Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
File: dCnR70knCBDhAgzqhhmGQjORMaA.mft (raw, json)
Hash identifier: 9IBvXnhUqoFcG0wHxLTtekDRRfUI0nT+XWZ6j0nuuZI=
Subject key identifier: CE:0E:E6:FB:F8:EB:E4:94:A6:01:02:30:18:00:02:9F:5A:70:AD:89
Authority key identifier: 74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
Certificate issuer: /CN=7429d1ef49270810e1020cea86198642339131a0
Certificate serial: 0198A04E236E27ECE3AAA655623A156AA95B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
Manifest number: 0AFA
Signing time: Tue 12 Aug 2025 22:02:12 +0000
Manifest this update: Tue 12 Aug 2025 22:02:12 +0000
Manifest next update: Wed 13 Aug 2025 22:02:12 +0000
Files and hashes: 1: dCnR70knCBDhAgzqhhmGQjORMaA.crl (hash: dMhg1bUs8mocUz7dB14yUW4HrOYmhA2pAL5sGo0fhQA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4e:23:6e:27:ec:e3:aa:a6:55:62:3a:15:6a:a9:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7429d1ef49270810e1020cea86198642339131a0
Validity
Not Before: Aug 12 22:02:12 2025 GMT
Not After : Aug 13 22:02:12 2025 GMT
Subject: CN=ce0ee6fbf8ebe494a60102301800029f5a70ad89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:30:83:1b:8e:6f:45:cd:cd:a1:a7:f2:ba:67:
83:4f:5b:73:d8:9e:f8:e7:86:ee:06:aa:24:1f:6b:
cf:10:46:f7:33:f0:c3:0b:ae:3c:8a:ab:5e:3d:d3:
b3:31:b2:a5:f5:f5:0b:d8:99:04:42:31:8f:8b:a4:
92:ed:07:63:dc:af:29:db:5a:c0:09:21:d5:66:fa:
7e:fb:83:c2:71:4f:3f:c2:df:b3:a8:20:a0:dc:5b:
9d:25:90:8e:0e:89:25:55:46:6d:cc:9c:34:f7:8d:
08:b3:a5:70:08:cd:8a:d1:ef:e1:41:ef:38:a1:ad:
41:fd:a8:0c:55:f4:e1:49:0f:78:33:de:8c:55:b0:
ca:af:64:f0:83:1b:68:c2:43:3e:aa:69:3b:94:c9:
0d:0c:52:43:8d:c9:b0:f7:d8:3b:db:68:71:eb:e3:
1c:5a:94:24:12:13:79:b7:40:46:85:65:ee:0f:92:
09:07:5d:16:36:5f:a9:f1:3d:77:c5:c4:ba:5b:1c:
68:31:32:9b:ec:81:98:24:23:c0:c8:f7:a1:6e:e4:
22:16:24:e6:7a:40:9a:42:26:12:7c:c6:3d:ba:ef:
15:b1:b9:0b:82:e2:a8:00:cd:56:b8:12:cd:fa:ec:
07:77:38:92:d8:24:87:f2:76:85:45:dd:f8:3b:cf:
93:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:0E:E6:FB:F8:EB:E4:94:A6:01:02:30:18:00:02:9F:5A:70:AD:89
X509v3 Authority Key Identifier:
keyid:74:29:D1:EF:49:27:08:10:E1:02:0C:EA:86:19:86:42:33:91:31:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCnR70knCBDhAgzqhhmGQjORMaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/fc0d21-7f14-44ab-995c-e0bae8bae674/1/dCnR70knCBDhAgzqhhmGQjORMaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:d5:a0:80:9c:3b:a3:a6:b8:21:72:a8:29:a5:09:49:e0:4a:
42:d6:80:26:0c:a4:ae:74:85:de:55:65:3b:88:8a:33:ca:5f:
dd:96:76:6c:e2:c8:6a:87:25:f3:73:cf:f3:fb:97:1f:ce:b6:
99:83:31:68:3d:02:57:6b:5f:c3:91:13:67:89:8a:db:d7:ed:
6f:bd:80:eb:57:71:35:89:85:4e:08:99:b7:f7:b1:38:9d:10:
18:19:35:63:0f:ef:55:74:6f:59:66:89:4f:21:f6:5d:bd:5e:
3a:eb:a7:5b:53:f6:e1:a4:44:30:47:1c:19:a9:12:2b:99:a5:
05:96:9a:17:fc:7c:fa:df:4c:5b:6c:65:88:1a:c3:b6:52:d4:
de:87:4d:06:0d:84:73:d1:81:62:86:46:c2:a9:45:04:00:73:
c8:fb:a9:b2:d1:42:aa:aa:08:cb:22:73:fb:9f:3e:54:93:32:
7d:3b:96:b7:da:f1:aa:c5:65:52:5b:27:18:1d:80:e1:7e:a8:
56:0c:eb:ed:43:5f:b5:07:cc:2f:a3:7d:20:5b:cc:d3:67:82:
33:80:e5:b8:45:c0:61:90:a6:27:e9:29:e2:52:50:5e:54:76:
52:49:2b:b9:8f:b8:c9:b0:08:72:74:ad:a9:18:06:62:88:08:
da:9d:f5:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:51:31 2025 by rpki-client