Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft
File: gU3w5sDcpazuCDqMcwTUXz0z1W0.mft (raw, json)
Hash identifier: vK+Wak4SrstnXNV+8Kcs8mWpVjPHl6JQJaZI/h42Jz4=
Subject key identifier: F4:30:3F:06:A9:33:6C:F2:59:EC:6D:35:AE:58:FA:4A:67:3F:1D:6D
Authority key identifier: 81:4D:F0:E6:C0:DC:A5:AC:EE:08:3A:8C:73:04:D4:5F:3D:33:D5:6D
Certificate issuer: /CN=814df0e6c0dca5acee083a8c7304d45f3d33d56d
Certificate serial: 0198A04EDA6EB5E1D8F925BDF97D8E5179CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft
Manifest number: 0D0E
Signing time: Tue 12 Aug 2025 22:02:58 +0000
Manifest this update: Tue 12 Aug 2025 22:02:58 +0000
Manifest next update: Wed 13 Aug 2025 22:02:58 +0000
Files and hashes: 1: gU3w5sDcpazuCDqMcwTUXz0z1W0.crl (hash: yBCC/8xwFytmdYvwq0+8fqo9HvLRDicrdbj1y/c1MtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4e:da:6e:b5:e1:d8:f9:25:bd:f9:7d:8e:51:79:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=814df0e6c0dca5acee083a8c7304d45f3d33d56d
Validity
Not Before: Aug 12 22:02:58 2025 GMT
Not After : Aug 13 22:02:58 2025 GMT
Subject: CN=f4303f06a9336cf259ec6d35ae58fa4a673f1d6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:40:0e:90:da:72:75:2c:0d:2e:4f:06:8a:4a:
6f:30:9a:25:d4:71:99:e2:50:68:aa:e6:0b:43:cd:
0b:26:be:ba:58:84:36:5c:42:04:76:a1:68:d3:2f:
df:06:39:90:56:32:93:7a:68:f3:f8:cc:26:a3:c9:
82:83:a6:93:11:3e:a2:27:a3:2e:3c:a4:d4:01:e4:
1d:7a:71:a1:99:5e:33:42:4f:de:d8:1e:7d:9c:c5:
1e:68:88:70:6b:98:b4:09:e6:1f:c4:d3:90:5d:39:
45:c3:ea:aa:0c:28:cc:28:e3:c2:03:8f:1b:dd:da:
aa:6c:8d:7d:18:0d:cf:8b:06:1c:d7:b0:45:4f:70:
21:79:7d:5a:a8:6c:cb:4c:03:55:d3:65:e2:d3:9c:
c7:b6:72:46:aa:99:59:f4:b3:da:13:bb:67:f2:25:
8b:1e:8d:8c:9c:22:14:90:b4:b8:12:02:26:a2:fb:
e9:4a:39:39:d6:2c:17:94:7a:69:9d:35:39:b7:62:
48:66:ae:12:b1:81:4c:72:7b:1f:8d:dd:ee:5f:9c:
fd:9f:a4:c2:ce:7c:38:86:9b:0e:02:a3:95:95:da:
ae:81:9b:f6:15:15:94:25:06:1f:ec:0a:c2:dd:79:
30:72:5d:6a:8f:50:db:75:83:5a:c2:e2:0b:e8:5f:
e9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:30:3F:06:A9:33:6C:F2:59:EC:6D:35:AE:58:FA:4A:67:3F:1D:6D
X509v3 Authority Key Identifier:
keyid:81:4D:F0:E6:C0:DC:A5:AC:EE:08:3A:8C:73:04:D4:5F:3D:33:D5:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:d2:1c:7a:53:cb:7c:05:b3:f1:d8:96:30:fe:e1:05:3d:06:
f0:6b:91:da:e0:83:45:36:2b:77:75:bf:d0:ff:0c:fc:b0:51:
c3:c5:ba:29:21:80:8f:bf:2e:69:66:e2:02:c6:19:9e:ee:9a:
19:97:e4:7d:56:ae:44:51:f9:b4:da:07:0f:f2:ee:42:36:e3:
11:6f:b3:25:8c:75:6e:82:2d:64:0a:7e:e7:6b:b3:86:7d:08:
fb:ae:ad:1b:ba:c2:29:9b:51:34:fd:0b:51:22:7b:e3:03:d6:
d0:a0:65:0c:fe:97:87:0e:83:b0:27:cd:7a:6a:36:42:96:e9:
83:09:61:a1:18:18:a8:16:e3:0b:ed:40:18:58:cf:31:da:90:
e7:a8:21:aa:e7:1b:57:1b:14:0f:85:c2:b3:02:1d:f6:84:76:
03:5c:e4:32:c6:a2:7f:d7:c0:52:c6:bb:36:98:26:f8:d3:d3:
c6:76:2f:ad:81:2d:fb:55:8d:31:fa:95:bf:1d:a4:7a:c8:7c:
0e:9a:fa:86:2e:8a:42:20:d2:03:9f:1c:59:4b:a2:e7:ff:09:
52:c8:bc:0a:a4:54:85:11:30:94:2f:94:cf:5a:43:33:2f:a5:
f6:ea:3f:35:89:53:46:15:0f:2b:7a:30:67:71:42:2d:11:33:
e1:8c:2e:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:10:37 2025 by rpki-client