Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
File: ctdCYWpoBB9_D80HkvOOQQOnncI.mft (raw, json)
Hash identifier: LmzXzc4RLeUDR/g7GJ6/apdrZ6K3yaG88JsooKgOZ1c=
Subject key identifier: B1:FF:47:7B:67:7F:96:47:EC:FF:98:3F:98:B4:A9:41:33:CA:67:B3
Authority key identifier: 72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
Certificate issuer: /CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Certificate serial: 0198D4DFFC4993AB79449557025F959EC5D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
Manifest number: 031C
Signing time: Sat 23 Aug 2025 03:01:45 +0000
Manifest this update: Sat 23 Aug 2025 03:01:45 +0000
Manifest next update: Sun 24 Aug 2025 03:01:45 +0000
Files and hashes: 1: ctdCYWpoBB9_D80HkvOOQQOnncI.crl (hash: 1lcRM+LWett/QMm9TZtYMsJHd2byKafpmeoyX7aAp9I=)
2: zto4NeQB1_I3QORAJXQ-oNO5db0.roa (hash: 4X/MAtxcgqfp8hiwe6Iai+qfAWiiXuU0LC7+GPHFtZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:fc:49:93:ab:79:44:95:57:02:5f:95:9e:c5:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Validity
Not Before: Aug 23 03:01:45 2025 GMT
Not After : Aug 24 03:01:45 2025 GMT
Subject: CN=b1ff477b677f9647ecff983f98b4a94133ca67b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ad:79:ab:69:e6:0c:83:26:09:09:98:d9:a1:
c5:00:15:bf:62:b4:46:a9:74:6e:58:e7:c6:a7:7b:
69:0e:61:be:3c:e0:60:55:b3:2b:11:bd:11:30:a4:
83:1f:fc:97:63:11:49:6b:a7:55:24:50:b4:36:6c:
ee:29:b7:fa:db:0a:61:91:05:d3:b3:52:c6:e7:61:
2a:d8:4b:c5:8a:7b:05:ab:af:62:4f:fa:00:82:c7:
c0:49:d9:c6:dd:00:17:48:37:97:85:95:5e:79:f6:
60:b0:1b:3e:98:50:bf:61:bd:b2:87:fb:11:c7:9f:
20:c9:36:f1:7e:e3:2a:e4:b2:bf:7f:69:95:aa:5e:
46:57:ca:b2:0d:13:58:80:5a:1b:1f:99:d7:27:21:
59:ee:c7:84:f6:ea:10:76:3c:cb:ce:09:49:8b:22:
63:52:98:76:9c:07:13:70:bf:c8:ea:70:ec:41:b1:
5e:48:63:46:4f:28:21:b0:88:ed:16:16:4f:11:86:
67:40:a1:88:e2:80:dc:36:3b:2f:59:be:8b:7b:7a:
d3:fc:49:51:f3:dd:f4:b0:c5:97:5a:15:1f:36:78:
a0:8c:2c:50:fb:73:5a:d8:36:ff:8a:10:62:51:5c:
e7:e5:9e:eb:f2:78:aa:d7:19:bc:e7:78:7b:b4:07:
64:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:FF:47:7B:67:7F:96:47:EC:FF:98:3F:98:B4:A9:41:33:CA:67:B3
X509v3 Authority Key Identifier:
keyid:72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e0:34:5e:96:65:72:89:69:32:aa:62:fc:3a:22:1a:30:80:0a:
29:9e:1b:14:cd:14:17:40:30:28:2a:c5:56:6a:a7:05:3d:8e:
ba:13:b9:d2:34:e3:73:42:00:18:0f:b6:8f:e0:14:e1:e4:bc:
d6:a3:fc:b6:fe:f8:04:b0:c6:91:97:22:1c:38:d7:99:fa:c0:
ae:16:81:cc:5b:09:50:39:5c:2d:89:9b:3b:60:9e:08:ae:be:
a7:20:54:af:7e:27:75:ee:75:d3:fb:99:f2:a9:ab:37:5d:27:
37:64:dd:3d:b2:d2:9d:5d:d7:98:8f:fb:b1:f2:cc:86:ae:f8:
0f:3d:b7:01:0a:bc:f6:ca:29:78:d6:94:9f:85:dc:28:e6:05:
99:46:7d:90:c8:39:48:81:ca:87:9a:a7:48:e1:f6:9b:8f:63:
71:40:2c:7e:ae:22:26:60:c2:f8:a4:01:b0:bc:61:8d:8c:58:
ca:13:5d:56:47:e5:7c:2a:a1:4e:0f:87:9f:82:9b:ad:bf:98:
a5:e1:90:3e:23:e0:76:9d:b2:98:45:27:1b:70:7f:f8:7b:ae:
9a:c0:c4:bf:0f:f1:7f:73:8f:f1:bc:35:ba:2e:54:76:af:bd:
6d:54:bb:ec:17:ca:f3:97:0c:ea:d5:58:24:61:e6:f3:d3:d3:
04:b8:46:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:30:00 2025 by rpki-client