Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.mft
File: 9oUCGMB4Hne2SXXDTBalwSm3nrk.mft (raw, json)
Hash identifier: 1OQdxRgLdNXB+f2AcM23OgVUkFbJhzFw8C5/C12Bz18=
Subject key identifier: 4C:91:00:6F:A1:FC:BC:DE:AC:08:50:3E:FE:FD:83:B3:50:DF:41:91
Authority key identifier: F6:85:02:18:C0:78:1E:77:B6:49:75:C3:4C:16:A5:C1:29:B7:9E:B9
Certificate issuer: /CN=f6850218c0781e77b64975c34c16a5c129b79eb9
Certificate serial: 019892C94319D59790374FF70ABE5251DB30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9oUCGMB4Hne2SXXDTBalwSm3nrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.mft
Manifest number: 0140
Signing time: Sun 10 Aug 2025 07:02:00 +0000
Manifest this update: Sun 10 Aug 2025 07:02:00 +0000
Manifest next update: Mon 11 Aug 2025 07:02:00 +0000
Files and hashes: 1: 9oUCGMB4Hne2SXXDTBalwSm3nrk.crl (hash: PUAfHQTMvx8FqjYPYbFb3X63ls11vfO/hEjNiIpzw/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/9oUCGMB4Hne2SXXDTBalwSm3nrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 07:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:c9:43:19:d5:97:90:37:4f:f7:0a:be:52:51:db:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6850218c0781e77b64975c34c16a5c129b79eb9
Validity
Not Before: Aug 10 07:02:00 2025 GMT
Not After : Aug 11 07:02:00 2025 GMT
Subject: CN=4c91006fa1fcbcdeac08503efefd83b350df4191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:15:7d:6a:d3:cc:0c:16:23:5c:ab:13:a0:da:
ec:eb:65:fd:38:2c:39:34:bb:cd:a0:f0:07:45:ab:
4d:34:39:8e:96:dc:16:5f:e1:2c:37:86:39:2b:d6:
fe:dc:57:7c:94:58:c0:08:b4:4c:d7:96:41:17:32:
4f:2a:e5:24:da:de:0e:13:f5:e3:b3:b9:5b:d7:2b:
10:72:db:e9:ed:ae:a7:a3:69:f8:78:83:54:49:e4:
3b:46:f4:06:07:86:7f:ce:45:cd:b6:d3:04:6e:c5:
43:eb:ae:06:74:ac:cc:c5:86:84:9e:fb:cf:b1:86:
14:f1:f5:e4:60:10:35:e7:c5:cb:fc:67:5d:89:2c:
26:99:df:33:d1:78:a9:7f:85:37:61:c8:5d:b1:3e:
12:6a:ad:9d:3f:33:9c:b1:7d:e1:d4:6a:76:03:d4:
7b:c3:10:d7:9d:0e:13:b7:85:ab:4e:0d:52:a4:e4:
4e:15:c0:39:b2:7f:73:7e:d0:d3:a2:11:4f:24:35:
0e:ce:56:52:28:9c:ea:59:48:06:78:bd:84:6a:47:
18:15:03:eb:31:18:ac:61:61:ee:be:15:97:43:a1:
47:96:86:94:9d:22:d5:1b:d2:86:52:42:06:07:f8:
1d:89:31:50:4f:d5:c9:76:bf:27:ea:ec:dd:9b:97:
62:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:91:00:6F:A1:FC:BC:DE:AC:08:50:3E:FE:FD:83:B3:50:DF:41:91
X509v3 Authority Key Identifier:
keyid:F6:85:02:18:C0:78:1E:77:B6:49:75:C3:4C:16:A5:C1:29:B7:9E:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9oUCGMB4Hne2SXXDTBalwSm3nrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:92:17:7f:03:54:a8:68:48:52:92:6c:db:d4:8d:46:75:5f:
03:53:59:b9:9c:6d:6a:73:5c:95:a9:6c:e2:94:34:46:be:49:
cd:fa:4c:30:cb:32:e4:4c:1b:2d:a3:7d:d6:50:73:d8:28:d9:
8b:ac:94:9f:c8:6e:0f:ad:b2:05:74:ae:88:8d:ae:69:f3:a6:
c2:c2:b7:a3:4e:7f:c9:2c:4c:f0:a9:7e:61:d8:aa:75:cb:4b:
c7:ad:06:e2:f2:31:b7:a3:74:78:94:0c:25:80:05:10:c5:09:
5b:ec:3b:b2:b8:c4:4c:ca:4f:8c:03:ae:63:8d:ba:17:8c:18:
93:63:58:f6:ad:b2:e6:95:81:8b:f3:41:bd:fb:4f:d7:31:6f:
af:1d:37:f0:49:e0:e4:f2:aa:a9:00:6f:10:1b:e6:13:f8:f0:
6e:86:10:05:fb:cd:6d:1a:75:fa:2f:42:f5:7a:f2:53:26:ce:
af:11:7b:2a:c1:19:0a:1e:60:b3:40:28:39:30:b7:e7:77:01:
26:fe:a1:0a:17:13:14:98:c7:fc:1d:e0:b2:a2:5a:55:65:b4:
9d:c2:93:ba:43:b3:f3:12:ad:be:bb:5a:2f:66:7d:31:03:b2:
85:86:1b:fe:5e:86:e4:dd:49:97:ac:c3:3c:03:56:e0:20:1b:
03:e1:d0:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:45:01 2025 by rpki-client