Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
File: 27s70rCfy7vfiVsOOpxaAGRW_aY.mft (raw, json)
Hash identifier: snawd4TVru09sZjkkOo5pTLAlT6oLRq2jLCmsrx44So=
Subject key identifier: B9:3A:69:DD:3B:8E:4F:2C:F0:76:AB:47:E0:AB:59:9B:21:C9:BD:18
Authority key identifier: DB:BB:3B:D2:B0:9F:CB:BB:DF:89:5B:0E:3A:9C:5A:00:64:56:FD:A6
Certificate issuer: /CN=dbbb3bd2b09fcbbbdf895b0e3a9c5a006456fda6
Certificate serial: 0198A196A183EA82215310F1D71356FA38AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
Manifest number: 0799
Signing time: Wed 13 Aug 2025 04:01:00 +0000
Manifest this update: Wed 13 Aug 2025 04:01:00 +0000
Manifest next update: Thu 14 Aug 2025 04:01:00 +0000
Files and hashes: 1: 27s70rCfy7vfiVsOOpxaAGRW_aY.crl (hash: 8ZJ5xiLyqmUS31HPWLKlywzyr0xscrgxUTe3Es9ec6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a1:96:a1:83:ea:82:21:53:10:f1:d7:13:56:fa:38:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbbb3bd2b09fcbbbdf895b0e3a9c5a006456fda6
Validity
Not Before: Aug 13 04:01:00 2025 GMT
Not After : Aug 14 04:01:00 2025 GMT
Subject: CN=b93a69dd3b8e4f2cf076ab47e0ab599b21c9bd18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8d:2f:a4:07:ec:1d:eb:39:fe:28:5a:9c:77:
a1:9f:41:1b:f5:6a:cf:13:b7:53:f7:9d:d0:43:d9:
d5:90:41:bd:94:bd:18:80:07:25:8e:d3:7d:a7:13:
1c:63:f7:c6:63:bf:be:fd:84:fd:72:94:ad:29:3f:
a2:bc:c7:d8:7d:e1:ba:3b:aa:d3:04:be:c2:86:27:
68:db:f5:30:22:cf:34:61:46:42:a3:42:53:11:38:
88:8f:4d:12:be:84:98:52:0a:83:00:fd:c9:ee:c0:
7c:65:80:16:1a:f2:f1:ac:c6:90:b4:a0:5b:a4:7c:
6d:4d:07:b8:b1:36:db:e5:17:10:87:83:b9:bc:b8:
30:4b:d0:c9:3e:0d:b0:21:8c:ca:09:8e:f0:2d:64:
42:c6:d1:c0:78:5a:b3:12:48:41:59:be:f8:eb:36:
bd:dd:95:4c:54:3e:8b:1b:c1:3d:a4:f4:0c:e1:c1:
96:e0:4e:3d:47:89:e7:f8:c6:a7:f9:e1:0b:b7:a6:
36:9d:16:29:cb:fb:85:7c:fe:7e:55:93:08:96:a6:
62:82:be:da:e0:67:44:66:b3:8f:ff:88:fb:a2:d4:
45:28:4c:ab:60:f6:25:a6:b7:9b:59:cd:d5:41:46:
b9:66:d5:15:7b:24:7d:a1:7a:fa:56:f8:05:63:bc:
c9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:3A:69:DD:3B:8E:4F:2C:F0:76:AB:47:E0:AB:59:9B:21:C9:BD:18
X509v3 Authority Key Identifier:
keyid:DB:BB:3B:D2:B0:9F:CB:BB:DF:89:5B:0E:3A:9C:5A:00:64:56:FD:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:60:53:15:23:e7:c2:ff:85:1d:8d:b3:1a:6f:76:54:c6:9d:
3c:bb:ef:60:94:6a:36:1a:06:5e:dd:8b:4f:31:8e:67:e4:e9:
1b:fe:0a:47:26:fd:28:87:db:67:7f:0f:52:75:42:92:65:d9:
62:a1:37:48:fd:82:e5:52:8d:14:89:55:99:0f:7b:ad:64:2d:
90:c9:d5:d7:b7:48:c0:e4:b9:a9:1b:6d:d6:57:2d:3b:aa:c5:
fb:98:bc:29:d1:33:8c:1d:23:f5:87:e5:42:e0:64:16:40:29:
fb:74:47:e3:ca:d7:ee:7e:63:ee:de:38:46:89:82:69:74:f6:
4b:27:ce:21:75:7f:37:c3:8f:10:26:cd:85:b4:17:54:e8:3d:
2e:14:3e:4e:f8:fa:21:68:5a:e3:32:12:e8:e3:7d:73:35:e0:
81:55:6b:70:7a:e7:c8:53:40:6b:31:f3:dd:53:31:75:7a:ed:
dd:6b:15:3e:f1:d3:b8:7b:95:a6:05:bb:9a:2d:78:df:f2:ec:
2c:29:19:34:08:28:8e:e3:e1:1c:da:dd:56:1c:2d:1d:c3:4a:
26:c5:df:32:6a:4e:d3:d0:84:b8:65:74:6a:63:e6:81:f7:da:
8a:7a:51:43:3b:dd:c8:67:e8:8d:0d:1b:ce:25:df:96:62:58:
03:bf:57:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:51:31 2025 by rpki-client