Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
File: moI9HNrrg3dfH7vV-frkGsXfFxk.mft (raw, json)
Hash identifier: 4LYCaY0E7a04D2LMnW+Od2e4JXUMnPyHxOsQukdGgRk=
Subject key identifier: 25:DD:D9:10:16:BA:63:E1:D8:F0:F3:C1:70:44:53:DD:32:18:B6:4D
Authority key identifier: 9A:82:3D:1C:DA:EB:83:77:5F:1F:BB:D5:F9:FA:E4:1A:C5:DF:17:19
Certificate issuer: /CN=9a823d1cdaeb83775f1fbbd5f9fae41ac5df1719
Certificate serial: 0198D4E06B5E9071984B5A496E4108E3EE58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/moI9HNrrg3dfH7vV-frkGsXfFxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
Manifest number: 0681
Signing time: Sat 23 Aug 2025 03:02:13 +0000
Manifest this update: Sat 23 Aug 2025 03:02:13 +0000
Manifest next update: Sun 24 Aug 2025 03:02:13 +0000
Files and hashes: 1: moI9HNrrg3dfH7vV-frkGsXfFxk.crl (hash: EOYAPb1Yd9z49hf2LVJpmelMlVLeYAbDBEMzsbVAQHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
rsync://rpki.ripe.net/repository/DEFAULT/moI9HNrrg3dfH7vV-frkGsXfFxk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:6b:5e:90:71:98:4b:5a:49:6e:41:08:e3:ee:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a823d1cdaeb83775f1fbbd5f9fae41ac5df1719
Validity
Not Before: Aug 23 03:02:13 2025 GMT
Not After : Aug 24 03:02:13 2025 GMT
Subject: CN=25ddd91016ba63e1d8f0f3c1704453dd3218b64d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8f:d6:e0:19:32:ce:a7:42:35:a9:b9:cb:85:
4b:16:b4:e0:90:21:f5:5b:52:eb:dd:78:76:0d:8f:
fd:6c:cf:97:c1:68:2f:80:8d:2e:fe:67:9e:bc:1d:
18:05:34:f8:82:c4:11:5c:93:ec:78:ef:e5:cc:da:
b0:6d:eb:01:01:b5:4e:e9:e0:08:99:eb:67:37:c4:
e0:d4:3c:54:9e:01:2c:48:5e:ee:a2:eb:0d:ce:93:
1d:1f:bc:8c:0a:69:68:e0:57:6a:b8:eb:4c:95:c4:
cc:6b:a0:ca:50:82:17:4f:a6:25:17:22:3d:84:4a:
a6:43:02:53:61:2b:79:5d:57:0e:b5:a8:0e:65:cf:
04:57:80:c4:c7:10:d6:10:c9:89:f2:61:96:6d:b4:
3f:33:26:9f:57:42:bf:55:ea:88:07:ea:9b:9d:56:
fe:3f:56:a5:e3:18:82:ae:a1:cc:f2:ed:26:fa:00:
87:bb:6d:3f:24:f4:3b:cb:3b:c7:17:ca:2d:d9:e6:
47:0e:ee:59:ef:24:bc:78:f1:38:5a:23:0a:61:93:
9a:6a:ac:32:f2:a9:69:e5:68:b5:c7:60:0b:03:e0:
43:a0:04:15:ce:0a:12:80:06:42:99:5b:cc:ba:db:
36:78:67:a3:8c:41:56:76:1d:e6:11:d6:27:18:97:
02:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:DD:D9:10:16:BA:63:E1:D8:F0:F3:C1:70:44:53:DD:32:18:B6:4D
X509v3 Authority Key Identifier:
keyid:9A:82:3D:1C:DA:EB:83:77:5F:1F:BB:D5:F9:FA:E4:1A:C5:DF:17:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/moI9HNrrg3dfH7vV-frkGsXfFxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:4e:99:ee:4e:6c:7a:9a:9e:61:e1:89:99:e2:4b:5a:e0:9d:
77:cb:3f:21:70:e0:02:57:e8:d8:fb:5e:42:bd:13:7b:80:90:
74:a3:fc:13:09:28:e5:b0:15:87:8e:0c:ea:d0:0a:72:4d:8e:
c9:56:08:75:67:9c:51:b4:43:eb:e0:6a:d9:dc:f8:62:8f:72:
c2:47:b0:a5:b6:d8:21:e7:7c:9b:bf:58:60:11:34:80:1b:ae:
05:f9:5c:09:dd:58:f5:d5:e0:a7:81:40:4a:c3:9f:4e:e2:aa:
ab:ff:d4:3c:7c:d8:1b:40:dc:4c:75:46:29:ca:cc:6a:97:85:
e6:cb:58:90:96:56:69:9d:4c:77:6f:e6:3f:93:22:2e:ad:5f:
a1:59:36:31:f4:ba:01:e1:cd:a5:5f:0d:2e:f3:56:90:ad:21:
9a:a0:8d:31:90:52:e9:8a:52:00:cc:7d:80:7b:78:41:7f:f9:
0a:35:30:8f:30:35:5e:8d:aa:3c:2b:75:9f:e3:3e:41:51:e0:
93:94:74:4b:ed:7c:8e:2b:b6:54:df:7a:02:5b:49:93:ef:cf:
2f:71:36:f4:30:6d:0e:49:f7:01:50:1a:cd:1e:05:c8:e9:4e:
ea:04:50:d5:33:a6:24:0a:16:06:ba:99:fb:ff:2d:76:be:3f:
4f:4e:76:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:24:41 2025 by rpki-client