Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft
File: dqIj-utMXd95nTyiqWDAbB1tHZY.mft (raw, json)
Hash identifier: Gu/OIpetCIYAYdg2zgCKWeAnHo9BwvkdP5spA9JrIyM=
Subject key identifier: D3:3D:8B:DE:77:C3:CA:B1:D0:8F:11:22:75:C0:D5:45:2C:17:7C:F9
Authority key identifier: 76:A2:23:FA:EB:4C:5D:DF:79:9D:3C:A2:A9:60:C0:6C:1D:6D:1D:96
Certificate issuer: /CN=76a223faeb4c5ddf799d3ca2a960c06c1d6d1d96
Certificate serial: 0198D773C2847AE9F945F1ABE0D427622A92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft
Manifest number: 0BF9
Signing time: Sat 23 Aug 2025 15:02:24 +0000
Manifest this update: Sat 23 Aug 2025 15:02:24 +0000
Manifest next update: Sun 24 Aug 2025 15:02:24 +0000
Files and hashes: 1: dqIj-utMXd95nTyiqWDAbB1tHZY.crl (hash: ZEsTiLWjPkIIMv+ZGmO4vfJhJS8x9i06wHqwQM479oc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:c2:84:7a:e9:f9:45:f1:ab:e0:d4:27:62:2a:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a223faeb4c5ddf799d3ca2a960c06c1d6d1d96
Validity
Not Before: Aug 23 15:02:24 2025 GMT
Not After : Aug 24 15:02:24 2025 GMT
Subject: CN=d33d8bde77c3cab1d08f112275c0d5452c177cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:88:5c:e5:e5:a9:41:03:dd:58:4a:1c:e3:19:
64:c1:e8:a1:c9:55:53:9e:c0:2a:88:55:a7:d3:75:
ca:7e:7e:c7:53:8f:45:39:5e:84:5f:d2:e2:09:38:
2f:9e:9f:2b:20:60:cd:7a:12:4a:dc:03:14:b5:31:
03:55:11:35:79:a6:b9:bd:b3:36:de:2f:18:70:64:
35:52:9b:51:db:21:ca:e8:96:df:14:de:80:83:2c:
1f:96:15:92:10:4e:3a:25:08:d5:56:25:03:c2:b4:
a7:f4:4c:a7:63:18:51:4b:f9:cb:5d:45:33:57:f1:
76:ca:f9:5e:b3:b5:12:c6:c5:f4:66:9a:c0:b6:6c:
65:46:ee:b4:23:52:2f:67:b3:d8:14:32:64:65:fb:
81:95:01:eb:d2:33:28:07:c8:d9:61:16:f2:b5:40:
3f:7f:b9:63:24:dd:4c:4d:ef:ee:9e:b7:42:e4:9e:
7a:ca:16:67:af:e5:43:de:ea:f8:0e:88:25:f4:e6:
00:9f:78:d8:5d:6c:40:d7:fe:6e:e6:a2:70:b6:a6:
ac:96:f9:82:48:71:74:9d:4d:3b:86:ac:4b:13:56:
b1:87:b4:8c:1f:b1:72:c9:89:d7:4d:43:3c:c9:85:
b9:8f:b5:c2:cd:e2:cf:e3:3f:7a:fd:60:f1:4c:b5:
56:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:3D:8B:DE:77:C3:CA:B1:D0:8F:11:22:75:C0:D5:45:2C:17:7C:F9
X509v3 Authority Key Identifier:
keyid:76:A2:23:FA:EB:4C:5D:DF:79:9D:3C:A2:A9:60:C0:6C:1D:6D:1D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqIj-utMXd95nTyiqWDAbB1tHZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/5f0ab1-235c-4cda-b538-1ddee855cdf8/1/dqIj-utMXd95nTyiqWDAbB1tHZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:36:0a:d5:14:76:49:31:7b:6d:4d:21:ac:46:82:26:be:23:
8b:49:7b:86:38:9c:86:fe:fa:07:29:27:33:cd:4d:c5:cc:c3:
ad:87:79:4f:50:d2:6d:f7:21:43:b4:d0:a6:18:99:35:3f:7c:
6b:45:2e:6e:58:30:43:86:3a:66:bc:92:fd:07:99:ab:42:ea:
eb:1d:36:93:a8:18:2f:62:4e:fb:0e:d8:5a:a2:14:e7:eb:25:
3c:98:aa:d0:18:88:e3:ce:fa:e4:1b:76:d1:47:e5:fb:22:b7:
4f:66:68:ef:bc:8e:bc:f2:ba:e3:18:bc:f0:a0:7d:bd:34:64:
9a:a6:cc:cf:39:c3:0a:68:b3:5d:45:3d:87:bc:a0:bc:13:e7:
fd:a7:b2:d6:37:7b:6c:27:63:cd:87:69:60:1a:98:9b:3e:9b:
2a:fe:cf:17:8c:63:f4:39:b8:96:36:2d:51:2e:09:97:75:ef:
52:a1:02:55:fd:89:b8:88:1c:23:13:52:10:75:24:86:6a:de:
0a:ff:53:0c:a4:f1:e9:f9:0c:a9:34:7f:20:5f:90:e2:72:2f:
14:56:2c:a0:ab:7c:12:71:31:8f:62:03:97:dd:06:eb:9d:b0:
19:05:b3:fd:54:67:86:6f:a2:1e:c4:4c:24:d5:e7:f1:69:c1:
dd:e4:f1:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:33:54 2025 by rpki-client