Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
File: 9aUA85diOrHVYASDVGf8zz0KOw8.mft (raw, json)
Hash identifier: sDcqhPjokfOE7+DNQ/fdlYNE/31RQOd2DkFBu/Y4R5s=
Subject key identifier: A8:45:23:2D:57:6F:87:53:16:2D:B2:D2:A5:D9:CE:02:F5:6D:3D:C7
Authority key identifier: F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
Certificate issuer: /CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Certificate serial: 019894B7324507E1720C9343DA089D60C52C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
Manifest number: 0CBE
Signing time: Sun 10 Aug 2025 16:01:30 +0000
Manifest this update: Sun 10 Aug 2025 16:01:30 +0000
Manifest next update: Mon 11 Aug 2025 16:01:30 +0000
Files and hashes: 1: 9aUA85diOrHVYASDVGf8zz0KOw8.crl (hash: E4fkBYaE89HWU0i+2MgSsj8Y8zQ8+iBLhzz+r5ruVL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 16:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:b7:32:45:07:e1:72:0c:93:43:da:08:9d:60:c5:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Validity
Not Before: Aug 10 16:01:30 2025 GMT
Not After : Aug 11 16:01:30 2025 GMT
Subject: CN=a845232d576f8753162db2d2a5d9ce02f56d3dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:1d:84:b5:2f:94:93:a4:08:5d:9d:b1:73:7f:
e7:0d:25:eb:77:ba:2a:76:fd:d5:56:3b:e3:ab:c3:
28:7f:c6:23:8a:07:65:d0:e6:f5:be:13:67:e9:fd:
13:e9:60:2e:78:e9:a0:72:9f:ff:5d:b1:5e:a5:e7:
f3:57:56:25:40:b0:88:fd:6f:3e:ff:d3:84:c4:e6:
bd:fc:8e:7f:ac:d8:6f:73:96:41:f4:a2:0f:da:0c:
ad:e6:89:ff:46:ca:97:1f:ae:45:fe:de:21:31:5d:
97:fa:28:54:8d:d0:d9:03:ff:53:3c:d3:12:11:8d:
a9:d0:f0:cb:3e:6b:b0:60:bc:a2:76:15:69:6e:f6:
0d:7a:11:45:a4:40:56:ba:5b:78:89:89:d4:e7:af:
d9:5c:75:57:bf:fb:3b:10:79:05:08:77:63:15:11:
66:14:de:ec:88:29:95:ce:b7:9a:7f:b2:50:0f:60:
45:29:b3:2f:80:85:af:4b:e6:f3:0a:1c:9a:af:a4:
96:25:38:d8:c4:da:c5:31:25:9f:bc:74:77:c4:e2:
b3:c7:f1:f3:22:3e:1a:c7:23:6f:4e:b8:63:3d:61:
35:cd:5a:10:af:31:c4:3a:d8:fe:4d:f4:f3:5f:0a:
48:10:1b:8b:26:70:8c:79:1b:1a:6b:9e:9f:0b:79:
d2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:45:23:2D:57:6F:87:53:16:2D:B2:D2:A5:D9:CE:02:F5:6D:3D:C7
X509v3 Authority Key Identifier:
keyid:F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:a9:11:73:29:c8:e9:25:0a:d6:05:ba:29:fa:67:fe:2d:af:
d8:74:d7:eb:62:ba:01:13:37:3b:c1:f1:69:e8:a2:f2:47:86:
30:a0:a9:02:14:87:97:73:a8:2c:af:d5:cd:97:9d:85:f7:fb:
0d:28:ea:d1:45:2a:03:25:50:0e:35:ec:b7:e5:9f:0f:66:a7:
bf:70:f7:c7:f4:fd:a4:35:53:4f:f2:d7:d7:64:54:16:d5:40:
f1:3a:b9:92:97:16:42:8e:3e:f5:7f:62:08:36:50:9e:0c:bd:
1c:2e:29:b0:08:80:e3:1c:4a:3c:16:74:dc:df:cc:13:6d:64:
9c:06:3d:8c:96:d6:a6:05:3b:ab:bd:72:ef:d3:69:a4:58:c9:
2c:9d:cc:f2:9c:5a:7e:f5:f7:bb:2d:42:06:68:2f:f1:5a:78:
12:75:5d:02:76:29:b9:50:df:f1:3f:06:34:d1:39:92:76:18:
3f:13:a0:5e:15:f6:ec:27:f0:b7:a6:73:34:e8:2f:8a:9f:c7:
b6:80:f8:f9:71:87:7f:61:af:ca:7c:42:85:67:c3:6b:63:1c:
8c:95:b8:cc:cc:70:00:e6:6f:7d:16:7f:a5:f0:76:83:fb:21:
0c:a5:d3:5b:75:cd:14:78:82:50:9a:9a:22:65:3d:1a:1c:51:
8a:a3:e8:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 20:59:15 2025 by rpki-client