Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft
File: 7fBEw2PXiOdDNOE24DzH_R5JohY.mft (raw, json)
Hash identifier: Niwv1BTr6pZe6z/RXV/pGBrSbpDz71sp8LdmX2MgC5A=
Subject key identifier: A0:24:13:08:E1:B1:A1:64:77:2E:54:40:9D:95:D2:6A:3B:D7:C3:26
Authority key identifier: ED:F0:44:C3:63:D7:88:E7:43:34:E1:36:E0:3C:C7:FD:1E:49:A2:16
Certificate issuer: /CN=edf044c363d788e74334e136e03cc7fd1e49a216
Certificate serial: 0198D6603909AFC14CCC87181B606A60699D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft
Manifest number: 08C0
Signing time: Sat 23 Aug 2025 10:01:26 +0000
Manifest this update: Sat 23 Aug 2025 10:01:26 +0000
Manifest next update: Sun 24 Aug 2025 10:01:26 +0000
Files and hashes: 1: 7fBEw2PXiOdDNOE24DzH_R5JohY.crl (hash: z3CoI2ee/9VJbJsduUqxSbOR3mr3/aj1NZQ9U61xtVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft
rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:39:09:af:c1:4c:cc:87:18:1b:60:6a:60:69:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edf044c363d788e74334e136e03cc7fd1e49a216
Validity
Not Before: Aug 23 10:01:26 2025 GMT
Not After : Aug 24 10:01:26 2025 GMT
Subject: CN=a0241308e1b1a164772e54409d95d26a3bd7c326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:75:d6:ab:1c:1a:5f:b1:fd:8a:e5:3e:0c:7c:
39:65:90:77:84:72:9c:9a:44:71:50:8f:fd:79:85:
fc:76:e1:fd:dd:e0:75:e9:a8:3e:a8:84:8d:5b:ed:
bc:1d:43:c9:fe:e8:87:1e:58:eb:ba:b3:5d:87:d0:
8d:77:38:40:26:44:04:d3:04:b9:d3:bb:27:fd:27:
b4:ed:1d:d9:14:6b:ef:9d:e8:55:08:8f:ff:98:5d:
8c:b2:a3:5a:d5:ab:fa:45:fd:83:58:17:a0:7e:fc:
d0:3d:1f:da:0b:2d:4f:8a:3b:8b:24:c1:6f:9c:20:
ce:34:38:e7:26:d3:36:b2:dd:94:2b:94:db:8f:8e:
1e:a1:b8:fc:e3:6a:39:19:54:26:98:91:b3:4a:33:
d4:a2:2b:dc:28:04:d3:ca:6c:d5:f3:29:f1:07:fa:
85:42:51:b1:78:12:f4:b3:19:56:1e:db:fa:88:38:
43:c1:05:08:25:d2:ed:ea:b5:c2:91:cf:62:5a:5e:
4d:18:72:93:1d:5b:cc:c8:b7:49:6a:44:9c:fc:bf:
f4:39:f8:4f:21:12:b8:67:8a:bc:56:e4:5e:9b:23:
30:d9:43:72:72:69:98:19:53:41:5b:36:62:dc:15:
54:5a:14:12:08:a2:ff:b9:75:3e:60:a8:b8:f3:b0:
c0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:24:13:08:E1:B1:A1:64:77:2E:54:40:9D:95:D2:6A:3B:D7:C3:26
X509v3 Authority Key Identifier:
keyid:ED:F0:44:C3:63:D7:88:E7:43:34:E1:36:E0:3C:C7:FD:1E:49:A2:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:9a:b0:b6:32:c2:04:0d:1e:0e:4b:76:d2:a4:3b:d5:09:f8:
ed:e8:70:28:68:27:aa:8f:84:17:a6:80:3a:75:42:3b:7f:e6:
3a:97:1e:16:8b:f9:6e:93:e0:a9:02:9a:15:27:2b:94:95:04:
54:72:32:83:b7:60:d9:02:1f:a7:c4:90:a0:6a:c4:72:62:42:
71:c0:7d:a4:e8:1a:d4:78:c0:9c:a5:6b:05:53:ed:59:44:0b:
da:c4:71:4c:43:36:50:6b:0b:b2:1f:4b:3b:15:19:82:0a:90:
82:c4:be:c0:68:15:f0:f8:74:8d:dc:fb:b1:b5:3c:46:38:4f:
05:36:7a:d4:72:a4:93:ff:e8:13:89:16:32:bf:5c:a9:2d:13:
2e:85:9b:0d:6c:36:ad:57:ec:59:15:25:95:62:69:32:ae:1c:
5e:68:85:47:05:0c:a2:ac:3b:68:03:ae:24:13:df:33:15:ee:
67:1f:e3:26:af:d3:35:41:e2:ce:2d:44:b5:ef:bf:bf:50:74:
9a:53:53:82:36:1a:69:c2:35:88:22:bc:6b:1e:6a:02:73:9d:
cc:f3:dd:90:61:04:14:8b:cd:a2:0a:98:64:74:9f:4f:a5:30:
61:9c:bf:78:f8:c1:ee:ec:83:6a:7f:47:53:3f:e1:2b:e1:02:
8c:3f:1a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:42:31 2025 by rpki-client