Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
File: id8L4W7M0-twbmQXlLyQ1PfWeMk.mft (raw, json)
Hash identifier: fLqvRc+7M95mrdYjbcjl8ZGNFi6K8jrDqefVVt92aZY=
Subject key identifier: 87:99:28:5B:28:3C:55:5E:FD:4F:8F:8E:55:FC:00:F4:D7:D5:5E:31
Authority key identifier: 89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
Certificate issuer: /CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Certificate serial: 01987A88CBD99F92FC715C42DD4AFDF5D9A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
Manifest number: 1616
Signing time: Tue 05 Aug 2025 14:00:41 +0000
Manifest this update: Tue 05 Aug 2025 14:00:41 +0000
Manifest next update: Wed 06 Aug 2025 14:00:41 +0000
Files and hashes: 1: id8L4W7M0-twbmQXlLyQ1PfWeMk.crl (hash: Ov4/HubtHkrDVayqFY5iUj8ztkToaWGI24y46lrNMDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:88:cb:d9:9f:92:fc:71:5c:42:dd:4a:fd:f5:d9:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Validity
Not Before: Aug 5 14:00:41 2025 GMT
Not After : Aug 6 14:00:41 2025 GMT
Subject: CN=8799285b283c555efd4f8f8e55fc00f4d7d55e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a8:a5:94:55:68:e4:fe:10:92:cf:98:7f:c1:
ac:c5:60:63:03:5d:2e:bf:24:dc:06:ac:38:ea:dd:
2d:7d:9d:84:64:39:8b:f9:de:da:2a:03:77:06:ed:
2a:91:c1:a0:f4:3e:9d:ca:da:25:79:a4:14:1a:b8:
1d:af:0d:1c:03:d6:f7:da:0e:55:24:d7:8f:b6:82:
90:ce:99:1c:08:c4:f1:3f:fd:4f:4c:f1:ee:b3:67:
32:cb:c8:36:45:d1:da:8c:68:92:f8:58:4b:6e:65:
1c:09:30:58:bb:f2:66:58:79:fb:c9:10:2c:eb:36:
c0:50:1f:a8:45:c5:4f:00:79:40:4a:22:4f:c7:10:
71:ea:c5:66:07:07:af:e4:57:b1:92:05:1c:1c:b1:
0d:7b:35:c5:b2:80:09:81:e2:52:01:7a:bc:90:04:
70:88:1b:cb:ab:db:8b:17:cb:12:66:31:ee:7f:0d:
0a:a0:29:0a:bb:b5:f2:f8:e4:bc:c7:51:77:b6:1d:
8d:49:81:d9:c7:e7:b5:22:c8:14:84:ab:56:a5:9f:
f6:57:7a:e1:db:b5:fb:47:a8:43:82:fc:4a:39:a3:
04:2f:72:44:b9:1c:ac:d7:02:aa:2d:77:12:84:d4:
0d:42:3f:a8:85:2b:a6:4c:25:17:70:6e:ba:c8:fd:
8d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:99:28:5B:28:3C:55:5E:FD:4F:8F:8E:55:FC:00:F4:D7:D5:5E:31
X509v3 Authority Key Identifier:
keyid:89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:db:ae:b1:31:28:c7:54:71:18:87:29:89:28:d9:bb:c6:fe:
4a:fb:70:ac:51:c4:d3:26:f0:6e:c0:b0:f7:89:7b:e1:06:68:
0e:d2:f1:c0:72:f9:36:48:50:76:77:66:b6:b7:1c:5c:f8:db:
0d:be:4d:b0:db:4d:f1:48:90:c8:c1:fa:ea:b7:01:e2:21:36:
3e:69:15:b1:ae:23:4f:37:b6:45:c2:c6:17:88:fa:79:5b:6f:
1e:0f:97:dc:47:d2:90:10:ad:40:4b:9d:76:5b:bb:9a:9a:03:
df:3f:b1:7c:7d:e0:91:a8:e4:20:46:2c:c5:2d:95:8f:a8:91:
f4:12:ac:a4:77:17:ab:7a:85:1f:54:98:55:9a:ab:1f:a2:fc:
88:73:a2:96:e8:d7:fd:10:e0:7f:f0:1d:30:f0:ef:cc:c6:b4:
56:38:79:d4:9e:3f:27:e4:a1:7c:a6:ef:b6:21:e2:69:9e:4e:
cc:a7:4b:32:a3:ff:c6:29:40:20:0a:15:64:5b:f9:31:fc:35:
15:32:15:9e:ba:c5:6f:f2:d9:fe:26:91:d7:06:3a:cf:7f:a0:
36:9d:b2:fd:39:f4:56:6f:99:a0:5c:2a:f8:b4:a0:38:8c:ae:
51:a8:c7:34:51:11:8a:ba:b9:f5:d7:42:67:b2:55:96:41:58:
5c:a2:17:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 23:05:28 2025 by rpki-client