Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
File: 8A5uimGIP2gBZbX0FUhfjw1PWo0.mft (raw, json)
Hash identifier: zLP1joPmq2iqpKORJo7+nPi+A3xmzNBeg0r2VNh8z/k=
Subject key identifier: FA:1C:C3:F4:6B:46:3B:C2:1F:C2:6E:1A:F9:DB:A2:76:CC:CB:35:73
Authority key identifier: F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
Certificate issuer: /CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Certificate serial: 01989ECC74E298166CDDB03C5634F99FB5A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
Manifest number: 1326
Signing time: Tue 12 Aug 2025 15:00:56 +0000
Manifest this update: Tue 12 Aug 2025 15:00:56 +0000
Manifest next update: Wed 13 Aug 2025 15:00:56 +0000
Files and hashes: 1: 8A5uimGIP2gBZbX0FUhfjw1PWo0.crl (hash: QCmDVb6oNhEgFIdg5FU6LDWoer/d/Oz6n/EgrX1EbvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9e:cc:74:e2:98:16:6c:dd:b0:3c:56:34:f9:9f:b5:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f00e6e8a61883f680165b5f415485f8f0d4f5a8d
Validity
Not Before: Aug 12 15:00:56 2025 GMT
Not After : Aug 13 15:00:56 2025 GMT
Subject: CN=fa1cc3f46b463bc21fc26e1af9dba276cccb3573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:41:4d:b1:19:d0:37:af:2c:84:0a:54:2c:bd:
30:ab:e8:b2:5b:7c:a7:8e:dc:83:8e:df:bc:a1:5a:
6d:3c:e1:0d:9c:57:45:91:e8:88:f2:a7:70:ba:98:
99:1f:f0:17:13:81:ef:07:f1:fd:12:65:70:87:d0:
22:e2:08:bf:7d:fc:2a:ff:39:e6:9c:c0:59:25:8c:
be:0b:52:eb:fb:37:f0:e1:2d:34:2d:0a:62:84:28:
20:0a:dd:de:d0:0b:31:38:52:3f:72:f5:a5:86:10:
b1:35:63:64:8c:55:a3:f9:18:3b:ef:7e:ed:5d:13:
71:75:dc:fa:4a:25:5b:7d:8a:8a:6b:0b:f4:56:3f:
28:9d:95:b2:af:15:62:2b:fa:b1:ea:b3:de:75:b0:
7c:e0:dd:3e:0d:d3:a3:a3:41:f2:d3:31:a3:61:bf:
2b:24:9c:44:27:5d:f8:df:7c:31:d6:5f:23:74:ed:
95:31:1e:dc:4b:34:f7:16:19:c1:77:ba:2a:48:23:
ce:4c:68:3e:38:45:60:c6:30:3a:ab:78:b3:31:31:
fd:af:87:ce:af:4a:0c:f2:25:04:f2:5c:45:07:95:
56:1f:a1:b2:5e:06:94:98:2f:cc:c4:b3:33:17:41:
19:4b:43:26:e5:87:94:fd:d3:f0:2a:c3:dc:e6:e3:
7a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:1C:C3:F4:6B:46:3B:C2:1F:C2:6E:1A:F9:DB:A2:76:CC:CB:35:73
X509v3 Authority Key Identifier:
keyid:F0:0E:6E:8A:61:88:3F:68:01:65:B5:F4:15:48:5F:8F:0D:4F:5A:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8A5uimGIP2gBZbX0FUhfjw1PWo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/842815-138a-43da-872c-3cff14828dfd/1/8A5uimGIP2gBZbX0FUhfjw1PWo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:1c:95:36:d2:6c:34:64:78:22:34:7a:37:b9:9a:c8:a9:5a:
6f:e3:15:0c:77:d2:1c:ea:98:00:40:98:fe:d2:e9:60:cd:b2:
f0:c6:02:f5:86:33:d0:a8:23:85:6a:27:32:62:dc:e0:e0:11:
7b:1e:73:b5:c1:80:01:9e:3d:23:8f:d0:5f:89:99:3e:dc:a1:
e6:41:96:6b:c2:96:d3:f7:9d:d4:bc:17:b4:70:51:3a:36:63:
e2:b4:72:b9:d9:c4:5f:ff:0e:3c:74:33:23:ad:d2:9f:32:99:
e8:a7:f8:56:83:76:73:dc:67:39:93:06:e5:b2:05:dd:ef:da:
0c:60:c3:e7:cc:61:2c:66:3c:0f:30:1c:e7:34:a4:1c:97:a8:
24:e6:23:e0:4b:8b:93:4f:a6:9f:9f:91:25:7e:6d:08:e5:b0:
eb:97:0e:c4:d3:30:56:27:cb:f3:80:89:31:c4:3c:dd:e2:97:
23:2c:f9:b3:89:4d:6f:ad:44:88:84:69:07:54:79:a2:e3:23:
07:49:95:ec:57:e6:93:00:0e:09:eb:d6:23:c7:c1:51:71:ab:
80:ce:16:62:06:20:69:60:4a:cb:97:a2:f4:3e:f3:d1:24:b0:
41:b9:37:b5:a3:e0:ab:d9:33:e0:c7:f5:74:85:a8:4d:d6:d2:
91:83:d1:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:46:17 2025 by rpki-client