Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
File: dQRxYHUyqMev1g1PMXqtxJDrogY.mft (raw, json)
Hash identifier: 2e2JQPKYBAWMSGJHcBH6krX0KQkoaGMx7rfJLCpvXgk=
Subject key identifier: E3:CF:8C:68:8F:B3:F7:5D:A9:CB:5E:7F:35:04:33:A1:B6:5D:77:07
Authority key identifier: 75:04:71:60:75:32:A8:C7:AF:D6:0D:4F:31:7A:AD:C4:90:EB:A2:06
Certificate issuer: /CN=750471607532a8c7afd60d4f317aadc490eba206
Certificate serial: 01988CFE5D5174BCAC35C66E88B348CFDBD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
Manifest number: 1620
Signing time: Sat 09 Aug 2025 04:02:16 +0000
Manifest this update: Sat 09 Aug 2025 04:02:16 +0000
Manifest next update: Sun 10 Aug 2025 04:02:16 +0000
Files and hashes: 1: dQRxYHUyqMev1g1PMXqtxJDrogY.crl (hash: yKPPZy8Si1vFR6cHbW0JYXeOpBd7bibekk0TOBLGnLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fe:5d:51:74:bc:ac:35:c6:6e:88:b3:48:cf:db:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=750471607532a8c7afd60d4f317aadc490eba206
Validity
Not Before: Aug 9 04:02:16 2025 GMT
Not After : Aug 10 04:02:16 2025 GMT
Subject: CN=e3cf8c688fb3f75da9cb5e7f350433a1b65d7707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:bc:c6:9d:65:9c:71:be:65:20:f1:6b:6d:53:
0f:9b:9e:9d:c6:ad:f1:96:e4:a7:21:b2:7e:af:f2:
90:1d:de:4d:a6:44:eb:21:1d:45:38:95:5b:f2:18:
e0:8c:46:ae:6e:9a:36:41:9f:61:6f:23:ca:40:f4:
2d:a6:62:53:f7:01:84:68:af:4e:82:5f:cd:c0:93:
df:c4:43:8c:3d:d3:f5:e0:27:74:63:47:51:38:71:
f8:94:55:92:24:96:75:84:8c:4b:8b:e7:f1:51:a6:
85:ca:5c:01:0c:9d:32:c6:c6:d9:26:f8:0a:2d:f9:
b7:e3:43:05:0c:32:35:b1:2d:4a:f7:67:50:25:21:
1d:7a:bd:a0:3a:cd:4a:ad:3a:0a:7c:36:24:1e:73:
0f:8f:09:46:17:41:22:91:d2:4c:98:4e:eb:84:0f:
f6:27:bc:da:d7:f6:48:c9:6a:b7:da:c1:1f:93:ad:
5c:07:31:2e:d3:87:1f:f0:d5:57:e7:70:2d:74:96:
45:10:f7:79:5c:30:e3:a0:01:d7:89:93:3c:97:24:
6e:37:1f:8a:bb:0d:3d:ce:91:c6:66:85:5d:7f:f1:
39:c7:e6:d3:cf:2a:2f:fa:ef:13:0e:55:4b:a3:75:
c3:f7:5f:90:aa:8b:f1:9d:28:1b:84:e9:f0:f5:bc:
c9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:CF:8C:68:8F:B3:F7:5D:A9:CB:5E:7F:35:04:33:A1:B6:5D:77:07
X509v3 Authority Key Identifier:
keyid:75:04:71:60:75:32:A8:C7:AF:D6:0D:4F:31:7A:AD:C4:90:EB:A2:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQRxYHUyqMev1g1PMXqtxJDrogY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/dfa6a1-1e4c-49ff-a480-274232d69505/1/dQRxYHUyqMev1g1PMXqtxJDrogY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:80:1d:6b:c1:83:f6:c1:63:a5:ac:3f:a1:44:9d:d3:68:80:
8d:df:37:ba:c1:34:81:c2:32:4e:3b:8a:f7:2b:c8:55:7e:8e:
40:47:09:04:70:e1:21:3d:80:cf:b0:90:8b:87:43:45:02:34:
46:8a:5f:6f:6c:89:95:6f:c2:37:25:9e:7f:03:64:06:a3:39:
f4:af:b0:d2:30:8d:2e:93:e5:23:92:0e:ae:5c:cf:80:c2:a9:
b3:cd:d7:32:f0:75:a6:e8:35:b4:4c:1e:ea:11:25:31:68:66:
16:df:6e:e9:e7:58:06:99:4c:a7:f7:68:7a:bf:9a:34:5c:8a:
cb:eb:af:61:4b:69:0b:3e:82:0b:de:a3:ed:c4:fc:50:70:1e:
8a:94:eb:22:75:6d:0a:74:c4:6f:5f:1f:4d:55:5f:53:b8:12:
71:cf:3a:02:c4:d0:b9:de:40:4d:00:4c:bf:d9:b7:60:d1:73:
eb:cf:ac:ef:5b:88:1d:6e:5e:a4:cb:9d:40:34:71:18:ef:d0:
8f:2d:2a:02:b4:96:3e:be:a1:f0:50:d3:23:41:d9:48:d4:dd:
5f:2e:fa:ab:c5:20:8a:3d:81:ae:e3:18:31:1b:83:c7:da:65:
04:9b:04:a4:f4:db:a0:94:d7:d5:32:90:d2:97:2c:39:ba:18:
be:d6:81:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:31:36 2025 by rpki-client