Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
File: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft (raw, json)
Hash identifier: 9ktAxiuWq/Jqjd8AjdpdxfNmEmI4gKrVX9pf5to05eU=
Subject key identifier: BA:D9:C5:36:C6:AD:13:78:FE:3F:58:E1:C4:5E:29:F1:FB:BE:3A:96
Authority key identifier: AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30
Certificate issuer: /CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330
Certificate serial: 0198D660ACFF83CC32CE3D2903CC71388E8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
Manifest number: 0EDF
Signing time: Sat 23 Aug 2025 10:01:56 +0000
Manifest this update: Sat 23 Aug 2025 10:01:56 +0000
Manifest next update: Sun 24 Aug 2025 10:01:56 +0000
Files and hashes: 1: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl (hash: UE99fMQB3LhHZsr8+hXQuwSbJ1J/EQuvIFznGQzbgUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:ac:ff:83:cc:32:ce:3d:29:03:cc:71:38:8e:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330
Validity
Not Before: Aug 23 10:01:56 2025 GMT
Not After : Aug 24 10:01:56 2025 GMT
Subject: CN=bad9c536c6ad1378fe3f58e1c45e29f1fbbe3a96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ea:86:1b:a3:09:09:f7:9f:2a:f3:31:18:1e:
2d:f5:26:37:09:0c:89:a0:3b:af:da:c8:6f:a0:a4:
aa:d9:16:80:01:2f:e1:44:bd:6a:e5:c6:97:95:dc:
0f:06:10:e0:58:79:a3:ee:d3:87:53:a8:6a:11:48:
0a:c1:cf:20:b4:2c:50:63:2f:15:76:b8:e1:25:5a:
2a:f4:3a:34:d0:a0:ef:26:bb:ab:01:f3:5a:46:80:
12:82:89:5d:a2:ea:64:e4:75:28:30:0a:6a:05:a4:
29:c0:48:4d:6d:ed:61:51:ca:a7:84:ca:97:6f:9c:
0b:6c:86:b8:d3:2e:f4:3f:d3:6e:30:0a:24:44:cf:
ff:0f:5d:ae:d9:79:5d:08:8e:b3:63:57:42:77:4d:
4a:b8:2e:d5:b6:b0:cc:f8:bb:3a:6b:a9:21:4f:26:
c5:83:ff:0e:8a:dc:0a:67:51:74:8b:32:f5:92:81:
9c:1a:38:33:c6:c8:03:15:d2:66:cc:0f:7d:b7:11:
84:51:67:77:b3:d1:fe:e9:d4:ea:b1:71:01:9e:85:
84:67:39:fc:24:0e:2f:df:17:9c:de:0a:16:08:80:
67:31:85:b4:41:53:89:e6:d2:db:ce:15:79:a0:fd:
f8:60:dd:45:46:1e:6c:7f:29:6a:da:e7:01:91:20:
07:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D9:C5:36:C6:AD:13:78:FE:3F:58:E1:C4:5E:29:F1:FB:BE:3A:96
X509v3 Authority Key Identifier:
keyid:AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:6f:e0:6a:66:69:f8:6b:0f:45:49:31:09:2d:0c:97:36:1b:
12:e8:a3:15:a6:55:f2:ca:07:b2:7a:8d:fa:5b:99:04:6d:3c:
b0:e1:8d:eb:af:0a:85:dd:b7:80:74:0c:12:3e:cb:f5:08:2f:
69:cc:67:92:86:72:52:33:15:f9:73:e5:07:88:f7:eb:ad:fc:
75:1d:88:a0:69:dc:c8:05:1c:11:94:91:4e:32:2a:54:8b:10:
52:69:91:0b:5b:cb:78:12:3d:3e:a4:e2:da:76:f7:41:98:81:
af:e8:29:5a:69:3c:64:53:04:bd:92:36:79:a5:72:e0:86:00:
1b:3c:67:0c:05:69:fb:6f:fb:35:73:d3:d1:0d:41:f3:0c:58:
a8:c2:38:14:49:7f:8c:c8:83:86:88:cd:dc:65:73:5a:e1:f8:
df:ed:c6:bf:1c:de:a9:0b:78:0c:15:09:60:8a:7e:49:41:d9:
9c:63:be:f2:0c:cf:12:ee:0a:16:30:00:3f:59:9c:6a:29:e4:
7b:3b:33:99:2b:ff:d2:1c:fe:dd:3c:a7:20:a6:24:4e:23:45:
72:8c:9b:84:9c:d0:58:a7:46:84:6e:39:50:ac:b6:11:7e:d7:
31:29:61:a5:f3:31:dc:3b:6b:6d:b0:19:98:c5:7a:fc:22:73:
48:de:7e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:05:50 2025 by rpki-client