Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
File: Th1cISsoF0fIw-xuhm4Vs5TFu98.mft (raw, json)
Hash identifier: otnHtfHUHeMRerDu31+Us15p1fpDTlj+XmnMGNXQPTY=
Subject key identifier: E8:80:EE:FF:64:E0:4E:77:B2:E8:DB:CF:28:A6:4D:0D:06:0E:31:DF
Authority key identifier: 4E:1D:5C:21:2B:28:17:47:C8:C3:EC:6E:86:6E:15:B3:94:C5:BB:DF
Certificate issuer: /CN=4e1d5c212b281747c8c3ec6e866e15b394c5bbdf
Certificate serial: 0198729876C14781EB87F4BBCF97B9717692
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
Manifest number: 0D4E
Signing time: Mon 04 Aug 2025 01:00:51 +0000
Manifest this update: Mon 04 Aug 2025 01:00:51 +0000
Manifest next update: Tue 05 Aug 2025 01:00:51 +0000
Files and hashes: 1: Th1cISsoF0fIw-xuhm4Vs5TFu98.crl (hash: gOE9jGihr8UhJlOj7Ya7Oowc0Xtd2hmqzYRDxSMqzB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:76:c1:47:81:eb:87:f4:bb:cf:97:b9:71:76:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e1d5c212b281747c8c3ec6e866e15b394c5bbdf
Validity
Not Before: Aug 4 01:00:51 2025 GMT
Not After : Aug 5 01:00:51 2025 GMT
Subject: CN=e880eeff64e04e77b2e8dbcf28a64d0d060e31df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bf:86:75:77:07:a4:2b:40:c6:b5:c3:ad:c4:
5a:33:96:91:d4:be:d0:a7:87:00:5d:ad:a1:4c:e5:
e6:24:95:9e:2c:ab:c0:8b:d0:af:bb:3e:4f:05:4d:
0a:54:01:5d:56:c5:3f:ac:62:37:b7:99:69:da:4a:
4d:e1:ad:56:8a:89:ec:bc:85:ca:bb:72:a1:08:65:
a9:7c:81:34:2b:ac:d1:8b:c6:de:59:3c:44:5a:0c:
6b:14:f9:a2:d2:cb:fc:3e:4c:a2:2b:74:45:4b:24:
c3:c0:fa:23:f3:80:7a:c7:22:c1:11:12:ec:02:14:
80:91:41:3f:0c:3b:f4:de:14:92:e5:67:f5:5c:9f:
3d:06:e9:cb:8b:25:15:5c:67:26:fb:e6:8e:c0:cc:
79:32:1a:56:3e:4e:66:69:a5:08:9a:dd:d8:d3:27:
9c:3e:bf:64:1c:75:37:a3:c4:20:8b:1c:d6:97:99:
3b:62:3d:0d:45:fb:9e:f7:6a:3d:9d:47:e8:51:54:
db:e2:05:07:01:a0:6e:a3:bf:3b:08:37:64:a8:12:
e4:99:ea:aa:27:fc:96:07:c9:59:24:23:b9:ee:c9:
53:a8:62:88:27:9f:a6:e8:ee:78:a8:ed:bc:2a:5c:
fc:d3:f9:b8:ff:34:f0:e1:f8:d0:7c:e1:0e:76:48:
1e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:80:EE:FF:64:E0:4E:77:B2:E8:DB:CF:28:A6:4D:0D:06:0E:31:DF
X509v3 Authority Key Identifier:
keyid:4E:1D:5C:21:2B:28:17:47:C8:C3:EC:6E:86:6E:15:B3:94:C5:BB:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Th1cISsoF0fIw-xuhm4Vs5TFu98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/277503-82e3-4c17-9699-712e2761daf5/1/Th1cISsoF0fIw-xuhm4Vs5TFu98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:ce:3c:8b:f3:31:6d:2f:1d:61:31:bd:5b:fd:71:7d:a1:5c:
6e:d0:84:d2:25:67:c3:5d:91:d6:15:e2:cd:d6:e2:08:2b:1f:
4f:a8:34:f5:db:56:f1:ea:c1:69:37:11:9d:04:00:54:b2:89:
6c:76:9a:2e:36:25:4f:1c:f5:01:98:cb:cc:bf:0a:ad:77:9e:
d3:fe:8e:9f:85:f1:0b:59:d8:01:46:72:14:8b:28:a4:b6:a5:
ca:b1:c4:68:e1:fa:65:c2:03:5d:e8:a3:e6:c2:aa:8b:cc:20:
de:02:97:1b:d4:2c:06:ee:c1:22:c7:12:6e:cf:ba:a7:ad:6a:
9d:3b:cc:32:f8:84:da:9d:13:1f:8a:24:8c:af:c0:3b:02:77:
28:c5:9f:33:d4:69:f3:2a:40:8d:f8:74:32:20:e5:1b:50:0d:
c3:71:be:08:2b:d8:1c:92:2a:37:df:2d:49:1d:a4:f2:23:61:
7a:30:7f:3a:f0:5f:2c:7e:b6:11:52:5e:c1:06:cd:bf:4f:4d:
1f:6e:75:ff:72:58:c3:fc:74:cb:67:f8:f7:e3:8b:7a:12:4a:
c4:f9:d8:26:61:09:84:d8:97:26:5c:00:f6:1a:56:c5:a5:fc:
36:0a:a9:e1:30:56:70:70:f7:de:6e:2b:30:2d:40:80:b0:f5:
2d:37:60:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:22:07 2025 by rpki-client