Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
File: 20YNIBeVpqmS7UrBi7fFLBCLeFI.mft (raw, json)
Hash identifier: LPV8Pp6T1fmzztnzCXtFsT6WrurxY1oW+4cyEfPJz7s=
Subject key identifier: 92:CF:22:D6:4E:D6:D4:CA:5C:85:74:A4:F6:5C:FB:C6:CF:F1:17:11
Authority key identifier: DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
Certificate issuer: /CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Certificate serial: 01987298DFBE275E2D3CDBD4FA9FFBF2E425
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
Manifest number: 1612
Signing time: Mon 04 Aug 2025 01:01:17 +0000
Manifest this update: Mon 04 Aug 2025 01:01:17 +0000
Manifest next update: Tue 05 Aug 2025 01:01:17 +0000
Files and hashes: 1: 20YNIBeVpqmS7UrBi7fFLBCLeFI.crl (hash: FM4EW01Gy+/srrqNMLbUu2J6G87sQR5WqR6alp73qdA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:df:be:27:5e:2d:3c:db:d4:fa:9f:fb:f2:e4:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Validity
Not Before: Aug 4 01:01:17 2025 GMT
Not After : Aug 5 01:01:17 2025 GMT
Subject: CN=92cf22d64ed6d4ca5c8574a4f65cfbc6cff11711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:10:48:c7:23:21:00:0c:91:93:0e:75:7a:54:
ff:97:f6:b2:10:ee:3b:af:1d:7f:87:c4:df:18:49:
f9:6e:e2:93:57:3a:18:09:34:53:77:8d:31:85:9d:
de:78:fc:94:59:6b:c0:e8:87:bf:6a:97:8f:c3:34:
b3:44:e2:41:b8:6d:55:cc:47:0c:73:83:aa:13:41:
11:00:23:e0:7a:2b:cd:30:e0:5d:fe:98:d0:3e:c6:
df:44:23:d6:df:35:f0:3a:1a:c2:3c:fd:b0:69:41:
8a:11:7b:1d:c5:48:58:00:9f:ce:80:43:e6:17:53:
6f:c9:21:91:aa:cb:a2:13:ad:27:2e:a8:d1:2d:2d:
cb:0f:0e:3e:bf:a3:08:ca:3c:18:ce:51:35:19:18:
4e:32:cf:57:36:b3:58:8b:7e:96:ca:90:ee:fe:c0:
ee:19:79:f3:2d:cf:7b:e0:03:74:03:d2:b4:11:00:
14:3d:e4:e8:97:76:2a:fa:4d:7b:99:39:9c:11:95:
6c:2c:4d:3a:8f:ad:a8:c0:e1:73:68:3f:36:26:82:
eb:e7:79:9f:72:8f:67:85:11:8a:5d:3b:5f:34:c2:
af:c0:35:c2:2e:7b:44:ab:6b:29:e7:74:5e:2f:a8:
32:cc:df:da:8c:42:ad:04:a8:d7:94:9b:a4:45:33:
ed:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CF:22:D6:4E:D6:D4:CA:5C:85:74:A4:F6:5C:FB:C6:CF:F1:17:11
X509v3 Authority Key Identifier:
keyid:DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:db:74:e8:d6:5e:96:c5:98:82:cc:dc:85:e1:da:26:fa:a3:
46:3d:c0:cd:13:19:ef:a9:82:66:8c:08:46:68:88:d3:be:03:
ab:3b:3f:2f:fd:3d:5c:57:95:68:bd:58:fa:28:1b:03:82:3b:
5e:c6:dd:62:9e:17:00:0e:5c:6c:99:1a:3d:57:70:49:e7:5a:
c5:8c:16:e6:9e:f4:98:e9:60:01:91:8e:90:1d:a9:08:35:9f:
66:29:ea:d0:f8:87:c3:f4:aa:c2:66:0c:3a:1a:8e:bc:be:f9:
44:c4:3e:66:d3:11:ed:98:95:c4:46:ba:4a:da:ae:2e:6c:e5:
2c:54:fe:ef:8d:74:06:ad:8f:b5:b3:5b:16:3f:7c:65:bb:f4:
c4:e9:c6:2e:6e:a6:49:da:29:1c:31:8f:e9:c8:6d:fb:ed:96:
91:d4:a2:29:72:8c:73:38:49:25:d1:08:8a:ac:b2:b7:0a:66:
ae:7f:a1:f3:55:66:ec:62:a1:cb:87:c0:08:c6:8c:fa:b3:5a:
c3:c2:c6:a6:6c:c3:15:9b:79:a3:92:44:6e:be:36:08:d2:4c:
4c:3c:2b:5e:84:f5:9c:e8:63:e7:9b:7a:1b:7c:26:49:7b:c7:
7f:4b:60:98:73:ec:b1:ce:1c:f3:38:13:7b:ed:44:28:62:7e:
13:43:1a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:25:38 2025 by rpki-client