Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
File: coCW6KzXbpqhfz62eAQG49pWPtI.mft (raw, json)
Hash identifier: ajcOG5L+uerA1hmzFxhjze7I+v1U4bowVRPAeEhkLig=
Subject key identifier: 58:CD:D7:F5:A3:08:5C:0C:A6:03:E9:6F:62:AA:D0:E2:DC:E0:F3:F3
Authority key identifier: 72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2
Certificate issuer: /CN=728096e8acd76e9aa17f3eb6780406e3da563ed2
Certificate serial: 01989780AD8BB9027B1B16BA06978670F8C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
Manifest number: 14E3
Signing time: Mon 11 Aug 2025 05:00:49 +0000
Manifest this update: Mon 11 Aug 2025 05:00:49 +0000
Manifest next update: Tue 12 Aug 2025 05:00:49 +0000
Files and hashes: 1: coCW6KzXbpqhfz62eAQG49pWPtI.crl (hash: kCkgOaYSHqRGnm4uFwgRjK9Aehz4Z4yteZs5HCklFIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:80:ad:8b:b9:02:7b:1b:16:ba:06:97:86:70:f8:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=728096e8acd76e9aa17f3eb6780406e3da563ed2
Validity
Not Before: Aug 11 05:00:49 2025 GMT
Not After : Aug 12 05:00:49 2025 GMT
Subject: CN=58cdd7f5a3085c0ca603e96f62aad0e2dce0f3f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:91:0d:5a:f0:b9:f6:6a:25:ce:ca:90:2e:6d:
1a:ca:e4:6a:20:63:60:fa:ee:c8:7d:94:0b:23:22:
bd:9e:c4:87:5d:2a:18:e3:4d:b6:4b:40:ef:fc:f1:
8d:c6:ef:73:47:57:61:b1:93:56:24:29:20:13:23:
fd:f0:be:b3:63:3d:59:ee:d9:d3:2b:11:20:1c:2c:
88:39:15:13:66:26:a1:f2:b9:41:6f:9f:8d:d2:e7:
6d:36:f7:f5:2f:a9:9d:7f:e7:99:6d:84:91:5b:f5:
11:c2:81:25:dd:b4:00:52:69:cb:77:d1:36:39:48:
6d:53:00:b9:78:11:df:b7:09:49:03:34:5d:ae:03:
a0:9a:6d:07:dd:c9:91:ea:f9:20:89:78:f6:b5:da:
3a:25:9c:67:4e:ad:8c:ce:90:79:e4:81:fe:74:3d:
b5:c3:b7:3c:32:64:37:ef:b5:bb:a2:1b:98:2d:42:
b2:68:80:35:7c:f5:56:73:ba:cb:06:a3:0c:22:86:
b5:8b:2c:97:2e:1a:fa:91:b0:9f:dc:c8:69:c0:a5:
3b:21:c2:b3:a3:90:4d:0c:f2:d0:9f:7a:78:19:a5:
d6:e0:f5:cb:38:1d:21:2f:31:2b:57:17:b6:75:b1:
46:3c:f1:6d:13:fd:34:9b:91:7e:c9:dd:2a:99:3c:
3a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:CD:D7:F5:A3:08:5C:0C:A6:03:E9:6F:62:AA:D0:E2:DC:E0:F3:F3
X509v3 Authority Key Identifier:
keyid:72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:20:da:a8:b1:ad:36:a8:e8:83:27:15:8d:25:45:3d:2b:28:
d6:3a:30:c6:42:60:bd:82:bc:7d:d8:aa:43:c3:57:ef:bc:a8:
74:8f:64:a3:0c:96:5e:d8:5f:2b:c7:9e:8a:bf:44:c8:93:9e:
09:c4:48:db:bc:94:12:e1:61:d1:e0:a4:a0:be:3d:bf:a5:a0:
9f:a1:2d:d4:55:e4:e0:b6:15:af:05:b0:05:84:dd:34:38:9e:
e6:4a:22:5a:3a:5f:e3:a4:67:2f:29:26:27:cc:53:44:72:9b:
74:4b:bf:63:03:b0:2b:d5:5b:65:eb:e4:04:8f:49:00:28:d7:
01:56:27:c2:50:f8:f0:db:f9:4c:4f:9e:08:4c:cf:86:fe:4b:
4e:73:0e:99:d7:95:00:f3:6c:19:ac:63:31:45:d7:c5:db:28:
96:ef:65:36:7e:0d:12:2f:59:44:d3:e8:29:55:aa:55:d2:94:
7a:40:b2:1f:60:89:2e:68:f8:f3:75:86:45:4a:68:2a:b4:91:
ff:1f:08:0b:70:91:3a:b2:76:40:55:72:13:91:89:85:39:e7:
6d:81:b5:0e:67:50:f0:2c:d2:37:e1:32:ba:f9:e1:c5:0b:93:
4d:31:f6:9e:ba:c4:cd:2e:cf:37:16:fd:79:0c:e6:c2:0f:2a:
5f:e0:34:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:31:06 2025 by rpki-client