Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
File: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft (raw, json)
Hash identifier: 36Hvtzk9iAbLK3dPDM9YGWGeiYTKh3dw/yingYWy2z0=
Subject key identifier: 11:F3:EB:2F:CE:36:DE:59:F2:78:4F:BA:61:07:B3:35:52:C2:56:D2
Authority key identifier: 98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
Certificate issuer: /CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Certificate serial: 0198D7A8F17626E5A57D4D50280CAC30ACE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
Manifest number: 0D7F
Signing time: Sat 23 Aug 2025 16:00:29 +0000
Manifest this update: Sat 23 Aug 2025 16:00:29 +0000
Manifest next update: Sun 24 Aug 2025 16:00:29 +0000
Files and hashes: 1: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl (hash: WedPbyP+TcRZSXbJCfVdlKblQhUyDsrKpNobEMKG+zE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:f1:76:26:e5:a5:7d:4d:50:28:0c:ac:30:ac:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Validity
Not Before: Aug 23 16:00:29 2025 GMT
Not After : Aug 24 16:00:29 2025 GMT
Subject: CN=11f3eb2fce36de59f2784fba6107b33552c256d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c5:ef:74:21:0e:a5:a1:ad:13:77:2a:9f:9c:
82:be:f7:fc:b4:f4:de:67:34:81:6d:55:eb:bc:bc:
5e:fc:9e:6f:46:68:3c:32:7b:4a:51:62:21:56:f2:
e8:dd:e2:90:80:c2:1c:b6:8e:54:28:24:01:6f:49:
0e:7d:68:76:15:fb:4f:d0:da:6e:c3:b5:e0:1a:d6:
c3:06:eb:06:68:98:c6:a7:9a:58:7c:3e:9b:be:90:
6a:f6:d9:e4:ee:ba:c5:69:8e:b3:ac:33:07:8a:48:
d0:47:8e:b7:8f:d8:83:74:28:f9:6d:a3:23:dd:72:
54:10:5e:33:1a:4d:0b:1a:bc:b0:e1:0b:ab:ad:14:
dc:f3:d2:aa:25:60:9d:ed:df:26:45:8a:bb:d3:9d:
e3:c0:95:21:a8:06:e9:22:22:10:e2:5a:8b:7d:d9:
4f:8e:b2:7f:73:d2:a6:93:bd:d8:f9:1f:f2:7e:6c:
b0:cc:4f:0a:3a:49:a5:2a:42:4d:ea:d6:fc:23:95:
85:9d:1d:fc:d5:23:c8:07:ee:a7:ee:b0:53:f8:2b:
76:b2:26:87:62:94:f7:ad:17:c6:de:42:cc:dd:47:
fb:ee:31:e3:e3:cf:c2:ce:9e:f9:fc:8e:52:a1:43:
25:59:b4:71:64:bd:54:1d:d4:a2:00:93:c2:25:67:
4e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F3:EB:2F:CE:36:DE:59:F2:78:4F:BA:61:07:B3:35:52:C2:56:D2
X509v3 Authority Key Identifier:
keyid:98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:1d:4e:54:4d:1a:52:b7:b8:3b:37:92:9b:90:f2:8a:82:d5:
74:e4:28:9f:e2:a8:80:eb:89:5b:cb:f3:84:be:89:84:5a:88:
7a:41:af:b6:7b:55:62:d8:c7:72:03:d4:0e:24:c0:57:b7:3a:
6d:48:d1:30:b7:ff:9b:c9:c2:63:fa:9c:2c:a8:4b:ee:c8:d6:
d2:87:6f:77:38:2c:de:78:32:53:d4:64:91:74:62:52:49:e8:
74:07:7f:7d:02:4b:3d:31:36:0b:2d:a9:d8:12:25:c6:5b:c0:
ad:89:42:0f:8a:72:8b:de:16:0a:a3:66:14:6e:bc:61:a4:7b:
2b:5f:83:23:cb:93:a5:04:46:4b:99:23:b2:21:dd:87:48:86:
f8:23:46:82:2f:bf:2b:bd:4c:a7:91:c3:c3:98:7f:22:11:ca:
da:ad:d5:3b:c6:b5:99:83:ee:41:a6:de:3a:d9:e6:c1:a3:b6:
fa:aa:d6:8a:24:f8:7d:57:18:1e:0c:b6:73:69:d2:c6:2f:3c:
b5:df:a2:f0:30:0f:58:15:e1:72:4f:86:11:95:d0:42:01:ae:
b6:5c:4f:6f:d8:10:05:28:67:93:ed:b3:e8:b6:60:d8:6f:86:
0c:35:de:69:ad:ff:0b:43:67:f5:d0:6b:26:22:34:90:48:7c:
7e:4b:41:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:22:39 2025 by rpki-client