Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
File: rjRcTQnm4iTh2vRmV9PHEYewIjY.mft (raw, json)
Hash identifier: RJwKWffeE2TluddVD5Q57aVHOj3CBBWCNMIXHk/ZBWc=
Subject key identifier: 74:71:39:B4:FC:3E:02:F5:CF:81:4D:5A:5D:AD:F4:AF:BD:70:18:CA
Authority key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
Certificate issuer: /CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Certificate serial: 0198D583F32833CCEBF78BF6AF2D6D88706D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
Manifest number: 0593
Signing time: Sat 23 Aug 2025 06:00:51 +0000
Manifest this update: Sat 23 Aug 2025 06:00:51 +0000
Manifest next update: Sun 24 Aug 2025 06:00:51 +0000
Files and hashes: 1: rjRcTQnm4iTh2vRmV9PHEYewIjY.crl (hash: gMNuL0prTymo3VrMIawJitPmQTVrbrW+m7d7F+injY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 06:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:f3:28:33:cc:eb:f7:8b:f6:af:2d:6d:88:70:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Validity
Not Before: Aug 23 06:00:51 2025 GMT
Not After : Aug 24 06:00:51 2025 GMT
Subject: CN=747139b4fc3e02f5cf814d5a5dadf4afbd7018ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:80:24:8a:38:ca:2c:56:03:8e:dd:05:1a:bd:
1d:ae:40:7c:ac:55:9b:23:a5:60:bc:52:6a:61:e1:
15:9c:b0:8f:9a:c2:74:ad:d8:bd:eb:b0:81:88:86:
a4:da:7c:5f:08:e6:1c:05:1b:0d:66:11:32:03:c9:
f5:7e:8f:c9:6a:e7:2a:93:f8:36:12:f3:d6:30:83:
eb:38:1f:c8:a9:94:b3:cc:0b:3a:cd:7d:04:91:99:
66:0d:af:a5:ea:94:9a:15:2b:4d:93:9d:79:8c:78:
51:ae:92:f2:19:20:0f:da:43:ff:33:bd:c4:01:e3:
52:d8:ba:1c:d4:62:59:f8:dc:0e:bd:ee:df:c5:7d:
2d:f8:82:e3:c0:b0:8a:60:88:c0:10:c2:f5:e1:82:
c5:f4:d1:05:a9:7b:a8:94:32:a4:f8:5f:15:f8:e0:
1e:c6:aa:5a:e9:27:bc:ce:41:5b:5e:c8:26:7e:17:
c0:4a:a8:78:b9:36:74:83:ab:8a:33:bb:9b:ba:3c:
3c:1b:be:66:45:cc:04:7a:7a:ff:30:28:10:1a:2e:
fc:5e:7b:28:35:75:7c:b6:dd:55:6e:93:c1:59:86:
1f:02:e3:dc:d9:d2:b7:c5:dd:34:ac:04:1f:7c:b4:
06:13:06:fe:dd:a2:6e:8c:5e:8f:15:55:67:17:6c:
3b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:71:39:B4:FC:3E:02:F5:CF:81:4D:5A:5D:AD:F4:AF:BD:70:18:CA
X509v3 Authority Key Identifier:
keyid:AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:ec:0e:45:62:0d:2a:1d:b2:07:3a:82:a0:11:4a:d3:82:a2:
75:ed:ef:89:c9:3c:6b:2b:e0:9d:a6:24:80:84:65:f4:92:a0:
18:66:d5:19:89:81:9a:12:d0:51:78:5f:1a:5a:51:11:31:6e:
4e:b7:15:78:be:b9:b7:09:cf:b2:27:3b:e9:96:f5:27:df:2e:
39:29:81:51:5a:1c:6b:2a:f1:89:7d:ff:e2:29:1b:4e:25:5e:
91:92:56:38:cf:23:66:d4:59:7a:91:8a:57:c2:63:65:af:f9:
e9:ca:a1:bc:d9:9b:0b:6d:a6:34:2d:bc:b1:48:98:d3:9e:fe:
98:c2:05:53:db:8a:34:ca:2c:e1:6e:44:18:7b:ce:5f:6d:e3:
ae:e7:8d:42:a3:a2:de:1a:61:57:11:e4:ba:e3:37:03:1b:78:
f6:c1:52:c5:0f:da:04:8e:be:6c:2d:1f:3f:72:37:ee:03:ec:
58:11:83:4d:79:11:77:af:c3:6f:99:84:24:e8:bf:9d:59:88:
45:da:10:e6:fe:fd:f5:ee:96:cf:5b:7a:17:f1:88:a0:e2:01:
5f:c8:37:18:a2:f1:5a:93:ed:0e:c8:22:76:b7:c8:0f:7d:43:
06:2d:63:dd:50:29:f8:7a:6c:4b:84:7b:5a:a7:45:8c:f3:77:
75:05:4e:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:02:43 2025 by rpki-client