Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
File: Iycd4-AQWavm0aWTxKJP9uGI1k8.mft (raw, json)
Hash identifier: na7zKI3pe6niPtLofY1aSs2lUSOIMD62uDy05mWhV88=
Subject key identifier: 56:C6:56:14:51:99:58:4D:D6:F9:D8:6C:93:00:C1:B2:55:6B:E4:39
Authority key identifier: 23:27:1D:E3:E0:10:59:AB:E6:D1:A5:93:C4:A2:4F:F6:E1:88:D6:4F
Certificate issuer: /CN=23271de3e01059abe6d1a593c4a24ff6e188d64f
Certificate serial: 01988CFDF7C9155B2441AA7D844969354DC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
Manifest number: 0E24
Signing time: Sat 09 Aug 2025 04:01:50 +0000
Manifest this update: Sat 09 Aug 2025 04:01:50 +0000
Manifest next update: Sun 10 Aug 2025 04:01:50 +0000
Files and hashes: 1: Iycd4-AQWavm0aWTxKJP9uGI1k8.crl (hash: 624ZuT3apKO7wYJLeZmbyUVYKXRUOZDCX1WgInRRqcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fd:f7:c9:15:5b:24:41:aa:7d:84:49:69:35:4d:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23271de3e01059abe6d1a593c4a24ff6e188d64f
Validity
Not Before: Aug 9 04:01:50 2025 GMT
Not After : Aug 10 04:01:50 2025 GMT
Subject: CN=56c656145199584dd6f9d86c9300c1b2556be439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:50:7f:e0:90:55:e2:30:1a:ef:8b:c5:51:4e:
3a:29:da:91:8b:47:0c:dc:7a:59:bf:8a:16:8e:bd:
e0:dc:92:21:a2:70:cc:e6:b8:7c:3f:d0:89:32:ab:
d0:b2:b8:27:bd:73:7d:7a:b2:78:56:ac:2a:8e:51:
4b:35:42:23:ca:87:c1:7f:4f:82:a3:e8:2a:f6:66:
10:ed:b3:33:18:6c:6b:0e:79:5a:a5:a9:43:5b:79:
6b:93:cc:dd:52:ef:8d:bd:c7:b9:bd:f8:55:91:06:
73:cc:c1:90:dc:32:e6:02:5d:df:e3:22:01:5e:7c:
60:53:7e:70:8f:cc:be:1d:f9:dc:eb:4b:30:73:64:
0b:e6:cb:33:c6:68:fc:13:cc:2f:bc:fe:ed:bb:09:
f0:80:b1:22:70:b5:79:42:f8:c2:b9:ce:5b:84:ff:
9c:1c:fd:44:c8:c6:19:df:19:57:e7:87:b1:f4:93:
86:d9:94:36:92:51:d3:9e:88:30:bb:60:c1:01:6c:
1a:76:eb:67:1c:c0:54:18:7e:80:e5:ff:8d:b4:e8:
c4:5c:46:30:13:eb:91:31:1a:bb:ef:b6:3f:34:4f:
90:dc:e2:a1:1d:7f:89:87:63:85:ef:09:a1:df:be:
3f:a8:88:2a:55:f7:12:67:81:d9:94:52:4a:79:82:
84:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:C6:56:14:51:99:58:4D:D6:F9:D8:6C:93:00:C1:B2:55:6B:E4:39
X509v3 Authority Key Identifier:
keyid:23:27:1D:E3:E0:10:59:AB:E6:D1:A5:93:C4:A2:4F:F6:E1:88:D6:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:4b:da:9f:33:4e:66:1d:fd:05:4d:28:32:03:17:61:ef:6b:
1f:42:34:b2:f0:72:0a:f6:86:4d:05:0b:32:c9:67:0b:d2:2c:
b4:b5:9a:b6:4b:53:d1:ba:9a:d2:64:66:33:3e:40:2a:af:aa:
94:b6:42:ce:ae:61:77:02:b3:91:36:91:e1:d4:aa:a6:94:df:
f6:9c:9d:4d:f2:1b:76:e2:66:5c:8a:5d:d2:80:a2:9e:cb:8c:
20:5c:7d:37:ea:6a:f7:cf:25:0a:e4:d3:d8:b1:d6:24:54:a4:
94:42:42:56:dc:51:a4:fa:4d:39:9b:03:dd:f5:51:cd:da:af:
63:f0:83:2b:d0:fe:d8:d1:3e:ea:3c:a8:7c:56:f9:28:6b:f7:
a6:41:1d:4a:78:ee:67:50:4b:ca:af:fb:07:2d:eb:d3:04:37:
1b:78:3b:11:8c:30:66:11:8b:0c:22:53:e2:5b:f7:b6:d8:4e:
49:3c:8a:f6:ce:dd:19:5d:ae:3a:3a:e3:d5:85:2e:0f:3b:28:
0b:c6:07:e0:b6:07:5f:a4:21:b1:36:87:d2:b7:ba:3f:ac:7d:
28:5d:49:41:0a:80:ba:1f:14:39:42:47:1d:7c:8c:a8:e0:0f:
af:62:cd:bc:c2:ff:31:c2:d9:c4:5e:93:15:59:77:0f:0d:44:
5a:cb:76:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:32:59 2025 by rpki-client