Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft
File: k8QjPQuo54YYoJpyVh3M0GSYyE4.mft (raw, json)
Hash identifier: pgv2Qe7om9/VFsVawRDt6JHDhrwDEfQ+Aub9g8rMrSs=
Subject key identifier: 68:FB:8A:01:F2:51:C8:4C:E4:12:E1:59:CC:5C:F4:BA:0C:5F:C8:EE
Authority key identifier: 93:C4:23:3D:0B:A8:E7:86:18:A0:9A:72:56:1D:CC:D0:64:98:C8:4E
Certificate issuer: /CN=93c4233d0ba8e78618a09a72561dccd06498c84e
Certificate serial: 0198D65F791CB8E79C84F751170CD78DBB35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k8QjPQuo54YYoJpyVh3M0GSYyE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 10:00:37 +0000
Manifest this update: Sat 23 Aug 2025 10:00:37 +0000
Manifest next update: Sun 24 Aug 2025 10:00:37 +0000
Files and hashes: 1: k8QjPQuo54YYoJpyVh3M0GSYyE4.crl (hash: PDKNyiZ7bVIolstZo/5NhGydZFpDY2g5MVXwAkjK/8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft
rsync://rpki.ripe.net/repository/DEFAULT/k8QjPQuo54YYoJpyVh3M0GSYyE4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:79:1c:b8:e7:9c:84:f7:51:17:0c:d7:8d:bb:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93c4233d0ba8e78618a09a72561dccd06498c84e
Validity
Not Before: Aug 23 10:00:37 2025 GMT
Not After : Aug 24 10:00:37 2025 GMT
Subject: CN=68fb8a01f251c84ce412e159cc5cf4ba0c5fc8ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:99:96:ae:48:b4:f4:eb:cb:ae:5a:e3:dd:9f:
fb:03:17:a7:0d:bc:83:95:42:a5:c9:38:01:5e:c1:
24:99:dc:b2:cf:e8:b4:4c:2d:52:a8:77:ca:58:03:
3e:0b:43:04:ce:16:20:08:23:e5:b5:c6:04:f3:20:
72:a5:8a:d1:31:ff:48:1a:21:23:55:85:2d:e8:c3:
d5:33:18:0c:f4:21:4d:6d:6f:f8:16:4a:71:16:a9:
7c:dd:52:aa:11:af:fd:8c:d8:63:a4:7c:a6:ce:00:
38:c8:ed:ea:48:11:54:82:eb:cd:c2:76:64:b4:22:
14:21:7c:24:7e:54:25:5d:8a:43:c7:9b:00:63:1e:
aa:c2:fb:8d:4e:e6:37:cf:3e:b2:63:43:9a:92:52:
b3:ae:93:41:85:48:f8:c8:01:96:2f:83:86:1c:49:
8b:99:d6:12:62:ad:42:93:2d:c3:6e:51:ad:57:10:
ee:8f:76:4a:a3:43:9b:78:07:99:b0:2a:05:23:83:
c0:d8:1c:51:c4:c3:3c:5f:0d:a6:db:a7:77:ed:31:
29:bf:92:93:b7:2f:2a:fa:9b:62:40:e0:ba:94:9f:
86:88:75:2c:4a:fa:bb:8e:0d:f0:ea:f0:fb:8b:28:
3b:94:c5:c9:d0:08:ad:19:4a:5c:dd:66:bc:0f:f0:
31:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:FB:8A:01:F2:51:C8:4C:E4:12:E1:59:CC:5C:F4:BA:0C:5F:C8:EE
X509v3 Authority Key Identifier:
keyid:93:C4:23:3D:0B:A8:E7:86:18:A0:9A:72:56:1D:CC:D0:64:98:C8:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k8QjPQuo54YYoJpyVh3M0GSYyE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5f757b-4f22-43db-9da9-2496116e415d/1/k8QjPQuo54YYoJpyVh3M0GSYyE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:0b:90:ab:4d:f4:29:a9:35:da:3b:01:ed:8a:c2:e2:6d:b7:
b3:44:ae:c7:08:fa:7b:07:b0:15:c3:35:19:27:f4:55:52:e3:
48:19:21:59:d5:58:e4:0f:d7:49:7b:ab:2e:17:e0:a5:49:0a:
8d:20:0e:14:c1:4c:92:ef:63:5e:98:d0:f0:0d:71:3f:ae:77:
c0:0d:1d:f5:94:bb:d0:fe:17:49:db:a4:d2:17:c7:98:21:63:
01:d6:5b:58:e5:f7:f0:3f:9c:6f:28:d7:ec:45:de:37:05:db:
75:01:26:a0:05:33:42:3c:21:a8:d9:64:a7:1e:e7:ed:44:5b:
90:53:8d:5b:83:73:ca:8f:03:f6:83:d7:c3:5c:77:84:a8:4a:
d0:c8:3e:38:68:98:1e:3f:28:50:1f:96:2b:1f:71:bb:a3:59:
c5:83:77:21:4c:77:c3:5b:a6:69:98:46:2b:f3:fc:b8:eb:0b:
d0:c5:88:92:60:7b:0d:75:55:d6:b0:f5:8a:e6:e1:18:1e:c9:
c0:42:ad:68:7f:05:d1:ba:5c:12:fe:7c:40:17:dd:46:5e:a3:
44:5a:4a:e6:53:b1:dd:64:9b:6e:15:44:6b:3c:ce:92:69:dc:
71:01:d6:9d:55:53:1b:c6:3b:ad:30:af:94:df:c7:2d:5f:a3:
31:a8:09:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:17:28 2025 by rpki-client