Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
File: iwUOQskY3jwnNm3vQzph8Tw7FrI.mft (raw, json)
Hash identifier: R+K4f0YGWHta7HgUb3opFlq2eHvOfpmCvjrL2ca2fKc=
Subject key identifier: C9:17:02:D3:4C:39:BC:97:E7:8F:51:57:74:8E:40:12:F3:2A:61:C5
Authority key identifier: 8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2
Certificate issuer: /CN=8b050e42c918de3c27366def433a61f13c3b16b2
Certificate serial: 019873E3549D1830DA0D001F21CC7AB07D37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
Manifest number: 1613
Signing time: Mon 04 Aug 2025 07:02:14 +0000
Manifest this update: Mon 04 Aug 2025 07:02:14 +0000
Manifest next update: Tue 05 Aug 2025 07:02:14 +0000
Files and hashes: 1: iwUOQskY3jwnNm3vQzph8Tw7FrI.crl (hash: vmXlfQc4Aa/TqqRDzRXpQUn/+WWJeL0LoHY2nUzfz3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:54:9d:18:30:da:0d:00:1f:21:cc:7a:b0:7d:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b050e42c918de3c27366def433a61f13c3b16b2
Validity
Not Before: Aug 4 07:02:14 2025 GMT
Not After : Aug 5 07:02:14 2025 GMT
Subject: CN=c91702d34c39bc97e78f5157748e4012f32a61c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:dc:01:8e:12:8d:9b:76:ba:80:2f:f4:0e:a8:
27:e7:68:da:e3:61:b1:e3:96:5d:b5:62:b0:9a:d0:
ab:7f:54:8c:de:71:24:6f:e4:69:64:b4:0b:a7:71:
24:d1:40:e2:67:6d:ed:13:c0:5b:8c:64:f3:8d:d4:
b8:8a:72:8c:4b:66:07:71:a3:2c:18:98:fa:16:f6:
60:04:78:d1:7d:fe:fd:d3:f4:65:b1:93:cf:39:f6:
88:4a:34:41:11:e3:74:be:46:b7:db:e1:59:ec:17:
5e:a6:aa:67:35:bf:f8:d5:76:d4:0f:de:27:b1:31:
38:60:c8:0a:ec:db:59:44:58:39:bf:e0:52:e4:08:
10:77:03:99:f1:6d:9b:83:3a:92:58:e2:10:77:6a:
c5:cc:81:d3:23:30:de:75:a5:a7:1f:5c:af:85:6c:
f4:74:1d:0f:29:19:2d:be:88:11:4f:65:a5:1d:70:
1e:10:42:94:82:8a:9d:bc:0c:f2:de:4f:aa:a1:a8:
28:ad:c2:24:9f:0f:fc:37:b5:30:13:2b:48:58:d6:
ff:0f:24:56:30:68:e6:aa:8b:94:6a:6a:29:7b:1a:
0d:23:8f:ea:1f:02:67:9e:10:0d:e7:09:2e:62:9d:
48:54:1e:46:21:1f:a4:e0:db:af:7d:49:87:0b:c5:
ed:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:17:02:D3:4C:39:BC:97:E7:8F:51:57:74:8E:40:12:F3:2A:61:C5
X509v3 Authority Key Identifier:
keyid:8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:64:8d:35:65:20:f6:ea:57:e2:ed:10:d5:d6:72:d9:f0:6c:
f9:7a:b8:d6:fc:49:88:68:2a:d4:1d:bd:29:1e:71:c7:06:9d:
f4:cc:79:a0:75:de:1d:17:22:01:33:98:79:23:d9:09:53:79:
d5:c5:2f:33:a9:90:fb:db:db:7f:fe:17:26:2d:62:46:e6:04:
f6:72:bc:34:e7:49:98:e5:ac:23:ab:16:0b:1c:a8:d0:73:bf:
0d:5c:56:74:82:f6:e3:1b:a5:6f:0b:ac:c9:cd:76:17:86:bc:
cd:27:f0:a6:5f:27:4d:65:ad:2e:bd:d7:12:40:c9:87:36:2f:
92:5c:42:1e:ba:7b:f9:03:42:39:59:5e:21:9d:97:51:79:74:
2f:0c:9c:44:7d:33:68:7a:6c:ea:62:ed:94:8a:0e:99:6d:6a:
5d:67:b8:97:b5:73:70:e0:bd:74:52:fb:2f:8d:2c:13:68:7e:
d4:8a:9f:41:53:25:40:25:a6:57:b7:d6:f9:cc:5e:d6:1d:ed:
99:0b:bf:4c:ce:08:07:24:c7:4f:15:d4:18:1d:ae:76:00:27:
83:72:d7:89:71:a2:40:60:ba:24:95:81:e7:2a:f9:c8:61:33:
94:4e:33:d7:85:55:f3:34:34:8e:ff:6b:ba:d5:ae:ec:18:60:
ef:b5:b0:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 10:59:18 2025 by rpki-client