Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
File: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json)
Hash identifier: +HO5MJCqwp5Obq4UCuYWGVYTMfcX3gDZdrMcRtzafq8=
Subject key identifier: 90:96:86:A9:A5:FD:27:27:61:15:D3:4E:70:BE:9A:0E:E5:1E:72:E5
Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
Certificate issuer: /CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Certificate serial: 019881D4F27506C51A33E7F52EA12E31D531
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
Manifest number: 0D8E
Signing time: Thu 07 Aug 2025 00:01:13 +0000
Manifest this update: Thu 07 Aug 2025 00:01:13 +0000
Manifest next update: Fri 08 Aug 2025 00:01:13 +0000
Files and hashes: 1: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: o/3Xb6QbcxzYosuLZ2QWZaxyiBBt9bVJpAg9673BvT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:d4:f2:75:06:c5:1a:33:e7:f5:2e:a1:2e:31:d5:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Validity
Not Before: Aug 7 00:01:13 2025 GMT
Not After : Aug 8 00:01:13 2025 GMT
Subject: CN=909686a9a5fd27276115d34e70be9a0ee51e72e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:09:67:2c:de:dd:3d:b0:eb:01:af:70:47:4e:
75:34:d9:f8:3b:68:45:ea:c6:f9:d9:6c:73:2b:71:
47:08:dd:89:f3:65:1e:cb:84:a3:cb:bb:64:86:64:
2b:0d:2e:77:2a:57:3e:ca:a4:25:2d:9b:1a:b1:41:
43:69:ec:40:45:0b:41:6d:74:c4:e4:97:bd:3e:81:
18:e9:6a:37:2e:2c:14:95:c2:a8:69:ee:fa:74:84:
91:76:8c:c5:e1:76:3e:92:42:54:89:47:e6:e4:0f:
6c:50:57:e6:32:de:37:06:41:d1:e4:37:fb:33:bb:
74:01:ee:0f:8f:6d:64:d9:65:e8:34:42:e6:16:a8:
06:26:72:fe:fc:1d:a0:96:9b:48:ef:09:dd:5f:9c:
41:13:18:87:9d:e3:12:a4:d0:c0:27:b8:c8:3f:d3:
c7:4f:1d:9e:ec:62:c2:bf:a6:84:34:cf:cc:08:0b:
21:8c:2a:a8:e8:ab:f1:06:dd:b2:c5:56:bb:52:8c:
a8:38:a4:12:53:92:bf:2a:58:36:cd:45:7b:80:1e:
57:ec:81:84:75:78:b9:ab:e0:f8:bd:54:78:1a:39:
3e:0e:91:cf:7f:d2:d8:c1:7a:74:00:6d:c0:6d:96:
28:0e:95:80:b5:e8:0b:26:f9:9a:7d:98:cf:be:5d:
09:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:96:86:A9:A5:FD:27:27:61:15:D3:4E:70:BE:9A:0E:E5:1E:72:E5
X509v3 Authority Key Identifier:
keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:3a:11:ab:8c:9e:d4:bb:c5:dc:62:0a:0e:3c:a1:47:c1:2d:
5e:88:db:88:ba:69:4e:8e:4b:9a:5e:84:e4:5d:ea:b1:27:c5:
01:0d:0d:89:e2:a2:cc:e0:5e:f2:d8:77:f2:a0:92:74:e5:0a:
28:c9:9f:76:56:a3:da:56:ee:d6:31:a2:07:25:a0:e5:d2:13:
71:22:9f:ab:58:49:45:5a:2b:f6:0a:6b:84:62:df:24:20:ea:
30:0f:3f:46:3b:52:06:3b:ca:65:6f:77:7b:1e:e8:9e:af:96:
74:6e:b4:5d:e3:de:95:e8:0e:fb:c2:19:ee:e2:df:c7:0a:36:
1c:e5:cb:b1:0f:c7:78:eb:90:f6:2b:94:7d:f4:e4:61:27:d7:
2a:ca:4a:5b:fe:5f:93:6f:84:b8:26:40:c4:3b:0b:6d:5e:8b:
3e:fe:72:6d:87:f3:ef:96:ee:92:25:7f:52:84:3f:ff:9e:f0:
38:85:3a:d3:39:a3:98:81:b1:20:d8:9a:80:77:e3:49:36:7e:
c6:cc:0c:81:1a:52:ad:20:5a:cb:59:48:eb:56:9c:ed:07:1b:
4f:d9:f5:7a:19:24:d4:1b:d7:6a:50:c5:8d:63:8a:b2:56:ff:
95:d1:20:72:c8:f2:12:22:e0:13:d7:e9:c7:e5:dd:ba:0c:ae:
94:c0:a2:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:02:07 2025 by rpki-client