Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
File: 1MiI65YKABkAwnleiq-iaPYC2EI.mft (raw, json)
Hash identifier: PYnPfAYdTzJKtYKTe6VelsMDR3BiJCeN4G/H78hKbys=
Subject key identifier: 91:92:51:2C:51:47:D1:C2:29:46:32:EB:BB:4B:CB:08:28:05:28:53
Authority key identifier: D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
Certificate issuer: /CN=d4c888eb960a001900c2795e8aafa268f602d842
Certificate serial: 01988356ACBF8E6A65D1E8B898E59A3BB8FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
Manifest number: 0B2B
Signing time: Thu 07 Aug 2025 07:02:32 +0000
Manifest this update: Thu 07 Aug 2025 07:02:32 +0000
Manifest next update: Fri 08 Aug 2025 07:02:32 +0000
Files and hashes: 1: 1MiI65YKABkAwnleiq-iaPYC2EI.crl (hash: SBe0CMO1xpmvGwtsN+zc0YpMPISRp5lciAtJaSuvdn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 07:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:83:56:ac:bf:8e:6a:65:d1:e8:b8:98:e5:9a:3b:b8:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c888eb960a001900c2795e8aafa268f602d842
Validity
Not Before: Aug 7 07:02:32 2025 GMT
Not After : Aug 8 07:02:32 2025 GMT
Subject: CN=9192512c5147d1c2294632ebbb4bcb0828052853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:78:f6:41:47:b9:b9:d3:86:fd:3f:fa:16:b3:
1a:4b:fa:15:27:51:c3:46:2c:07:d9:4c:eb:10:12:
a2:47:31:57:e6:08:8f:ff:78:40:19:d5:ef:3f:f0:
63:b2:a4:82:5e:7e:1f:07:24:be:c2:39:4c:c5:88:
48:9e:6f:03:63:3d:62:9e:0e:01:57:cc:d7:63:38:
0c:f8:9a:69:59:a8:92:26:b9:1f:df:b6:b9:01:b4:
db:29:a9:5b:e2:4a:bd:0a:7c:44:aa:a1:6a:7d:73:
b9:c6:25:99:aa:72:58:ea:e7:86:94:33:28:28:35:
f5:5d:0b:4f:6c:42:f4:34:88:c9:ff:55:4d:81:1e:
05:1e:f8:5a:93:37:41:4e:14:96:d3:68:d9:22:f3:
0a:33:65:f0:62:9c:bc:55:03:e4:5b:70:01:57:da:
c3:a2:a2:b6:fe:33:4c:63:d7:91:25:c6:40:00:8e:
8e:ed:f1:f1:8b:ac:81:0d:52:93:04:07:22:1e:ef:
5f:cf:a7:ee:c1:e3:cc:5f:b8:52:90:09:05:aa:9c:
4c:51:a1:55:f0:87:12:5b:38:a7:30:ae:63:99:72:
1d:b6:29:66:aa:44:a5:3d:d4:ea:41:21:05:a3:5b:
25:59:a6:8e:9f:07:df:07:d0:f5:3c:fb:d6:dd:f0:
c2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:92:51:2C:51:47:D1:C2:29:46:32:EB:BB:4B:CB:08:28:05:28:53
X509v3 Authority Key Identifier:
keyid:D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:f2:9f:b8:2a:4c:16:32:46:d0:46:a0:48:df:26:b5:c9:c7:
3c:52:fb:52:9a:52:13:79:62:b1:41:87:9b:71:b0:f6:08:7d:
49:96:aa:a1:53:44:14:40:39:05:3f:68:6d:17:be:88:59:48:
b4:51:8f:ea:c1:74:ab:79:2c:b8:4e:cf:2d:34:f1:96:c8:94:
05:ef:6d:38:e3:37:bd:ec:b9:8f:d2:66:b5:7a:a6:a2:6c:26:
c0:02:aa:0f:fa:dd:8c:e1:36:35:d4:34:9f:35:dc:2a:54:90:
74:c4:6d:7a:2b:e4:75:dc:1b:ee:c8:d5:17:b0:1a:97:72:5d:
bb:f9:82:d6:2d:74:03:38:62:03:f4:4e:6e:87:4c:18:3d:6c:
ca:12:5e:12:44:e8:f6:6a:2c:0b:40:27:9b:37:89:cb:71:6b:
77:e2:8b:b1:51:bd:86:d9:be:e5:4e:af:92:a1:c4:f0:56:b7:
4c:50:c0:56:49:a0:69:51:9c:6a:99:30:01:7d:53:5b:e7:3b:
9a:66:fd:d9:39:d3:82:93:02:97:21:bf:06:ef:f5:da:fa:87:
69:87:96:d4:92:fe:3b:34:1d:2f:30:3a:ce:99:79:1a:39:c4:
30:6f:bc:f2:3b:50:78:67:fc:56:61:2d:fc:bf:7e:c4:e7:84:
86:8e:f2:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 14:32:51 2025 by rpki-client