
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
File: RK3etuoTlfaY9C51Qa70kkJiX2I.mft (raw, json)
Hash identifier: oqmMaC/sZ+Fkml9ZboxiSNr7Tzh1QVj0LYNUbDpFX4A=
Subject key identifier: 87:18:0E:BF:94:03:B1:42:5E:22:C2:1C:B6:8A:01:D0:F6:00:52:A0
Authority key identifier: 44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62
Certificate issuer: /CN=44addeb6ea1395f698f42e7541aef49242625f62
Certificate serial: 01987F78764C1F2F850B5E45994873A1B589
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
Manifest number: 161A
Signing time: Wed 06 Aug 2025 13:00:57 +0000
Manifest this update: Wed 06 Aug 2025 13:00:57 +0000
Manifest next update: Thu 07 Aug 2025 13:00:57 +0000
Files and hashes: 1: RK3etuoTlfaY9C51Qa70kkJiX2I.crl (hash: ZOA1k/TAmgDBxqCYazpbtdtuJcvXLZhVQN0Kqn3LbzQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 13:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:78:76:4c:1f:2f:85:0b:5e:45:99:48:73:a1:b5:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44addeb6ea1395f698f42e7541aef49242625f62
Validity
Not Before: Aug 6 13:00:57 2025 GMT
Not After : Aug 7 13:00:57 2025 GMT
Subject: CN=87180ebf9403b1425e22c21cb68a01d0f60052a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d2:ec:2b:38:ff:bc:be:8b:f7:f0:7a:33:05:
4a:32:ef:ad:df:0a:cb:28:d4:62:45:a2:71:9f:a0:
1a:32:ce:ca:00:38:aa:5a:b3:ef:e9:ee:d1:6a:4e:
79:00:12:d3:74:58:d1:bb:f2:a2:5c:c2:90:cd:09:
9a:2c:a9:fd:d3:52:df:55:48:88:fb:2c:b8:0c:b4:
86:f6:d2:5e:02:ad:21:e8:ed:29:13:de:73:81:c0:
fc:35:5d:13:3b:56:0c:18:fe:98:25:f4:45:d2:76:
99:51:ab:13:9b:3a:0a:a5:d1:2b:f2:56:e7:12:da:
d2:5f:47:47:65:e7:72:45:e5:3e:a0:c9:c8:c3:13:
a5:9c:c0:74:e9:8e:e6:3a:bb:2a:08:95:0a:94:ec:
2f:e2:37:51:bd:b3:53:81:76:7b:bd:43:6b:13:99:
04:fe:7c:66:6b:c8:f6:6c:b7:9f:a5:f9:2d:b7:81:
70:95:40:4f:4d:38:20:e9:4f:eb:7c:14:02:69:75:
1e:1b:37:c3:19:80:48:23:3a:d0:e7:67:e2:95:dd:
81:08:fd:a3:30:d2:4e:b2:f0:2d:13:e0:19:45:d4:
42:0e:f9:98:26:77:d6:5d:7f:fc:18:46:6a:4f:55:
85:1e:c6:c2:68:d3:9c:96:be:ee:23:cb:96:41:c2:
0e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:18:0E:BF:94:03:B1:42:5E:22:C2:1C:B6:8A:01:D0:F6:00:52:A0
X509v3 Authority Key Identifier:
keyid:44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:87:74:f3:a7:d1:01:24:37:ee:32:71:d6:0b:89:0b:0e:cc:
8e:a7:9e:82:63:05:6c:8a:36:38:dd:2e:6f:3f:7b:0c:80:2c:
53:41:ba:79:b7:59:78:0e:e0:f8:9f:9e:95:5c:99:42:dc:90:
c7:8d:f7:5e:94:15:51:fc:5d:8f:6d:a7:00:85:95:63:fd:14:
2c:e6:09:a1:d5:82:e5:a4:c2:2b:e8:a5:0a:cd:e3:95:d8:71:
cc:d9:f5:fe:ac:0f:02:6b:bf:fa:4f:26:08:96:4b:bd:a5:57:
b8:4f:fa:c7:27:21:e5:d3:b3:7f:e4:e1:3a:90:fe:3d:90:03:
ec:16:5b:e1:f9:4e:46:e9:5d:51:65:bd:85:25:15:95:8c:35:
37:b0:dc:17:61:56:f7:38:03:e0:65:71:9b:ea:f6:83:74:13:
d7:ec:56:b0:b1:a9:cc:72:91:3e:59:ef:cd:16:dc:d9:43:ec:
bd:4c:cc:84:61:08:f9:78:9b:80:d7:ff:66:79:43:a8:4a:9e:
55:66:f7:27:c4:d1:98:df:ce:f5:18:3d:71:30:a9:f5:ec:77:
c3:02:50:98:28:a9:42:00:a3:29:3c:f4:20:f4:d0:8a:be:da:
62:c7:84:64:37:66:25:ec:85:91:55:ac:e4:f9:63:18:f4:ca:
af:1e:ad:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 16:21:11 2025 by rpki-client