Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
File: sCnHJ8biLu2PvNHot2k5V40Nygo.mft (raw, json)
Hash identifier: mpmasDDHYQqDNFqs8lq/1HZ+nOE+iWEO0vI9d7rP5UY=
Subject key identifier: 18:27:1B:74:B5:0E:32:ED:EC:BF:B1:73:B8:4B:C2:DE:F2:92:CC:B4
Authority key identifier: B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
Certificate issuer: /CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Certificate serial: 0198D472AA746402CCE1F97004B6F8C77253
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
Manifest number: 1644
Signing time: Sat 23 Aug 2025 01:02:21 +0000
Manifest this update: Sat 23 Aug 2025 01:02:21 +0000
Manifest next update: Sun 24 Aug 2025 01:02:21 +0000
Files and hashes: 1: sCnHJ8biLu2PvNHot2k5V40Nygo.crl (hash: k6bwKlA6b0Qwr1Z8CskefrT5ju6EjUK2NrXuBEI4LwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:aa:74:64:02:cc:e1:f9:70:04:b6:f8:c7:72:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Validity
Not Before: Aug 23 01:02:21 2025 GMT
Not After : Aug 24 01:02:21 2025 GMT
Subject: CN=18271b74b50e32edecbfb173b84bc2def292ccb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:01:21:27:14:4d:02:a8:0f:5e:ce:42:03:a8:
08:a9:d4:37:74:96:b2:64:ae:a9:d4:7f:21:18:f9:
ac:b3:59:35:77:69:ac:29:cc:fa:ef:1e:15:35:c1:
fb:2d:f6:a0:46:6a:58:63:24:ac:58:0b:4b:04:cd:
df:4c:5a:30:3c:68:41:dc:1a:b5:3b:44:f1:d0:47:
26:55:df:84:9f:03:47:53:13:df:45:51:e7:1f:d2:
3b:20:38:e9:91:78:e3:d4:3a:60:0e:00:90:f9:fc:
fe:93:be:d3:1b:2d:6b:cc:7b:45:cc:1e:92:1a:f6:
85:e2:3a:48:0d:12:d7:72:93:48:5d:18:09:fa:eb:
9a:cf:32:c0:c3:2c:33:fa:5f:5c:a2:bc:c4:06:89:
b1:ef:5d:64:1f:f0:bb:be:a4:58:7d:91:6c:21:45:
ec:89:d5:88:60:05:1e:37:c0:83:34:c1:82:b8:42:
e6:b3:ec:79:88:6f:08:4f:2f:40:4e:ff:9d:1c:b2:
c1:0b:c9:77:e7:02:72:d2:83:8e:10:47:a4:3b:04:
26:7f:e4:8d:31:c0:76:94:f8:0b:da:9b:de:bd:03:
c4:11:c4:e0:e1:74:63:62:c1:93:0d:67:db:4c:92:
72:b4:80:b1:3a:47:d5:b3:7b:c8:ee:5b:5d:c5:8d:
2c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:27:1B:74:B5:0E:32:ED:EC:BF:B1:73:B8:4B:C2:DE:F2:92:CC:B4
X509v3 Authority Key Identifier:
keyid:B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:8d:f6:ee:86:4f:97:90:03:60:a8:c0:f7:9a:12:fd:ee:6d:
2e:73:a4:8f:b8:52:6d:ca:2c:95:75:a0:53:13:c7:84:9e:fd:
ec:5e:02:67:c8:1f:9c:95:17:a0:83:94:d9:cd:07:76:6f:af:
94:3a:ab:0e:fa:58:e8:35:5c:6e:ff:f1:b4:fd:49:72:50:68:
93:3e:7f:af:5b:2f:bb:9a:15:90:15:8a:13:3a:ee:cb:99:d1:
de:0f:a4:c3:89:04:2c:01:79:0c:63:c9:36:73:0e:90:4e:93:
b6:ee:0c:7f:c6:f3:9a:5a:bd:bd:a8:8c:18:94:14:89:25:f2:
bc:fb:b3:ab:a0:1a:ac:ef:78:5f:3a:b8:54:f9:75:55:4a:5b:
37:6b:b0:99:88:92:47:80:9f:ad:43:3f:18:28:fa:1d:da:a8:
e0:45:35:63:44:be:1b:09:9e:8b:6c:85:6c:ea:62:c9:8e:18:
86:9f:dd:3d:04:b1:40:49:54:be:08:8b:30:35:03:1d:71:5b:
40:3b:90:0b:0f:0a:31:17:a8:31:d9:83:d9:27:fd:03:4d:3f:
a5:a8:f1:2c:da:dd:c9:27:34:70:5a:42:20:1a:3f:6c:ad:e4:
03:97:d6:ef:e6:91:40:cf:f3:bc:d1:81:e1:67:0d:32:12:a7:
7e:7a:01:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:27 2025 by rpki-client