
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
File: cfxj7vZnTya1A6gwpd-pU9L_qr4.mft (raw, json)
Hash identifier: jnl7j3Cy0d2wxjp87CEtf6Gvfl05eGgZcw40tY2n37U=
Subject key identifier: D8:B1:1E:3B:2B:55:C2:A4:63:9D:26:0D:1E:FE:8B:C8:42:4F:36:89
Authority key identifier: 71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE
Certificate issuer: /CN=71fc63eef6674f26b503a830a5dfa953d2ffaabe
Certificate serial: 0198D69821A13401AC4E43CB545AF3303200
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
Manifest number: 14B2
Signing time: Sat 23 Aug 2025 11:02:30 +0000
Manifest this update: Sat 23 Aug 2025 11:02:30 +0000
Manifest next update: Sun 24 Aug 2025 11:02:30 +0000
Files and hashes: 1: cfxj7vZnTya1A6gwpd-pU9L_qr4.crl (hash: nl3SIv08ZVBB39QpIRqG132y9/r/vB75YcEY8IXzwYg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:21:a1:34:01:ac:4e:43:cb:54:5a:f3:30:32:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71fc63eef6674f26b503a830a5dfa953d2ffaabe
Validity
Not Before: Aug 23 11:02:30 2025 GMT
Not After : Aug 24 11:02:30 2025 GMT
Subject: CN=d8b11e3b2b55c2a4639d260d1efe8bc8424f3689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c0:c7:40:97:d4:71:36:d1:5f:fa:2a:a8:3f:
37:9b:a2:b2:ea:98:67:4a:e1:5f:82:cc:a5:e4:1f:
5f:b3:49:65:19:b1:fc:f7:9f:fb:ba:ff:4b:bc:85:
92:66:be:9e:09:7d:41:f1:05:7b:07:d1:e8:8e:31:
68:a3:64:d7:6a:17:a4:21:82:f2:39:8e:a9:28:58:
4a:3c:b4:bb:25:d0:b9:52:69:fa:8b:e0:ae:4e:43:
dd:f3:04:ff:ca:35:89:56:dc:4d:20:cc:b8:0b:e3:
6a:61:8b:9a:64:27:2c:62:48:c6:88:e5:49:42:c2:
ae:45:ea:36:7c:6b:63:8b:bd:fe:74:72:b7:64:34:
08:37:a9:c6:83:80:50:db:88:07:ef:31:41:5a:39:
72:0d:9c:90:8e:23:44:24:7d:45:0a:22:de:ca:d7:
23:c8:ea:e7:71:28:a1:60:d8:d0:bd:46:af:b1:eb:
f8:fb:6d:25:28:81:ab:a1:00:af:94:a4:32:8c:99:
1c:8e:eb:e7:26:20:05:74:1a:22:06:88:52:fd:41:
3d:ab:39:88:18:7a:9b:cc:80:04:ae:82:bd:c7:5d:
f2:a9:74:fc:e1:2c:bb:94:ad:25:9c:38:27:69:8d:
50:e5:bd:4d:89:2b:52:b3:db:aa:04:46:98:68:2e:
c1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:B1:1E:3B:2B:55:C2:A4:63:9D:26:0D:1E:FE:8B:C8:42:4F:36:89
X509v3 Authority Key Identifier:
keyid:71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:d1:f4:39:07:87:8c:4e:06:ff:e7:c7:0f:77:ff:3a:1a:fc:
81:52:ec:9c:23:02:50:0b:6f:06:15:2a:4b:7e:67:37:04:b6:
09:a5:3f:be:0a:0b:98:07:ab:ce:a0:c9:2d:4c:38:f8:55:dc:
e0:e4:8d:d6:ad:38:b7:c7:81:ba:c4:74:5a:8f:1a:2f:a4:d1:
63:e9:84:99:c2:9f:66:52:15:e3:ce:ff:cd:21:d4:88:b8:dd:
0d:71:da:c6:e0:47:dd:6a:c6:c9:19:a1:15:34:66:8f:47:85:
98:ac:5b:5b:09:5f:42:f9:f0:7f:ba:00:ac:ac:5d:2a:58:cf:
f2:9d:00:73:5c:2b:76:d0:8e:d2:ed:2d:e4:6f:6f:a4:2b:d9:
60:b0:40:d8:82:a8:63:3e:ed:b4:b6:0f:8c:2c:7b:05:3c:fc:
48:3c:84:69:83:a9:1f:a1:04:77:5a:1e:8f:87:d2:ea:60:65:
b1:1d:e6:01:1c:52:a2:8c:76:6f:6f:b2:2f:19:a2:d9:a6:4b:
e9:01:f1:8b:dd:d3:43:48:28:f9:40:42:07:d2:36:0d:e4:86:
8d:bc:42:cc:41:f1:15:b9:56:6f:4d:9b:e4:80:fc:cb:48:26:
d8:9e:f7:fa:20:75:54:31:79:53:56:3a:73:10:7a:6a:e9:f3:
23:c6:a4:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:03:28 2025 by rpki-client