Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.mft
File: _oN5mWfs0ExTYUie5M-gmM5DaHE.mft (raw, json)
Hash identifier: ymIByTs5AvMFEcpmdW7LfoB6+yyrTUT3S/tDlF6Y/1c=
Subject key identifier: AF:F7:69:A2:DF:65:AA:D8:23:28:22:7C:C7:47:A3:B4:83:D1:D0:37
Authority key identifier: FE:83:79:99:67:EC:D0:4C:53:61:48:9E:E4:CF:A0:98:CE:43:68:71
Certificate issuer: /CN=fe83799967ecd04c5361489ee4cfa098ce436871
Certificate serial: 01987D8B8395DAD4DDB8670FE4892E2783CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_oN5mWfs0ExTYUie5M-gmM5DaHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.mft
Manifest number: 1618
Signing time: Wed 06 Aug 2025 04:02:31 +0000
Manifest this update: Wed 06 Aug 2025 04:02:31 +0000
Manifest next update: Thu 07 Aug 2025 04:02:31 +0000
Files and hashes: 1: _oN5mWfs0ExTYUie5M-gmM5DaHE.crl (hash: mgtqXGfC2HyVcFYm+9dXsFRXJYw3yrMZjx7juoV4Ssw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/_oN5mWfs0ExTYUie5M-gmM5DaHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 04:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8b:83:95:da:d4:dd:b8:67:0f:e4:89:2e:27:83:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe83799967ecd04c5361489ee4cfa098ce436871
Validity
Not Before: Aug 6 04:02:31 2025 GMT
Not After : Aug 7 04:02:31 2025 GMT
Subject: CN=aff769a2df65aad82328227cc747a3b483d1d037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:71:23:28:8a:48:14:b7:aa:0f:77:12:21:80:
16:a0:38:e5:66:1e:5a:e1:33:ce:77:6d:ff:1e:65:
86:60:79:fc:20:f4:10:2a:5f:50:ab:dc:f1:c5:67:
cf:fb:40:cf:01:33:cb:24:06:5c:d8:7a:62:b3:f2:
82:a4:b3:ca:cf:b0:30:ed:7d:b7:8b:b7:bd:82:09:
9d:ca:83:6a:49:fb:74:78:bd:22:40:2e:fc:cd:12:
e1:34:11:24:66:6d:46:15:9e:1d:6e:dc:ad:0f:76:
3f:3a:81:fc:84:9f:c4:2c:4a:3a:9c:b4:1f:79:10:
35:76:a3:ff:04:c0:c8:f5:35:f8:38:6d:d7:de:da:
e5:0e:51:38:92:67:c4:4f:a2:7e:63:ec:cb:2a:1e:
af:44:2c:83:b3:1d:fc:ec:dc:6b:c6:e2:59:bb:7b:
17:f5:10:44:c6:a6:44:ce:07:18:1b:2c:97:72:29:
01:0c:b0:82:9d:71:e7:8e:07:c3:ce:6f:ee:33:20:
3b:b6:b4:8e:82:f6:cb:54:4b:64:87:aa:b2:3f:96:
12:0c:ea:51:e3:be:0e:37:d8:06:1b:e8:49:a8:0b:
b1:b0:43:d0:fc:56:76:b0:0d:19:cc:1c:79:f7:ff:
ee:0a:05:96:d4:5d:27:d8:32:94:8b:73:a9:a3:0f:
2e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F7:69:A2:DF:65:AA:D8:23:28:22:7C:C7:47:A3:B4:83:D1:D0:37
X509v3 Authority Key Identifier:
keyid:FE:83:79:99:67:EC:D0:4C:53:61:48:9E:E4:CF:A0:98:CE:43:68:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_oN5mWfs0ExTYUie5M-gmM5DaHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9af033-234d-4404-8096-c73bedcdca6d/1/_oN5mWfs0ExTYUie5M-gmM5DaHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:7a:78:e5:4f:29:bc:8a:f9:91:bb:ca:c0:ea:7a:ee:ea:e9:
d1:7e:86:a6:9c:79:76:b7:30:94:5b:c5:9c:32:e5:c1:0d:17:
9f:a1:a8:bd:4f:e5:1e:c6:01:c9:b8:5c:e5:34:7f:59:a2:6f:
53:0e:ed:be:7f:c6:76:03:2f:f5:7d:34:48:d4:2e:41:cb:a6:
2c:98:75:68:7c:dd:3b:79:24:c3:b5:94:8e:0e:9f:15:c1:a8:
04:60:86:26:8f:00:e7:96:0e:0f:fa:b3:b9:93:69:f1:a3:9d:
62:15:db:dd:68:25:53:e5:61:88:c6:73:79:b3:ee:4f:19:4d:
7e:70:15:04:75:7f:fd:2b:73:30:30:d1:18:0b:b5:f1:64:6e:
a6:f8:d7:21:06:ce:ae:bd:ea:63:74:aa:6e:16:45:a6:29:44:
48:e7:06:ef:eb:aa:82:84:ee:80:87:ff:1a:a9:74:a4:7e:af:
28:82:aa:90:41:21:5b:20:6c:99:e8:fd:a1:29:9d:87:e2:af:
47:6b:cd:2a:9c:65:1a:b3:04:6a:fc:63:05:97:b0:8b:96:bf:
f7:6d:a8:7c:23:ab:ed:4e:78:52:16:da:39:a6:2c:46:a8:4e:
3a:5f:7b:79:7b:38:53:f4:42:e8:2b:e8:72:5d:94:b3:94:8f:
25:d0:ca:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:13:11 2025 by rpki-client