Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
File: 4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft (raw, json)
Hash identifier: cFSE4FH/0mm8MeHouWawWzb3NMAKjn7oGraj4qtiWmE=
Subject key identifier: 53:1E:CC:D4:1B:D4:24:AF:5D:EE:67:93:88:46:FB:76:C5:DD:54:6B
Authority key identifier: E3:26:81:CF:D9:7C:16:44:EF:F7:51:E0:F1:E0:AA:05:3C:05:C0:0F
Certificate issuer: /CN=e32681cfd97c1644eff751e0f1e0aa053c05c00f
Certificate serial: 019894B6F98FBA6FF68FCBDDC7C9076C1BB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4yaBz9l8FkTv91Hg8eCqBTwFwA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
Manifest number: 0389
Signing time: Sun 10 Aug 2025 16:01:15 +0000
Manifest this update: Sun 10 Aug 2025 16:01:15 +0000
Manifest next update: Mon 11 Aug 2025 16:01:15 +0000
Files and hashes: 1: 4yaBz9l8FkTv91Hg8eCqBTwFwA8.crl (hash: pl92gtdVBg364lKPXNkrlXbWe5kG60UXfUGQvKPNJw0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4yaBz9l8FkTv91Hg8eCqBTwFwA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 16:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:b6:f9:8f:ba:6f:f6:8f:cb:dd:c7:c9:07:6c:1b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e32681cfd97c1644eff751e0f1e0aa053c05c00f
Validity
Not Before: Aug 10 16:01:15 2025 GMT
Not After : Aug 11 16:01:15 2025 GMT
Subject: CN=531eccd41bd424af5dee67938846fb76c5dd546b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b4:87:63:bc:7b:a4:97:f8:21:31:8c:01:85:
4c:82:82:23:54:da:06:17:93:6e:de:11:9e:e3:b4:
0a:37:a4:34:a9:a7:75:32:27:36:00:65:46:f6:63:
02:e6:ef:16:a9:c2:c8:60:4d:32:1e:b9:8a:01:ad:
50:64:9b:14:55:dd:fb:94:23:34:c8:68:35:3f:7a:
03:23:f4:b4:53:2d:60:b0:03:2f:b8:8c:4d:91:0a:
dd:ef:b1:c8:23:4a:7f:32:d6:88:b1:bc:f5:47:fe:
d1:07:c1:f4:a5:de:b2:c7:a9:a8:e4:4c:b8:19:23:
f8:57:fb:72:dd:f0:8b:07:08:bf:b0:6f:3f:60:f0:
36:71:b5:1d:fd:7b:ef:98:2f:2c:13:68:09:3f:07:
c6:af:ff:f7:5c:a2:66:ea:0b:09:d2:e6:00:63:97:
2e:c0:78:6e:0d:bb:04:e0:a4:1f:b4:0f:00:9d:60:
23:f0:17:75:2e:37:ec:d1:b8:b8:00:64:f5:6f:ad:
4b:c3:59:1f:3d:82:e6:88:5a:40:63:06:db:2f:3f:
03:df:a6:29:bd:79:02:f0:b5:b8:52:7e:06:59:07:
14:de:d5:fd:fe:03:cf:84:01:9f:fb:ac:1a:28:b3:
18:db:40:ab:5d:eb:0d:73:26:cc:94:2a:f2:00:81:
55:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1E:CC:D4:1B:D4:24:AF:5D:EE:67:93:88:46:FB:76:C5:DD:54:6B
X509v3 Authority Key Identifier:
keyid:E3:26:81:CF:D9:7C:16:44:EF:F7:51:E0:F1:E0:AA:05:3C:05:C0:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4yaBz9l8FkTv91Hg8eCqBTwFwA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:5f:80:87:94:b0:54:e7:19:02:ef:df:af:dc:99:19:71:13:
be:03:47:bf:d4:99:42:bd:cf:85:39:03:34:f8:f6:1b:57:71:
9c:fe:77:d5:00:c3:22:53:0e:42:48:d1:32:94:b3:c9:aa:21:
fc:2f:45:ce:63:95:f3:af:14:4e:ae:1a:cf:92:c4:d4:60:f8:
63:be:c3:17:7a:b1:b8:a0:46:2b:16:5e:3d:41:ea:30:1e:26:
5b:12:ae:31:1a:2c:df:d1:dd:9f:01:a8:d1:9a:ea:1c:bd:7e:
e4:2a:d1:ca:1e:f0:d5:6d:0e:e2:85:22:fa:6c:22:f8:bf:56:
0f:0e:31:d8:38:c0:90:f3:fa:bb:da:9f:d9:f7:76:5a:d9:4c:
f4:48:e4:5e:db:c1:2f:f9:d8:90:ce:9f:2d:a1:39:a4:19:8e:
7a:b7:1c:5f:bc:35:36:cb:43:01:3a:2c:d9:56:2d:cc:ea:a7:
7c:f6:70:cf:76:65:da:0e:fe:2f:5d:60:76:86:28:6b:ec:b2:
ee:41:9c:76:8a:ba:1f:a8:60:46:07:72:78:00:ca:03:c0:8e:
ec:fe:94:2b:8b:6a:7e:66:3b:74:e5:12:9f:c1:2d:27:e3:0c:
43:53:8a:b2:d3:46:c6:b3:99:5d:b3:59:8d:90:1a:28:f5:cf:
54:bd:6a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 18:13:36 2025 by rpki-client