Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
File: FYi9izG5XpysnzgSjZW4UvA9V4Q.mft (raw, json)
Hash identifier: oA57HcdsTUE1mPKCzSa94SOrpJpmNv8ryqqzaZoplns=
Subject key identifier: A2:2E:57:23:71:EA:D0:65:99:69:96:E8:D0:A0:AA:5A:5D:D9:DA:0B
Authority key identifier: 15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84
Certificate issuer: /CN=1588bd8b31b95e9cac9f38128d95b852f03d5784
Certificate serial: 0198A04ED920EEEFDB77EC70AE2E1AED4E5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
Manifest number: 162B
Signing time: Tue 12 Aug 2025 22:02:58 +0000
Manifest this update: Tue 12 Aug 2025 22:02:58 +0000
Manifest next update: Wed 13 Aug 2025 22:02:58 +0000
Files and hashes: 1: FYi9izG5XpysnzgSjZW4UvA9V4Q.crl (hash: jHvr3acwoJmUepCl21Ku26aWToanRJmN8dJBBKGBuhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4e:d9:20:ee:ef:db:77:ec:70:ae:2e:1a:ed:4e:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1588bd8b31b95e9cac9f38128d95b852f03d5784
Validity
Not Before: Aug 12 22:02:58 2025 GMT
Not After : Aug 13 22:02:58 2025 GMT
Subject: CN=a22e572371ead065996996e8d0a0aa5a5dd9da0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f7:70:bc:17:01:7c:32:b1:cc:36:81:ac:a9:
67:3c:e7:27:a3:d1:e4:76:1d:46:c9:01:51:33:3a:
de:5c:ca:22:50:56:7a:e5:aa:ee:01:3d:45:f5:d5:
3f:54:5e:c8:43:2c:1f:b3:7b:73:47:95:a2:7e:99:
5c:bb:a7:2f:f1:79:5b:b6:0b:06:e4:e2:8d:b3:82:
4e:d2:ed:3c:54:0b:bb:15:77:e7:e5:04:c4:84:fb:
a9:fd:5c:7a:0e:bc:13:9d:ff:bc:7d:cc:b9:81:21:
b5:0b:b7:b7:6b:5f:da:63:e3:01:10:bf:6b:0f:b0:
c5:79:72:f0:93:b5:69:68:87:46:d9:62:92:0c:53:
0b:bd:0c:72:43:0a:87:c3:82:10:f8:cc:dc:8c:87:
68:86:2d:e3:55:2b:db:47:9f:73:5b:35:e3:cc:87:
87:4f:d4:24:1d:04:1d:bf:e0:e3:44:24:11:f9:43:
28:a1:c5:80:68:31:1d:74:3e:69:e9:6c:d8:de:a9:
84:d4:42:b4:b7:c8:88:bd:da:cc:1e:1f:55:8e:d5:
9c:03:7e:14:e2:61:c0:b1:8a:b7:c1:50:ec:09:d8:
0f:43:2c:85:a3:80:54:b4:97:df:e1:63:d7:c2:7a:
cf:ee:b2:da:87:4e:e1:d1:bd:e7:24:6f:b3:30:c2:
fa:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:2E:57:23:71:EA:D0:65:99:69:96:E8:D0:A0:AA:5A:5D:D9:DA:0B
X509v3 Authority Key Identifier:
keyid:15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:78:74:f3:fc:7f:fb:5d:22:c0:b4:cc:51:53:41:98:a3:55:
c0:e5:63:40:13:62:82:38:6f:95:00:05:18:30:fc:a3:75:ce:
40:8e:99:a6:74:0d:66:b5:de:12:4a:f1:e9:6c:99:e9:90:4b:
62:33:77:5e:fb:0c:67:9e:08:3a:9d:b9:38:17:ec:ae:a5:83:
08:8d:3c:09:ac:39:5a:64:95:66:1c:d7:16:2c:ba:c9:ba:e7:
72:06:16:ec:79:4e:1a:b4:c6:20:45:a5:25:7a:50:b3:df:26:
64:08:3e:ff:da:03:f0:1f:c3:22:77:28:72:04:e1:0b:18:82:
28:57:f6:18:bf:b5:8d:e3:f0:bf:69:b3:a4:13:0b:c8:d5:b3:
2a:5a:53:4b:87:b2:ec:a0:00:f4:ae:67:b6:47:dd:6e:fe:ed:
30:e3:ff:dc:f9:86:68:fd:c3:b0:5f:c8:c7:35:71:13:cb:09:
b3:cf:53:83:a3:ca:21:5f:5b:6f:0d:46:33:71:bf:6a:59:74:
43:c6:e1:90:d6:08:4b:bc:83:18:d6:9c:c8:58:ad:76:ea:75:
70:58:87:9d:c8:95:af:31:90:0d:98:c8:cc:a6:5b:2a:4e:ff:
77:58:44:65:ee:ec:64:a7:ce:6f:4f:f8:b5:c5:82:9c:b3:7d:
c0:f4:2a:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:16:34 2025 by rpki-client