Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File: iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier: VwfkXwzDs2gQcDX+K5AzKIp//43jceNLSxlL2DcWZsc=
Subject key identifier: 32:22:DB:BD:C8:60:BC:1F:29:82:E1:5F:5B:13:FF:CF:9B:89:7E:73
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer: /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial: 0198D5F19EB8C684FB188064B46C13AC4585
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number: 050B
Signing time: Sat 23 Aug 2025 08:00:38 +0000
Manifest this update: Sat 23 Aug 2025 08:00:38 +0000
Manifest next update: Sun 24 Aug 2025 08:00:38 +0000
Files and hashes: 1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: TTHaJBWvrzDR4w4dZwroIcnHiXHu5wu8uN8lEapSq3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:9e:b8:c6:84:fb:18:80:64:b4:6c:13:ac:45:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Validity
Not Before: Aug 23 08:00:38 2025 GMT
Not After : Aug 24 08:00:38 2025 GMT
Subject: CN=3222dbbdc860bc1f2982e15f5b13ffcf9b897e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5b:de:bc:1c:03:c3:84:44:55:9a:71:67:de:
06:f4:ea:5d:13:f8:a6:05:1f:d8:5b:35:05:38:ec:
8c:a5:33:03:29:b9:bf:cc:8f:cf:a1:93:b2:2c:e0:
69:eb:1f:c2:60:7c:f7:0d:7f:09:20:8d:4f:ba:9b:
53:49:0e:ee:32:a5:5c:4d:89:e5:b8:54:2b:f7:f3:
c3:d0:81:a9:b6:0b:e7:13:dd:1f:05:d2:16:a7:4e:
eb:2d:f1:79:1c:d0:8e:5e:e8:5f:e1:3b:fe:b8:00:
1f:8b:f2:d0:75:17:6a:b2:bb:6a:9b:ba:ad:cb:3b:
b7:1f:1f:a6:6b:9a:9f:a9:3c:6e:82:2e:74:1f:35:
ed:ee:68:f7:20:30:a5:03:bd:3e:8b:2f:b6:32:e6:
dd:ac:11:d0:bf:94:90:37:b1:54:a5:07:ff:ad:0c:
db:db:8d:01:bc:26:81:7e:3d:86:c9:5a:17:99:14:
7c:b4:d3:06:7a:40:9f:a5:35:7e:92:4d:83:3c:9e:
31:3d:63:c3:85:4b:49:f2:5f:28:83:5f:b5:6d:63:
e3:20:28:d9:5e:f1:bf:9d:b4:44:a5:90:91:c5:e6:
6a:f9:57:cc:bc:9f:9e:8f:2c:d7:b4:b4:ce:18:c6:
44:ba:f2:83:69:f7:7d:08:53:66:45:48:99:84:8a:
2a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:22:DB:BD:C8:60:BC:1F:29:82:E1:5F:5B:13:FF:CF:9B:89:7E:73
X509v3 Authority Key Identifier:
keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:fc:b5:7e:72:11:ae:e4:b0:50:66:23:30:fe:05:3e:b7:31:
79:08:89:d5:31:5d:2d:9c:09:e5:a6:2d:05:e6:1f:d5:07:b7:
eb:c6:68:69:eb:c9:ec:5a:43:50:fa:7e:09:38:95:e5:c9:42:
22:86:f4:b5:74:ee:76:a5:cc:2f:5a:8a:db:18:6e:7a:fa:8e:
98:bd:dd:ca:93:bd:72:42:3d:4f:26:ef:ef:8e:80:e6:df:bb:
84:d3:86:40:78:4b:94:5e:a6:e6:4c:10:bd:1d:3e:8d:bb:33:
ba:27:74:76:84:66:2b:53:de:0e:2c:d1:49:3b:ee:8b:59:07:
46:d0:33:da:bd:cf:42:ba:aa:20:95:c7:5d:15:b6:c9:f5:ca:
39:11:9b:89:8a:87:fe:bf:04:e3:79:b4:e9:22:88:a7:81:ef:
ba:bb:bb:e9:94:d4:37:f6:a3:78:23:ce:f8:0d:19:e4:86:58:
c9:57:26:c6:7b:b1:2f:ac:85:bd:6c:93:40:ed:f4:b9:46:6f:
94:ba:e1:0c:f4:aa:d6:df:c9:25:8e:dd:1b:4c:c7:5f:35:f0:
9a:18:3a:f2:cb:11:45:d5:24:ea:c5:17:cb:c5:ab:ed:18:96:
04:3a:2f:cc:b7:2e:f2:69:8f:01:43:91:96:03:fd:d9:08:b5:
d0:1e:68:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:27:20 2025 by rpki-client