Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: qt/web3otHGs4rjTvxXkzZYNjsXNnjuqov0QIkvtw7o=
Subject key identifier: 00:CF:23:DD:64:88:A0:1E:B4:39:EE:47:1C:71:46:64:C4:1B:FD:19
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 019891B5A1E718A0EF43D116F7C800C7A10B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 08AE
Signing time: Sun 10 Aug 2025 02:00:56 +0000
Manifest this update: Sun 10 Aug 2025 02:00:56 +0000
Manifest next update: Mon 11 Aug 2025 02:00:56 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: aT93i8TF7PUrT5/OcUqhL2JFdKd8BcvOJe+LDC9DgFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:b5:a1:e7:18:a0:ef:43:d1:16:f7:c8:00:c7:a1:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: Aug 10 02:00:56 2025 GMT
Not After : Aug 11 02:00:56 2025 GMT
Subject: CN=00cf23dd6488a01eb439ee471c714664c41bfd19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a2:de:cd:3d:75:61:85:97:93:81:71:28:0a:
52:b7:8f:1f:1d:29:45:92:9c:06:a2:40:45:c2:0e:
30:ab:be:11:cd:0c:54:e7:f0:57:24:c3:d9:7d:0b:
94:cc:f7:9b:4d:99:f8:44:ff:9e:04:0e:96:22:d5:
19:29:50:a3:0f:b8:75:50:9f:4a:d4:cb:54:64:45:
15:d0:2c:c2:7d:54:1f:65:68:ec:45:1d:0e:32:e8:
25:e7:96:88:16:f8:e2:da:d3:e6:44:7c:a0:da:02:
85:52:0b:8a:09:46:c1:fb:ef:be:02:b5:78:b6:63:
9a:91:56:f5:3f:53:85:57:26:74:9d:42:c1:ec:f8:
75:21:a1:8d:3c:70:33:c4:ac:a4:d8:75:d1:f3:e0:
18:94:3c:43:6c:5c:4a:ad:ba:17:4c:21:72:bf:37:
75:99:bb:95:58:a5:70:f2:44:d7:56:21:67:61:01:
32:b9:0d:b0:1c:ad:6f:14:0b:9e:7b:79:5b:cd:73:
e4:a4:18:50:33:b3:b9:28:1b:83:b7:06:f3:b1:14:
8f:36:dd:82:ca:d3:82:7a:48:22:bb:8e:bc:ef:1c:
5a:2d:91:7c:38:ea:24:4f:d3:6d:72:70:99:0f:a8:
bc:66:9a:69:cd:0d:6b:bf:fc:4a:74:b3:69:2f:79:
0d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:CF:23:DD:64:88:A0:1E:B4:39:EE:47:1C:71:46:64:C4:1B:FD:19
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:b5:62:76:e2:99:6b:67:21:2a:bf:01:c3:44:45:48:7f:d3:
67:c4:ae:aa:7b:3d:21:28:c6:43:38:00:d5:5d:ce:0b:3c:6b:
9a:d6:70:b5:59:0d:29:40:69:4c:3c:4e:83:f2:28:e6:6b:e3:
39:19:91:90:d5:1e:b5:8e:9d:d0:2f:d1:53:03:ad:bc:10:8d:
c6:8a:9e:d1:55:72:c8:29:b3:73:88:6b:12:ca:8a:cd:db:6c:
57:80:74:5c:30:8e:f0:62:12:6a:a3:be:82:e0:59:41:8d:b8:
20:29:55:47:c9:4c:d0:66:8e:f7:7a:63:a1:f2:98:bb:35:44:
b4:bd:c6:71:92:45:63:25:4e:1f:af:14:da:50:89:63:f3:00:
6c:b5:dc:e4:2e:0f:f6:c1:53:58:14:af:ad:34:68:6a:2c:4d:
8b:98:66:e5:9e:26:bb:e7:8c:4c:98:7d:c7:bd:bc:8e:c0:fb:
93:b9:0e:a0:9c:b5:37:19:e0:db:b3:ca:5c:af:76:3f:a5:2b:
65:ac:ab:b3:01:51:c2:80:5d:7b:c0:f0:6f:d1:35:92:7e:03:
42:2c:89:9d:68:fc:e5:a8:59:52:cc:29:09:88:f6:f3:f0:49:
0c:8e:32:57:27:e3:9b:79:f7:cd:23:06:26:16:a0:8a:e5:9b:
e9:ce:a8:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 05:38:59 2025 by rpki-client