Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/63ecd9-3d18-4810-9db4-d36c16279552/1/iRXDvI1ZBfJPvjBRvOcgCSE4MAk.mft
File: iRXDvI1ZBfJPvjBRvOcgCSE4MAk.mft (raw, json)
Hash identifier: t1XeY64aCj1G6y2HLeO7LS31OTU89AyOoV2TeGXVQ6I=
Subject key identifier: 68:6C:6C:20:73:31:37:24:5C:CA:86:D9:FD:64:8E:CD:66:81:B1:03
Authority key identifier: 89:15:C3:BC:8D:59:05:F2:4F:BE:30:51:BC:E7:20:09:21:38:30:09
Certificate issuer: /CN=8915c3bc8d5905f24fbe3051bce7200921383009
Certificate serial: 0198D5F12D2303994044CA6C9A304D8F396B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iRXDvI1ZBfJPvjBRvOcgCSE4MAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/63ecd9-3d18-4810-9db4-d36c16279552/1/iRXDvI1ZBfJPvjBRvOcgCSE4MAk.mft
Manifest number: 011B
Signing time: Sat 23 Aug 2025 08:00:09 +0000
Manifest this update: Sat 23 Aug 2025 08:00:09 +0000
Manifest next update: Sun 24 Aug 2025 08:00:09 +0000
Files and hashes: 1: iRXDvI1ZBfJPvjBRvOcgCSE4MAk.crl (hash: OZKECWpJWKQrE04IRVxLnnbFWy5/B1AyttgYX4i6z34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/63ecd9-3d18-4810-9db4-d36c16279552/1/iRXDvI1ZBfJPvjBRvOcgCSE4MAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/63ecd9-3d18-4810-9db4-d36c16279552/1/iRXDvI1ZBfJPvjBRvOcgCSE4MAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iRXDvI1ZBfJPvjBRvOcgCSE4MAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:2d:23:03:99:40:44:ca:6c:9a:30:4d:8f:39:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8915c3bc8d5905f24fbe3051bce7200921383009
Validity
Not Before: Aug 23 08:00:09 2025 GMT
Not After : Aug 24 08:00:09 2025 GMT
Subject: CN=686c6c20733137245cca86d9fd648ecd6681b103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fb:7c:45:2f:0f:ea:75:e9:b9:32:c6:c4:23:
23:76:b7:38:3a:82:c9:94:09:50:1c:d7:49:46:1d:
a4:be:61:43:d8:ff:bd:1c:82:5c:d2:31:c5:5d:7c:
7d:49:e6:0d:b9:a3:f2:ef:34:48:82:5f:08:91:26:
44:e1:84:90:20:f7:c3:48:a3:ef:bd:70:d2:f4:2b:
ae:cb:83:77:f8:2c:69:5a:05:c1:b8:6d:96:70:68:
65:52:e1:d6:e8:94:75:e4:64:e8:ad:18:c1:42:e2:
31:13:20:1e:9a:3a:31:e0:36:7b:5f:ca:82:e2:c4:
c0:32:1c:2f:a5:44:c9:52:ed:00:a8:71:43:da:fa:
73:57:f8:70:6b:b2:72:58:fa:bd:5d:0c:dc:0d:78:
ff:9a:70:c1:9e:94:b8:6f:bf:72:4d:01:1b:bd:a9:
59:88:3a:56:8a:c2:5e:66:f0:c7:83:04:1a:ab:84:
90:09:1c:e0:40:c6:00:eb:0c:c6:bf:52:32:fb:e4:
d0:e0:1e:25:a5:a2:d4:53:0d:61:b1:8c:7f:02:8b:
8a:d6:55:ae:82:8b:ba:95:83:cd:38:80:95:2b:7d:
fb:9a:58:63:d7:44:5d:c2:df:b0:89:2d:0c:ac:3a:
ba:c3:a6:9b:b6:db:03:3d:2d:55:57:99:8c:6f:43:
78:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6C:6C:20:73:31:37:24:5C:CA:86:D9:FD:64:8E:CD:66:81:B1:03
X509v3 Authority Key Identifier:
keyid:89:15:C3:BC:8D:59:05:F2:4F:BE:30:51:BC:E7:20:09:21:38:30:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iRXDvI1ZBfJPvjBRvOcgCSE4MAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/63ecd9-3d18-4810-9db4-d36c16279552/1/iRXDvI1ZBfJPvjBRvOcgCSE4MAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/63ecd9-3d18-4810-9db4-d36c16279552/1/iRXDvI1ZBfJPvjBRvOcgCSE4MAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:b6:33:76:f0:8f:cb:f9:f6:38:2b:92:e8:45:ff:7d:6b:47:
4b:5f:80:da:c7:af:68:35:14:b6:e2:0f:d3:78:08:08:7d:d5:
29:0f:cb:f8:a4:05:6c:34:21:08:ea:45:5c:1c:12:42:ed:07:
b7:a1:8c:32:6f:e9:ab:e9:7d:b2:e0:42:5b:5c:02:80:9d:41:
4e:c3:67:8a:a4:64:f2:b2:e0:3b:04:48:34:8d:6d:ab:a0:dc:
7a:e3:71:5f:52:79:f4:a5:95:f4:c3:06:0d:42:4d:95:87:98:
cb:b8:35:8f:b9:c5:2c:3c:60:c8:a2:3b:3d:b0:ac:c6:79:e6:
1a:ef:7c:70:ed:ba:ce:32:a0:13:e2:b3:fc:8e:86:6b:08:7a:
53:5e:57:32:a6:03:5f:14:f3:e5:cb:a5:4f:e0:2e:dc:2a:83:
fe:62:4a:a7:7f:f5:d4:ce:78:7c:c3:de:07:cc:86:f2:43:29:
ea:8d:ba:f8:3a:a7:3a:39:7f:7f:64:44:0e:8a:bf:6d:7f:bc:
24:1a:36:33:a0:9b:bd:9e:3e:11:1a:10:fd:05:26:e8:17:82:
42:4e:cd:8f:21:f2:a4:01:d0:4e:bf:8d:eb:08:e4:b8:17:ed:
c9:2d:ec:ba:ab:fb:b6:4a:c3:e0:5a:65:82:a5:2d:19:6f:ea:
f8:9e:7a:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:48 2025 by rpki-client