Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/b729cc-754e-4aea-85f2-0ac2cd3fe008/1/9rG5O-fUO4bWT4tLljvJFWJfI_I.mft
File: 9rG5O-fUO4bWT4tLljvJFWJfI_I.mft (raw, json)
Hash identifier: u9Ksk8Tpwfzg8WWLwjlEfmK4qmIOQ2rCuYsIDLjgP8E=
Subject key identifier: 91:66:1D:AC:DE:9D:12:25:9B:F1:67:3A:A6:7B:80:F7:AB:34:42:24
Authority key identifier: F6:B1:B9:3B:E7:D4:3B:86:D6:4F:8B:4B:96:3B:C9:15:62:5F:23:F2
Certificate issuer: /CN=f6b1b93be7d43b86d64f8b4b963bc915625f23f2
Certificate serial: 0198D660C864FF0B466C48A84D1E942D7E21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9rG5O-fUO4bWT4tLljvJFWJfI_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/b729cc-754e-4aea-85f2-0ac2cd3fe008/1/9rG5O-fUO4bWT4tLljvJFWJfI_I.mft
Manifest number: 02DB
Signing time: Sat 23 Aug 2025 10:02:03 +0000
Manifest this update: Sat 23 Aug 2025 10:02:03 +0000
Manifest next update: Sun 24 Aug 2025 10:02:03 +0000
Files and hashes: 1: 9rG5O-fUO4bWT4tLljvJFWJfI_I.crl (hash: 2nNskkVVae0bjWvgdlRecU4x9opZdTvMfVZyQ8tJcAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/b729cc-754e-4aea-85f2-0ac2cd3fe008/1/9rG5O-fUO4bWT4tLljvJFWJfI_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/b729cc-754e-4aea-85f2-0ac2cd3fe008/1/9rG5O-fUO4bWT4tLljvJFWJfI_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9rG5O-fUO4bWT4tLljvJFWJfI_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:c8:64:ff:0b:46:6c:48:a8:4d:1e:94:2d:7e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6b1b93be7d43b86d64f8b4b963bc915625f23f2
Validity
Not Before: Aug 23 10:02:03 2025 GMT
Not After : Aug 24 10:02:03 2025 GMT
Subject: CN=91661dacde9d12259bf1673aa67b80f7ab344224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1f:b7:4b:f7:9a:42:a7:1b:18:be:5a:a1:75:
e7:c1:02:da:69:c5:75:4c:a0:2a:b0:5d:3a:57:a8:
b1:b3:b4:63:eb:49:ef:0e:a9:62:5d:e0:6c:7d:1a:
f8:57:8e:ff:28:6b:59:d3:e7:e4:c1:0d:de:4d:df:
51:f6:9d:79:fd:ee:a7:12:ac:ad:1f:50:79:1a:3b:
09:66:24:0b:8f:af:fa:1e:d4:bc:93:a5:75:26:34:
97:9a:72:9f:02:95:00:1d:12:4b:d0:a2:62:be:64:
fa:cc:87:93:20:e6:e6:e4:9a:ee:b9:0e:58:bd:f2:
9a:e7:dd:af:7b:d1:58:da:07:21:0e:21:10:20:42:
23:be:ba:b5:b8:a7:07:2f:9d:4a:00:7a:31:a9:c9:
7a:7b:67:80:51:a3:96:a7:18:ea:ee:a6:38:64:61:
c6:87:e2:40:37:04:3c:e4:67:32:76:e4:9c:ed:29:
67:18:13:4f:99:0b:2d:f5:9e:e6:4d:4c:5e:f4:1b:
de:a9:62:76:bd:73:1c:ba:c4:6c:85:2f:65:7b:92:
3b:fb:2f:ac:5c:62:0c:cf:9d:30:86:f0:1f:fa:71:
93:f5:0f:b1:5c:d0:bd:10:27:c8:b9:66:8d:0b:5d:
8c:89:c4:28:5c:9a:73:4c:78:77:b8:2f:69:62:42:
3d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:66:1D:AC:DE:9D:12:25:9B:F1:67:3A:A6:7B:80:F7:AB:34:42:24
X509v3 Authority Key Identifier:
keyid:F6:B1:B9:3B:E7:D4:3B:86:D6:4F:8B:4B:96:3B:C9:15:62:5F:23:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9rG5O-fUO4bWT4tLljvJFWJfI_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/b729cc-754e-4aea-85f2-0ac2cd3fe008/1/9rG5O-fUO4bWT4tLljvJFWJfI_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/b729cc-754e-4aea-85f2-0ac2cd3fe008/1/9rG5O-fUO4bWT4tLljvJFWJfI_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:19:53:b8:eb:84:cb:6f:ca:5a:60:93:a5:bc:c4:60:ef:87:
df:96:23:c4:6a:94:b3:c8:59:f5:75:b6:f2:46:92:4c:2c:b5:
8e:b1:0c:93:10:c1:7f:3b:5d:8f:9d:87:93:f2:19:2a:11:b7:
a7:9e:cc:8d:a2:5d:63:99:08:01:36:68:0d:8f:7f:2b:25:ef:
29:77:af:4c:98:cf:e8:fd:ed:83:9b:8a:15:0d:31:06:44:bf:
f8:f8:46:f9:0e:b3:96:ea:a3:84:76:7f:18:b0:90:46:44:db:
c7:90:13:b7:b6:0f:0b:97:1a:b7:d2:5e:27:5e:ad:34:72:1e:
2d:18:d1:95:ee:19:40:b1:1a:b7:09:5a:66:42:d2:80:92:1c:
61:5d:9f:e6:b5:17:ca:67:b4:14:df:0e:3c:95:43:ce:6d:6c:
25:19:4b:b4:15:06:9d:35:7d:80:9a:5a:3a:7b:a4:af:72:06:
ad:bc:d8:4b:b6:cb:4b:f6:ae:c7:b3:a7:03:55:97:48:ac:dc:
d9:e6:47:d4:e4:7d:c4:c7:bd:0d:43:10:c3:ae:8c:6e:8a:d0:
e1:b2:c3:83:cf:7e:72:03:24:9a:5a:ad:4f:cf:8a:42:e2:e2:
13:63:c1:13:90:7d:a7:b4:1a:b2:07:4d:75:da:f6:79:15:6c:
d2:ca:fb:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:30:17 2025 by rpki-client