Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
File: rKcX8QfgYizkyz71KwFU-n-baS0.mft (raw, json)
Hash identifier: lPy/+TpZlHUKAQQGIMwgsmgEz1jZEm52oOhbxWoUcKs=
Subject key identifier: F8:27:43:C9:CF:A6:A7:4A:79:CD:79:F0:4E:9B:A5:20:92:A5:E0:61
Authority key identifier: AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
Certificate issuer: /CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Certificate serial: 019896A6D49F583341F53531D91BCA8303F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
Manifest number: 11A7
Signing time: Mon 11 Aug 2025 01:02:52 +0000
Manifest this update: Mon 11 Aug 2025 01:02:52 +0000
Manifest next update: Tue 12 Aug 2025 01:02:52 +0000
Files and hashes: 1: rKcX8QfgYizkyz71KwFU-n-baS0.crl (hash: YswuumY9IAv7Z0RFmNI4Rs9CBD9CdhJ3pS5OtGG+8Uc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:d4:9f:58:33:41:f5:35:31:d9:1b:ca:83:03:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Validity
Not Before: Aug 11 01:02:52 2025 GMT
Not After : Aug 12 01:02:52 2025 GMT
Subject: CN=f82743c9cfa6a74a79cd79f04e9ba52092a5e061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:98:02:64:de:13:68:cf:b3:8b:3c:d1:71:7b:
52:4e:cc:07:bc:41:8d:43:00:36:b0:89:ac:49:40:
8c:5d:2e:3b:96:48:23:d0:52:7e:83:5f:41:f3:eb:
ca:50:6b:03:d6:4b:b7:40:c1:b9:b2:e5:2b:20:9b:
12:cc:e9:f9:98:25:7b:d3:37:5e:2f:cb:6f:da:17:
ae:27:6d:e2:28:01:09:6e:94:e7:2a:eb:8a:e5:03:
29:1f:29:e9:73:5e:e7:97:34:5c:78:47:89:63:2c:
49:ff:bd:a2:67:87:85:31:77:e9:50:67:64:94:78:
ca:ee:1a:44:36:03:6c:ea:56:55:f6:23:0e:7c:4a:
d1:02:ff:31:6f:e8:d6:bf:71:19:b3:78:9f:33:13:
90:1e:0a:36:77:67:de:e6:72:67:9d:91:6e:95:49:
84:a4:86:64:2d:8f:aa:17:96:7b:04:b5:d1:10:55:
14:62:a8:9e:eb:a3:37:ee:88:b1:d2:69:b8:37:c0:
fa:22:3f:1c:96:10:bc:df:43:6d:e4:ff:f7:64:1c:
38:6b:85:53:ac:f5:48:05:bb:de:1c:f5:19:f5:ce:
f0:c6:84:46:3d:1c:60:64:79:91:38:9b:9f:cd:39:
c4:21:cb:e3:d0:08:ad:62:a9:d3:03:9b:0a:ef:fe:
59:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:27:43:C9:CF:A6:A7:4A:79:CD:79:F0:4E:9B:A5:20:92:A5:E0:61
X509v3 Authority Key Identifier:
keyid:AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:3e:42:eb:6b:4c:e0:68:11:ee:ae:b5:48:fc:46:ab:28:55:
91:5b:99:33:14:cb:4b:5e:9c:51:a7:f4:ce:5c:d9:ce:66:fc:
32:ae:b3:2e:38:2c:86:6c:32:d1:ec:4c:26:bd:d7:e6:97:6b:
2f:14:d1:62:18:64:8e:c3:18:d4:0d:09:42:e9:b7:7e:25:64:
93:52:4e:c3:ad:56:0f:a9:6f:53:07:be:35:63:e9:37:d1:81:
01:52:32:5c:50:69:f2:d3:76:ac:3a:04:6e:54:1a:fa:50:74:
b0:7d:0d:e6:61:58:e2:55:1f:87:a9:d7:5f:43:08:8a:3a:b3:
0b:bc:e2:68:ae:1b:6a:a7:b9:3b:1b:a5:3a:83:59:29:d1:67:
12:f7:8f:a9:89:67:c4:0f:85:bf:08:b6:1f:35:0b:e9:5d:75:
a1:dd:cf:1a:25:94:32:d0:b5:1f:3b:ac:4c:b9:a6:c2:ec:9e:
e4:35:0c:b4:38:7f:83:50:cb:7b:13:f1:96:c9:fd:17:3a:a9:
00:70:11:60:45:bc:52:d1:13:2a:8b:ad:0e:43:97:cc:d9:2c:
4c:30:31:65:7a:f6:e9:4f:22:eb:a6:af:b4:27:0c:45:ea:b1:
f9:f3:7d:63:d7:ab:ca:64:12:90:18:82:56:bd:05:69:4a:be:
e7:b9:b5:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:24:35 2025 by rpki-client