5B:DE:32:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:6c:36:37:cd:7a:81:33:89:42:4e:31:94:1c:4d:c5:fa:63:
7f:36:da:38:44:56:9b:e4:7b:df:4f:e2:60:aa:4a:75:0e:1a:
89:eb:8b:80:12:b2:47:98:4f:e6:6a:22:bd:28:4d:45:42:67:
f1:87:d7:77:cb:9a:89:2a:1a:7d:50:ee:9f:7a:c7:a6:3b:49:
bb:6a:8a:c7:db:5e:db:dc:4a:73:c3:18:ac:b9:78:b2:4c:72:
44:c5:95:fa:70:88:f3:e3:51:0f:1d:44:b7:d4:19:71:30:45:
14:aa:81:4b:7c:57:5c:73:35:63:fd:d7:cb:92:ae:28:e8:fa:
a4:89:4d:d2:73:bf:6a:a8:2c:50:39:1f:f0:cb:cf:d3:f1:24:
f9:50:36:59:04:be:1d:34:0b:77:ea:42:ae:d2:9e:54:09:a8:
3b:34:49:6c:52:de:78:ad:4a:b5:01:04:36:1a:5e:0a:4d:20:
4e:a4:8f:67:a1:c6:50:2a:5d:a2:02:00:9e:7b:e8:37:b0:44:
90:60:44:c6:3b:b7:8a:3c:22:33:80:69:ac:ff:db:95:58:30:
d3:b2:b0:b2:b1:79:43:29:a8:76:e5:e5:0a:ec:8e:ad:f1:62:
2d:a9:45:74:7e:3b:20:c7:0f:50:b5:ba:71:ad:a6:0d:58:44:
da:0a:67:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:12:08 2025 by rpki-client