Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File: iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier: UubVcRDzsUjJPFqj6ytgRR058R/wp0bcm7u6bAenHfw=
Subject key identifier: 80:E9:98:2A:AA:6D:2A:72:65:56:CC:22:F9:A4:FC:C9:E5:5A:EE:0D
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer: /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial: 019873748ADAA30CDF1A04DFFBBB4307FB10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number: 04D8
Signing time: Mon 04 Aug 2025 05:01:14 +0000
Manifest this update: Mon 04 Aug 2025 05:01:14 +0000
Manifest next update: Tue 05 Aug 2025 05:01:14 +0000
Files and hashes: 1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: QNSJaCHppYX3bJo4Q5OoC6mPAbjRrLGCS+QCWY2V0K4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:8a:da:a3:0c:df:1a:04:df:fb:bb:43:07:fb:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Validity
Not Before: Aug 4 05:01:14 2025 GMT
Not After : Aug 5 05:01:14 2025 GMT
Subject: CN=80e9982aaa6d2a726556cc22f9a4fcc9e55aee0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a9:61:68:eb:ab:b8:e5:cd:5b:c0:73:d1:1b:
b4:3d:dd:32:2b:53:0c:e1:8c:49:8e:f7:6e:ca:3a:
22:f5:72:fb:33:ec:51:7e:9f:e2:f5:fa:d8:9d:ee:
01:39:8c:68:f9:a1:d4:a5:e1:e1:18:ce:6c:d6:8f:
7b:3f:6f:dd:64:ca:b7:9d:c3:3a:2b:0d:6f:a0:15:
de:80:d6:57:93:8e:2e:96:e5:36:93:d2:f9:5c:53:
06:0f:2c:2d:b1:9d:99:eb:f7:91:40:c7:09:af:72:
9e:55:98:75:fb:3a:92:9c:98:b1:11:52:33:c4:f1:
2c:22:f0:b3:58:89:67:f4:40:f9:f2:45:97:a9:0e:
1e:7f:5d:a0:3d:e6:bd:c1:93:68:84:ee:e0:e8:90:
75:2f:ed:8c:d1:45:0d:62:9c:cc:f6:00:34:d3:18:
16:47:ed:44:1b:5b:7d:05:ae:cb:96:16:7c:9d:ba:
c4:2a:ab:66:3d:2c:f3:20:af:be:07:28:ee:53:67:
d1:8d:4f:90:6e:1c:5b:04:4b:08:46:89:1b:60:83:
2d:88:4b:ea:73:2b:21:ff:71:1c:0b:50:74:17:fa:
2d:9a:60:7e:6f:fd:11:cf:da:f5:61:4b:d4:58:96:
f1:95:9f:cc:05:08:e4:de:91:2a:e3:e4:93:bb:93:
ca:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E9:98:2A:AA:6D:2A:72:65:56:CC:22:F9:A4:FC:C9:E5:5A:EE:0D
X509v3 Authority Key Identifier:
keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:bd:d1:e2:93:c9:14:95:5f:e8:02:9d:94:10:fe:f8:30:79:
2f:fc:d3:f1:5b:96:93:5e:9e:ed:a4:a1:1a:c3:60:3f:1a:29:
6a:b0:3a:db:67:0e:ca:eb:38:d9:88:06:d7:97:b7:01:75:6e:
56:eb:3d:f7:4f:9e:6c:84:7d:81:39:af:45:c7:8c:c5:9b:c9:
20:2b:a0:29:06:fe:42:62:0b:44:7f:b9:0e:37:eb:60:47:13:
f8:37:ce:e1:1b:b5:60:32:f7:27:64:25:a4:af:e6:d0:c7:37:
ac:ea:5e:97:2a:9d:78:73:33:e8:3b:51:b7:5e:a1:64:50:fc:
d3:57:a0:45:19:92:ff:eb:b0:26:22:33:a9:bc:f2:7e:3f:35:
1b:70:c3:b7:e2:dd:44:88:51:24:04:a1:7d:b2:e1:83:fa:f1:
88:d9:b7:c8:f1:d8:6c:81:25:2b:e8:38:ce:0b:19:75:d7:2a:
20:18:1c:32:0d:72:b2:4e:5f:b9:42:27:07:f5:37:5c:46:82:
7f:ce:8c:34:2a:16:51:e2:f2:c2:b9:9b:77:92:a1:a5:63:22:
24:df:ad:5b:e2:85:f7:ab:7a:cc:99:75:70:4c:4e:b0:9a:0c:
8b:0f:95:07:e0:c3:15:3d:92:30:c1:2a:60:90:35:b6:fc:df:
95:32:ea:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:56 2025 by rpki-client