Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: cEb7SLBjqNXX3rDH5CnbwrgQJLU/KEt8qaGII4WeAgo=
Subject key identifier: AB:C8:84:94:0E:A2:74:B3:F5:DB:42:11:CF:8A:25:C6:69:2E:FE:45
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 0198733D2B365C77CDD3FAE201D767D4B101
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 0796
Signing time: Mon 04 Aug 2025 04:00:45 +0000
Manifest this update: Mon 04 Aug 2025 04:00:45 +0000
Manifest next update: Tue 05 Aug 2025 04:00:45 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: Uhq9ybJwohPFuRC/AiGD9hBkcNG4xunDdmqnfASEnLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:2b:36:5c:77:cd:d3:fa:e2:01:d7:67:d4:b1:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Aug 4 04:00:45 2025 GMT
Not After : Aug 5 04:00:45 2025 GMT
Subject: CN=abc884940ea274b3f5db4211cf8a25c6692efe45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2e:bb:3b:69:35:46:b3:cf:12:09:85:f2:02:
6b:be:fa:63:58:38:82:f7:7d:8a:5c:50:d7:af:75:
fe:2f:c8:4f:02:66:8e:0e:89:c1:b7:0b:37:80:75:
e6:14:6e:63:fe:11:38:7f:12:18:a4:b4:0d:2f:82:
26:24:6a:3e:5e:24:85:df:84:db:01:73:94:ce:10:
82:25:a5:63:71:05:e7:7c:7a:88:36:9b:de:79:19:
6e:42:ca:d8:82:24:d9:66:93:55:94:99:5b:be:40:
65:15:28:7b:2b:37:81:2a:0f:5c:c6:91:04:2b:48:
0f:ef:d7:03:11:12:da:6a:9f:32:05:1b:85:1a:ad:
01:e2:6b:de:29:56:0e:4b:c7:1e:8f:87:78:9b:ff:
79:a2:0e:07:8a:21:02:01:e1:08:69:da:30:fc:67:
97:6c:45:ba:d8:4e:50:55:1e:c7:e8:7c:00:65:57:
74:f9:bb:df:49:06:9d:60:eb:bf:70:ed:3e:5a:00:
0e:e5:b2:27:81:84:de:ef:72:a2:c1:87:96:b2:10:
54:0a:48:44:2c:83:a0:b9:df:34:7d:13:8d:c2:de:
f0:79:44:38:4f:73:e1:db:c8:e7:a5:2a:52:41:2c:
32:52:f8:44:45:fb:2c:b0:d0:e3:00:ff:0e:86:26:
10:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C8:84:94:0E:A2:74:B3:F5:DB:42:11:CF:8A:25:C6:69:2E:FE:45
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:e3:7b:d2:82:0a:8b:0f:84:11:90:d4:0d:ff:df:72:5c:ec:
32:41:f1:fb:70:0d:75:5d:f0:05:55:b7:77:53:84:54:67:41:
57:a9:5e:3e:6c:4c:38:2b:08:01:fa:ec:f4:fb:89:8b:fc:6f:
12:87:c3:80:e2:64:d2:b4:4a:16:f3:77:1e:66:04:ca:60:5d:
c9:b8:2a:19:b4:bf:de:a5:b9:d5:10:5b:40:c4:d9:fa:67:bb:
84:01:f6:04:ea:c0:9b:c2:73:ee:d6:16:77:f3:83:d0:bd:15:
ea:fa:2c:1f:e3:ca:2e:da:0c:a1:8a:ab:49:47:80:53:0b:3f:
13:73:19:c8:4c:78:55:37:96:9d:34:49:4f:8e:bc:f5:85:81:
b8:f0:25:25:a9:b0:75:69:07:60:31:8b:8a:5d:fb:d6:16:44:
5d:32:d2:a0:1f:27:71:da:ae:be:78:26:d0:c8:fb:bc:84:d4:
d7:c3:f4:b2:ad:b5:bf:f7:42:13:62:31:42:ad:ec:90:f9:53:
04:45:92:2f:67:a6:6d:0e:cb:1d:f8:45:58:ed:21:1e:f2:fb:
32:94:f1:c1:5b:cd:03:10:9b:3e:e2:e3:5e:3b:f8:e9:8f:e8:
b5:ff:bb:2e:e4:63:86:86:0e:e3:bd:6d:c4:2d:ca:58:8f:00:
21:d0:82:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:35 2025 by rpki-client