Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/9bdb8c-d307-41f6-ac81-e3ccf3ea3c4a/1/h3YEKrfwcZWY6znlPvkuCsz6T6M.mft
File: h3YEKrfwcZWY6znlPvkuCsz6T6M.mft (raw, json)
Hash identifier: i0X71nX9QX15nkP97H1ES3o1PANcLg24AbhaucO/tL8=
Subject key identifier: 97:67:09:69:ED:56:9E:F8:29:04:AB:3E:ED:67:29:51:E8:DB:3D:55
Authority key identifier: 87:76:04:2A:B7:F0:71:95:98:EB:39:E5:3E:F9:2E:0A:CC:FA:4F:A3
Certificate issuer: /CN=8776042ab7f0719598eb39e53ef92e0accfa4fa3
Certificate serial: 019883575691939B81EEF24FBAE8A601AC9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3YEKrfwcZWY6znlPvkuCsz6T6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/9bdb8c-d307-41f6-ac81-e3ccf3ea3c4a/1/h3YEKrfwcZWY6znlPvkuCsz6T6M.mft
Manifest number: 0A20
Signing time: Thu 07 Aug 2025 07:03:15 +0000
Manifest this update: Thu 07 Aug 2025 07:03:15 +0000
Manifest next update: Fri 08 Aug 2025 07:03:15 +0000
Files and hashes: 1: h3YEKrfwcZWY6znlPvkuCsz6T6M.crl (hash: pvCXZO4AD6rK0nz3H15NDJN2KSyx27jt8/T5YoYwCkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/9bdb8c-d307-41f6-ac81-e3ccf3ea3c4a/1/h3YEKrfwcZWY6znlPvkuCsz6T6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/9bdb8c-d307-41f6-ac81-e3ccf3ea3c4a/1/h3YEKrfwcZWY6znlPvkuCsz6T6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3YEKrfwcZWY6znlPvkuCsz6T6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 07:03:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:83:57:56:91:93:9b:81:ee:f2:4f:ba:e8:a6:01:ac:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8776042ab7f0719598eb39e53ef92e0accfa4fa3
Validity
Not Before: Aug 7 07:03:15 2025 GMT
Not After : Aug 8 07:03:15 2025 GMT
Subject: CN=97670969ed569ef82904ab3eed672951e8db3d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1e:bf:eb:a8:e0:b6:eb:4e:1d:11:84:4c:c4:
92:7e:ff:0a:1a:fe:d9:eb:bb:a0:ef:4e:2e:d9:87:
de:27:6c:1d:2a:31:b3:89:02:c6:61:23:b2:6f:d6:
3c:94:dc:5c:a8:2e:26:6f:fe:26:75:eb:7c:b5:82:
08:9e:d6:b3:10:b7:00:e7:b8:81:7d:48:1c:5d:ba:
1a:fe:96:c2:a5:43:d2:f9:aa:89:e8:22:6d:d7:0c:
51:d1:f6:a5:45:36:d8:7a:8a:c2:62:24:d6:77:9e:
32:5a:b2:ee:7d:44:2b:2d:21:b6:63:3a:be:01:8c:
d9:47:6e:e3:46:1c:53:12:ab:e1:a0:0a:2a:8a:74:
df:be:71:5b:8f:9a:62:e5:a8:4c:58:18:3b:4c:37:
97:d2:79:61:e3:e7:c7:bf:06:ea:2a:2f:f9:84:3b:
3a:9b:9e:ec:40:91:11:6c:06:45:6e:e3:9a:90:18:
ef:d9:d9:7f:8e:39:a1:c3:04:b6:08:84:25:b2:d6:
a3:f3:8c:ab:48:92:ee:d9:52:41:56:f4:13:24:55:
f3:db:8e:63:df:15:52:83:b9:93:c7:58:d4:ff:cf:
13:6b:e9:17:0c:0b:1a:54:7f:dd:2e:04:32:30:83:
d9:21:18:e6:aa:d9:62:90:a8:f7:b1:5e:7f:9f:4b:
80:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:67:09:69:ED:56:9E:F8:29:04:AB:3E:ED:67:29:51:E8:DB:3D:55
X509v3 Authority Key Identifier:
keyid:87:76:04:2A:B7:F0:71:95:98:EB:39:E5:3E:F9:2E:0A:CC:FA:4F:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3YEKrfwcZWY6znlPvkuCsz6T6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/9bdb8c-d307-41f6-ac81-e3ccf3ea3c4a/1/h3YEKrfwcZWY6znlPvkuCsz6T6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/9bdb8c-d307-41f6-ac81-e3ccf3ea3c4a/1/h3YEKrfwcZWY6znlPvkuCsz6T6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:41:90:cf:cc:5e:d1:9a:55:99:32:44:6d:ed:0a:66:0a:0e:
c9:2f:fe:17:d4:5a:3d:d9:d8:87:8a:42:37:56:aa:c3:1c:f0:
62:96:9a:a6:8c:8a:a7:2a:12:57:f5:4b:7f:8d:2a:5e:42:8e:
e0:6b:19:78:2b:6a:36:55:58:70:1d:c7:16:f6:5d:5d:0e:0f:
ab:e9:82:f7:ce:14:97:af:8e:cd:61:79:7c:5c:b5:20:66:1b:
6e:3b:75:f7:6c:ad:19:25:34:47:47:a5:3d:fb:44:af:92:56:
e6:a5:17:4e:4b:f9:c1:80:21:ca:ba:81:3c:01:4f:c2:fc:1b:
81:9a:b9:72:36:83:90:35:10:1e:36:5c:7a:69:92:8a:8a:34:
25:3a:c7:17:dc:7e:dd:63:44:21:04:21:cd:84:00:be:c0:c5:
0b:5c:c6:df:ce:82:51:35:7c:0f:18:c3:18:7f:0a:d5:55:96:
47:71:66:2d:10:61:23:84:ec:d9:0c:d8:e8:0d:b8:31:95:59:
d0:08:e9:bc:23:9d:4c:de:a6:b4:d4:83:3c:b9:53:55:cc:a7:
7a:2b:fb:72:87:1b:ec:e8:b5:ac:2b:49:0a:de:d5:71:c8:7f:
37:b2:a9:12:7e:8e:d1:af:07:55:d3:44:6d:13:84:a7:49:23:
79:ab:7e:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 11:07:41 2025 by rpki-client