Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.mft
File: sLuH0gzEIN9B4JDDO0xA78sN2Hg.mft (raw, json)
Hash identifier: Bae7SpC0PJb1yovrcG1IHXTbTXELUVru4D4r0yUYp2U=
Subject key identifier: AE:8C:5F:72:26:75:EE:9D:00:E7:7F:16:D2:98:8C:EB:AF:E9:4B:6E
Authority key identifier: B0:BB:87:D2:0C:C4:20:DF:41:E0:90:C3:3B:4C:40:EF:CB:0D:D8:78
Certificate issuer: /CN=b0bb87d20cc420df41e090c33b4c40efcb0dd878
Certificate serial: 0198A04D402964D7540DC26F19E4B1D7FB4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLuH0gzEIN9B4JDDO0xA78sN2Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.mft
Manifest number: 162C
Signing time: Tue 12 Aug 2025 22:01:13 +0000
Manifest this update: Tue 12 Aug 2025 22:01:13 +0000
Manifest next update: Wed 13 Aug 2025 22:01:13 +0000
Files and hashes: 1: sLuH0gzEIN9B4JDDO0xA78sN2Hg.crl (hash: JzulZO74MTyL1OCysbMnD+law0+wv5tY7rFqfAeoqeg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sLuH0gzEIN9B4JDDO0xA78sN2Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:40:29:64:d7:54:0d:c2:6f:19:e4:b1:d7:fb:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0bb87d20cc420df41e090c33b4c40efcb0dd878
Validity
Not Before: Aug 12 22:01:13 2025 GMT
Not After : Aug 13 22:01:13 2025 GMT
Subject: CN=ae8c5f722675ee9d00e77f16d2988cebafe94b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:61:0e:2f:3e:d0:35:97:18:b1:f2:f9:2a:61:
c7:5b:83:93:0d:bb:2d:ae:e0:34:be:3d:2a:96:67:
cf:34:94:24:3f:80:5f:cb:eb:d8:61:24:a4:a3:e3:
ae:29:06:7a:48:b8:ca:80:44:3a:f8:10:ef:46:d5:
15:d0:e1:cb:c3:4a:e3:38:c0:ec:5c:31:3d:b5:1e:
03:15:71:2c:63:ea:ff:fc:0c:a6:fe:b1:f7:5c:29:
d1:34:1d:94:06:80:df:65:42:2a:a3:0f:76:40:25:
19:d1:aa:f0:a9:c5:54:28:c5:a8:66:b7:75:c8:42:
5d:f0:a1:05:b7:78:2e:66:ef:ed:43:d0:48:05:9c:
5c:4f:18:81:4b:89:5b:1c:29:87:6c:77:66:eb:09:
11:60:c9:5a:35:a1:85:da:19:5e:61:9a:6d:46:7f:
21:d6:8f:68:05:7f:66:ee:5d:eb:0e:21:2c:99:97:
3d:68:b8:31:44:47:56:7d:f6:eb:be:c6:24:af:da:
7f:aa:35:f6:2f:6c:25:d1:01:cc:7e:d1:19:ba:f6:
85:c1:42:4e:7a:df:c2:74:94:43:95:6a:c4:a9:c0:
1f:e5:65:f6:ed:7b:98:0b:e6:5d:4d:6b:15:99:7a:
61:98:34:de:f0:f0:f8:2a:3b:23:64:1e:37:f5:42:
d9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:8C:5F:72:26:75:EE:9D:00:E7:7F:16:D2:98:8C:EB:AF:E9:4B:6E
X509v3 Authority Key Identifier:
keyid:B0:BB:87:D2:0C:C4:20:DF:41:E0:90:C3:3B:4C:40:EF:CB:0D:D8:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLuH0gzEIN9B4JDDO0xA78sN2Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/4813f2-4c63-4aa0-9b22-37bc8e656eb1/1/sLuH0gzEIN9B4JDDO0xA78sN2Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:ee:b0:db:f3:46:f9:29:9d:d4:e4:86:53:e6:e4:05:6e:0f:
7b:38:f1:2e:dd:bc:df:cc:b6:55:aa:64:48:28:e5:84:63:cd:
0e:84:55:05:46:eb:21:35:ef:68:b8:bf:f7:9d:13:a4:03:9a:
da:77:9b:74:f8:54:71:29:33:3f:0c:25:45:28:8b:e0:1c:04:
86:b1:3b:c3:df:65:79:e8:c1:14:ba:45:be:d6:88:7c:78:f2:
b0:02:f7:68:ae:06:78:28:fa:89:77:28:03:57:c5:c2:cf:ce:
1a:df:69:09:d2:7c:af:f5:43:14:84:40:a4:0b:ac:87:ae:fa:
dd:c5:24:09:4b:09:60:ec:1b:91:1c:6a:df:7f:fa:30:da:34:
ae:1b:cb:9a:38:cd:18:28:c8:4e:fc:b6:ca:26:01:91:70:f7:
91:29:13:57:4e:1f:e0:b1:68:1f:f4:46:fe:ed:7f:69:fa:dc:
ba:e2:c4:71:d0:4b:80:ea:8c:7f:8f:59:75:37:b9:a3:b3:50:
a7:88:f1:12:a3:4c:c2:b0:ff:7d:40:1a:84:c3:69:ee:e4:e8:
d6:82:e5:1f:81:ba:22:b8:a2:9c:32:75:30:2c:a1:43:ed:d7:
04:91:b4:4b:ed:58:95:31:06:5c:20:c2:ad:f4:59:d2:e1:ef:
ba:29:ef:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 00:37:54 2025 by rpki-client