Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/cec327-38e1-4af4-a08f-77cfd215b732/1/pHXmUfgaq2AzkvJVIbfJq1vSgcA.mft
File: pHXmUfgaq2AzkvJVIbfJq1vSgcA.mft (raw, json)
Hash identifier: uTfjIKTZQjmQBZO6mqrRGkx9YMPC+l2SU6TcD8L6MnQ=
Subject key identifier: 92:A3:4F:4F:F7:C7:CA:2E:97:30:AC:4C:51:FF:E4:C2:06:2C:B8:B0
Authority key identifier: A4:75:E6:51:F8:1A:AB:60:33:92:F2:55:21:B7:C9:AB:5B:D2:81:C0
Certificate issuer: /CN=a475e651f81aab603392f25521b7c9ab5bd281c0
Certificate serial: 01987B2DDC5741EA6EB26C017AF2C8C60BF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHXmUfgaq2AzkvJVIbfJq1vSgcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/cec327-38e1-4af4-a08f-77cfd215b732/1/pHXmUfgaq2AzkvJVIbfJq1vSgcA.mft
Manifest number: 0447
Signing time: Tue 05 Aug 2025 17:00:59 +0000
Manifest this update: Tue 05 Aug 2025 17:00:59 +0000
Manifest next update: Wed 06 Aug 2025 17:00:59 +0000
Files and hashes: 1: pHXmUfgaq2AzkvJVIbfJq1vSgcA.crl (hash: 1YAgG1wJ8TJ1WiSGTjjvwlTe0lhZF84v0187x8iITjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/cec327-38e1-4af4-a08f-77cfd215b732/1/pHXmUfgaq2AzkvJVIbfJq1vSgcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/cec327-38e1-4af4-a08f-77cfd215b732/1/pHXmUfgaq2AzkvJVIbfJq1vSgcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pHXmUfgaq2AzkvJVIbfJq1vSgcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:2d:dc:57:41:ea:6e:b2:6c:01:7a:f2:c8:c6:0b:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a475e651f81aab603392f25521b7c9ab5bd281c0
Validity
Not Before: Aug 5 17:00:59 2025 GMT
Not After : Aug 6 17:00:59 2025 GMT
Subject: CN=92a34f4ff7c7ca2e9730ac4c51ffe4c2062cb8b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cf:48:6c:ab:6d:6d:49:b2:3d:b6:f2:7e:c5:
34:70:ae:e3:92:c4:51:08:a5:35:29:3a:95:0b:58:
1e:2f:35:92:34:1a:d2:46:24:d8:51:cf:47:c7:02:
de:cf:12:18:93:20:65:d2:f2:7d:3c:00:fe:10:06:
63:aa:d7:0b:03:d9:d6:73:91:ba:39:8a:84:01:f1:
fc:1e:31:e4:78:9c:8d:86:d5:85:d3:74:33:a7:0f:
70:ba:4f:90:53:8b:77:27:aa:af:21:12:35:36:d5:
75:16:7f:e4:e1:c8:64:b9:c5:30:6f:30:55:da:c7:
0e:0b:c7:71:34:9b:38:12:8e:8d:f3:fa:5b:4b:cf:
69:b3:6d:58:47:1d:63:df:52:75:45:8e:c5:53:58:
25:9a:33:65:50:5a:50:ad:1e:05:f2:f9:95:a1:1f:
0b:ed:7b:9d:06:58:ec:32:a5:80:ca:05:32:9f:b1:
dd:7b:cf:fa:1b:be:5d:0d:0a:10:32:52:6d:f0:35:
a7:e1:96:33:af:cf:2f:64:7e:aa:3b:5a:de:44:27:
1b:48:ad:1e:9b:e2:a8:d0:ba:b8:9e:a9:66:d1:0f:
4e:d9:4e:27:cb:99:6d:50:23:c4:e6:4b:7e:f5:4a:
25:c2:e2:32:e7:5f:cb:14:e3:61:ba:c3:96:08:ed:
82:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A3:4F:4F:F7:C7:CA:2E:97:30:AC:4C:51:FF:E4:C2:06:2C:B8:B0
X509v3 Authority Key Identifier:
keyid:A4:75:E6:51:F8:1A:AB:60:33:92:F2:55:21:B7:C9:AB:5B:D2:81:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHXmUfgaq2AzkvJVIbfJq1vSgcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/cec327-38e1-4af4-a08f-77cfd215b732/1/pHXmUfgaq2AzkvJVIbfJq1vSgcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/cec327-38e1-4af4-a08f-77cfd215b732/1/pHXmUfgaq2AzkvJVIbfJq1vSgcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:3b:e5:1b:d9:aa:f7:af:f6:a6:97:14:e8:dc:d0:ca:35:db:
60:e7:1d:3a:c4:d6:f0:9a:68:45:64:65:eb:6f:ab:71:44:e1:
1e:6f:79:ff:fc:28:cb:25:2d:1d:c9:ab:bf:17:04:75:1e:57:
26:46:fd:38:96:03:10:42:58:97:5d:01:7a:69:23:bc:1e:cf:
e4:18:56:32:c8:b9:3f:d8:30:6b:3f:0f:e0:87:14:bf:db:ac:
61:9d:03:99:25:74:cd:ff:2e:a8:61:b1:24:28:0e:cf:cd:92:
ff:84:aa:27:e6:a6:75:28:ed:59:d1:e5:af:ce:70:aa:c5:2f:
de:a5:0e:be:6d:85:d4:7b:b5:0b:99:fe:40:1e:5a:86:ed:69:
df:c8:3a:6d:40:77:94:81:e3:4c:b3:0e:dc:d2:5f:3b:36:00:
0f:ea:92:2a:a7:5a:51:11:34:64:1b:04:ee:0f:3b:76:c4:5f:
06:ab:b3:fc:ef:8c:be:31:38:6b:08:cd:0d:31:db:66:0a:75:
36:1c:95:55:3a:f0:9a:37:bf:5d:74:34:95:6e:c4:69:8c:a0:
fc:69:61:bb:ea:17:cb:08:0c:fb:44:8d:60:cf:58:6c:67:51:
d1:83:2d:93:a1:f8:13:dc:3e:de:f2:20:14:2f:80:f4:a2:d5:
7d:38:3b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:52:53 2025 by rpki-client