Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
File: IsOFEHH5YIjHtxGcteFGPLq5jFk.mft (raw, json)
Hash identifier: JlAtZnnUq4laeIS198lPURAsMfyKSmhnt9FwO+p7oTo=
Subject key identifier: 80:58:E8:87:0D:2C:1E:A3:99:46:25:4E:A6:7B:8B:4A:E2:31:0D:9E
Authority key identifier: 22:C3:85:10:71:F9:60:88:C7:B7:11:9C:B5:E1:46:3C:BA:B9:8C:59
Certificate issuer: /CN=22c3851071f96088c7b7119cb5e1463cbab98c59
Certificate serial: 019873E331E404B906C27E8F2015870B75F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsOFEHH5YIjHtxGcteFGPLq5jFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
Manifest number: 1064
Signing time: Mon 04 Aug 2025 07:02:05 +0000
Manifest this update: Mon 04 Aug 2025 07:02:05 +0000
Manifest next update: Tue 05 Aug 2025 07:02:05 +0000
Files and hashes: 1: IsOFEHH5YIjHtxGcteFGPLq5jFk.crl (hash: hRntS5oLU8e1Ws+JtJdmGCf+Hydswz5lFBdRSMCudHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsOFEHH5YIjHtxGcteFGPLq5jFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:31:e4:04:b9:06:c2:7e:8f:20:15:87:0b:75:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c3851071f96088c7b7119cb5e1463cbab98c59
Validity
Not Before: Aug 4 07:02:05 2025 GMT
Not After : Aug 5 07:02:05 2025 GMT
Subject: CN=8058e8870d2c1ea39946254ea67b8b4ae2310d9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:69:31:2a:51:b1:a4:08:6e:63:7f:a3:c1:a2:
04:ec:26:2e:3f:0c:48:2c:8b:32:1a:ef:67:65:42:
b1:4b:8c:82:bd:46:b1:6e:8f:4d:be:32:63:06:e6:
5b:d4:fd:83:7f:49:6d:f4:35:5a:79:44:b0:77:85:
92:d8:3c:57:e0:ea:a9:db:44:d2:ed:c4:2d:fd:90:
1a:f5:6e:c4:a7:b3:e6:1f:e4:bc:97:01:02:ed:b3:
9b:b7:f0:d2:a1:a1:6f:f2:da:75:1f:28:0c:b8:a7:
12:a2:26:b0:a7:5e:c1:eb:52:53:d2:8a:3c:eb:bd:
e6:85:70:f5:69:68:80:c7:9e:65:20:c7:e7:41:29:
4e:2a:13:1d:73:f3:be:5f:da:07:82:10:41:43:dc:
f7:b7:12:9e:26:23:34:10:2d:61:a1:6b:93:65:7f:
f5:0b:1b:5c:a8:a6:9e:59:cd:99:4a:e6:59:49:13:
7a:bd:a6:07:22:e0:bb:7c:9b:4a:98:11:f9:5a:6a:
5a:c7:94:74:1f:49:36:29:3c:6c:e3:11:66:cd:c6:
ae:f0:39:bf:e0:bf:f0:ff:3b:f6:01:ee:db:78:03:
0c:83:0f:ca:6a:c3:84:e5:0d:d2:f7:b7:3e:66:e2:
f5:60:8e:bd:ac:26:e2:9d:35:68:44:1a:8a:49:b9:
c4:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:58:E8:87:0D:2C:1E:A3:99:46:25:4E:A6:7B:8B:4A:E2:31:0D:9E
X509v3 Authority Key Identifier:
keyid:22:C3:85:10:71:F9:60:88:C7:B7:11:9C:B5:E1:46:3C:BA:B9:8C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsOFEHH5YIjHtxGcteFGPLq5jFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:cb:fb:18:ab:88:e4:9e:03:56:34:5b:09:b2:39:89:30:78:
60:c1:f6:d9:fd:02:b4:f2:51:16:b7:5b:08:e3:5b:68:14:ae:
71:a5:43:ae:10:f6:89:94:f1:01:d4:06:aa:c4:c0:b5:78:95:
dd:5a:88:99:17:25:ee:6e:7b:da:9c:f5:5d:89:b7:33:a4:a4:
b3:b3:e9:98:df:c2:c1:b5:35:49:aa:00:9d:80:0b:0b:c0:b0:
77:40:c1:d6:95:db:3b:48:ef:87:7b:d1:b1:e5:ad:b2:2a:63:
1f:1e:c1:3a:96:36:13:fa:76:c8:4a:55:b3:54:b2:7f:9c:fe:
ca:b4:59:33:32:98:1c:36:94:c5:60:d3:26:a8:be:a8:38:d0:
2b:1b:a1:7f:b2:74:02:03:44:c5:ed:36:88:f2:c1:27:92:33:
5c:2c:e1:d2:33:c5:d2:2f:6e:b9:ff:47:87:6c:f6:83:2f:ae:
77:ac:76:d7:07:8c:c9:cc:18:0f:60:74:54:d5:2d:45:97:37:
da:5a:8c:56:97:d6:94:d9:aa:8e:93:f9:34:fc:ac:11:cd:55:
ce:c0:c6:e1:5e:fb:43:42:48:b3:11:82:37:1c:c1:63:23:1b:
c5:cc:63:2f:e9:99:2a:16:7b:65:7f:a3:18:ef:2e:5f:e1:4e:
3a:bd:94:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:15:50 2025 by rpki-client