Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
File: s1IytLD6jIPU_4wSROhk67yt1os.mft (raw, json)
Hash identifier: El/Ktnbvb+kQGqE8QeWB1+HjKgZUJQBXZ/2H062tfRg=
Subject key identifier: C3:43:07:9E:78:55:87:C4:C7:DD:21:90:4A:1B:B5:8A:92:20:98:1F
Authority key identifier: B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B
Certificate issuer: /CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b
Certificate serial: 0198D473C1A2899D8D9E5FE916B83FF0A721
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
Manifest number: 10C0
Signing time: Sat 23 Aug 2025 01:03:32 +0000
Manifest this update: Sat 23 Aug 2025 01:03:32 +0000
Manifest next update: Sun 24 Aug 2025 01:03:32 +0000
Files and hashes: 1: s1IytLD6jIPU_4wSROhk67yt1os.crl (hash: 8xUKB1Yz68cbU/V7F8B68P21gZQUcyODQ2UP6typcP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:c1:a2:89:9d:8d:9e:5f:e9:16:b8:3f:f0:a7:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b
Validity
Not Before: Aug 23 01:03:32 2025 GMT
Not After : Aug 24 01:03:32 2025 GMT
Subject: CN=c343079e785587c4c7dd21904a1bb58a9220981f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6b:f4:68:84:ca:19:ef:03:bc:4d:e2:f6:14:
24:ca:f2:95:aa:0b:7a:8e:a1:e6:f6:6d:d8:32:66:
a5:db:85:d0:7e:ad:cf:f6:5a:9e:75:ca:e3:72:24:
73:44:50:3a:36:03:09:bc:2f:5e:7d:bf:91:b8:a1:
11:7d:71:cf:37:da:b0:ac:ab:df:e0:74:1e:de:39:
17:02:1f:d0:0d:54:96:2d:3d:2b:08:ce:07:8b:25:
3a:6a:52:ce:18:e7:d0:b4:d5:52:64:26:3f:db:aa:
94:7c:7b:de:45:42:64:7d:60:51:0a:db:b0:53:55:
a7:35:09:9c:92:93:1c:dd:c8:fc:d6:be:36:f1:f9:
4f:58:0c:ce:00:0c:04:5c:f6:4d:07:ea:1c:7f:f1:
a6:40:22:cb:08:a7:9c:41:0a:a3:2b:9a:28:28:ae:
39:36:82:10:f7:d6:13:b6:c4:98:92:11:8b:df:8d:
99:63:b8:cc:13:73:03:3b:fc:bc:2e:d8:da:00:24:
7f:66:9f:1a:27:a9:e0:72:9c:fa:49:92:50:94:36:
b9:d4:56:2b:81:25:09:0d:f6:44:c4:13:98:44:30:
e7:74:3c:65:2c:f1:75:8b:3f:12:30:20:3f:49:d2:
d9:bc:cb:51:e8:94:a2:45:53:93:69:0b:1c:dd:32:
f3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:43:07:9E:78:55:87:C4:C7:DD:21:90:4A:1B:B5:8A:92:20:98:1F
X509v3 Authority Key Identifier:
keyid:B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:7e:17:fa:ef:9d:e1:31:07:68:8d:54:39:fc:34:c2:59:eb:
02:37:fc:19:05:a3:21:a7:d0:27:3c:d8:2a:55:57:55:7b:1f:
f4:58:85:b8:51:f1:9b:e9:3c:1a:73:bb:75:cb:9a:4b:e7:f8:
f9:a5:4b:bd:be:6e:7c:89:cc:39:0a:95:f3:63:5b:e4:24:59:
98:0c:61:ae:22:4e:ca:9d:5c:97:6c:73:d1:4d:78:be:5e:3c:
4a:ab:1a:bf:68:ee:12:25:7c:39:2c:86:82:ba:f0:4f:1a:63:
67:cd:13:9a:41:30:51:8c:61:1c:87:b6:0d:6d:69:60:56:34:
89:74:93:d7:3e:54:79:53:25:a3:43:9a:ac:cf:46:02:2a:49:
b8:40:b6:a9:4c:93:22:6d:3c:b8:f1:fb:22:b6:f1:22:e1:32:
c6:95:63:07:a0:81:56:fa:1e:b5:45:76:24:f8:00:c4:3f:10:
f1:05:16:20:e1:8e:ba:e6:9c:a9:b0:58:e1:13:73:e5:7b:4e:
7f:16:aa:e2:ae:93:be:9a:a1:73:39:7f:b3:e5:e1:17:ac:01:
4f:76:8c:10:a3:b1:4a:2f:de:2a:66:b0:78:11:f6:e0:bb:49:
03:6e:e1:7d:b4:d1:f0:7c:82:3b:dc:99:a3:5e:ca:ae:3b:09:
b2:ab:ef:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:19:35 2025 by rpki-client