Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
File: ISApS0bJAtk8B5wWhs_kW7ozGMs.mft (raw, json)
Hash identifier: LPTmK34woM9kdN52uH4Dte8TSLTXPUiSFtwLoucfztU=
Subject key identifier: D5:56:C8:B4:0F:85:65:19:8D:AC:B9:0E:D2:8E:24:6E:C7:A4:D3:F5
Authority key identifier: 21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
Certificate issuer: /CN=2120294b46c902d93c079c1686cfe45bba3318cb
Certificate serial: 019873E24F688EC526174CFCAF0C4C5A6500
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
Manifest number: 0DAD
Signing time: Mon 04 Aug 2025 07:01:07 +0000
Manifest this update: Mon 04 Aug 2025 07:01:07 +0000
Manifest next update: Tue 05 Aug 2025 07:01:07 +0000
Files and hashes: 1: ISApS0bJAtk8B5wWhs_kW7ozGMs.crl (hash: tlshLer6RzlcodorvcI3Xml6QqkzR0uRiCLvP3Tz6Xk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:4f:68:8e:c5:26:17:4c:fc:af:0c:4c:5a:65:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2120294b46c902d93c079c1686cfe45bba3318cb
Validity
Not Before: Aug 4 07:01:07 2025 GMT
Not After : Aug 5 07:01:07 2025 GMT
Subject: CN=d556c8b40f8565198dacb90ed28e246ec7a4d3f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4d:9c:50:29:40:45:82:d7:cd:7e:18:99:f4:
49:9f:a7:34:a8:ba:f0:55:bb:28:06:39:d1:b4:9d:
50:92:99:92:fc:8e:04:46:0d:bc:96:f3:8e:c8:9e:
67:d1:11:04:cb:90:82:45:1a:6c:69:f5:79:3f:84:
60:77:5d:40:2b:ee:67:3b:35:3f:10:95:fb:ce:64:
a5:75:89:2d:a9:95:b3:1c:df:29:94:28:bf:f3:15:
54:f8:e4:b2:99:60:1e:fc:0f:e6:49:9d:3d:42:7a:
06:e9:97:8a:a1:d9:7a:55:07:76:0c:e3:45:38:65:
f7:ed:96:15:37:d4:ee:4e:92:eb:b9:90:f9:76:19:
1b:a6:e1:70:9c:15:b6:01:bd:6b:41:a8:4c:31:4b:
21:8d:04:7c:b6:85:d6:b3:68:87:65:66:6b:f8:a2:
1b:ea:66:54:7c:23:30:b6:e0:71:a8:b3:9f:1d:4e:
50:67:8d:59:63:59:e9:58:63:fd:58:40:1f:6e:89:
dc:3b:84:6f:2b:3e:b6:73:37:01:d2:ec:be:57:57:
ed:b4:7e:98:5d:72:b0:9f:40:93:71:30:79:32:c8:
8d:2e:6c:ec:65:cc:ad:7a:e8:08:44:c5:96:00:d0:
8e:65:51:86:04:2d:36:96:53:63:0e:94:79:00:de:
94:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:56:C8:B4:0F:85:65:19:8D:AC:B9:0E:D2:8E:24:6E:C7:A4:D3:F5
X509v3 Authority Key Identifier:
keyid:21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:c1:4b:88:f9:71:21:18:ee:66:6d:10:2f:b9:5c:0a:f2:eb:
24:03:40:c4:bd:fc:f1:0a:bc:1d:ca:2c:07:c2:8a:5e:91:40:
61:86:7f:e8:d8:78:b6:1d:82:4c:e4:d9:e3:e1:e2:2d:53:69:
f2:ac:f5:3f:3e:0c:10:c1:e7:59:35:05:2a:d7:65:c1:e8:cd:
2b:f8:2a:2a:be:97:78:27:a7:d1:22:8d:5e:e6:0a:4d:de:79:
34:f7:12:9e:10:cb:44:7a:14:ac:6d:16:9b:61:23:75:95:00:
d3:b3:f0:58:3f:42:00:e5:da:32:f0:63:44:33:da:73:ff:31:
8b:04:b7:ea:9d:8f:21:9e:f0:aa:32:88:b2:eb:55:27:ae:10:
b1:94:5d:25:70:29:60:b1:8d:87:8a:f6:71:42:0c:f4:6a:9e:
9c:a2:30:02:a4:e4:89:4b:fe:7b:3a:8d:57:34:3f:72:a6:ac:
dc:f6:41:99:94:1b:81:11:fa:75:cf:56:2b:20:c4:36:ea:e4:
4d:6e:8f:5a:27:fe:10:18:c0:38:5a:42:c2:6e:d3:14:08:89:
64:15:b4:4e:b3:65:0d:ee:48:6f:a1:7b:1a:de:73:1c:6f:2e:
70:8f:33:d2:56:91:2b:d7:45:a1:7b:54:a8:6c:62:a7:a3:80:
8f:b2:5f:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:14:58 2025 by rpki-client