Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
File: FLklHG89i7aaegPOrN0q58LIzjc.mft (raw, json)
Hash identifier: rmIplJDfH5Cf4Ev+nHj/z6WndzGHAY2KKNyYtRDqMfM=
Subject key identifier: 18:41:EE:6C:03:16:95:5A:2E:A4:82:C9:BE:0F:11:6B:B9:A0:E7:CD
Authority key identifier: 14:B9:25:1C:6F:3D:8B:B6:9A:7A:03:CE:AC:DD:2A:E7:C2:C8:CE:37
Certificate issuer: /CN=14b9251c6f3d8bb69a7a03ceacdd2ae7c2c8ce37
Certificate serial: 01988B107A1569DF4A44DA8B539E1DFDF71C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
Manifest number: 018D
Signing time: Fri 08 Aug 2025 19:02:49 +0000
Manifest this update: Fri 08 Aug 2025 19:02:49 +0000
Manifest next update: Sat 09 Aug 2025 19:02:49 +0000
Files and hashes: 1: FLklHG89i7aaegPOrN0q58LIzjc.crl (hash: b4QZ71pW/YLMIrbPaJwYhnfaHA/9akPeymyqnO2Ukbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:10:7a:15:69:df:4a:44:da:8b:53:9e:1d:fd:f7:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14b9251c6f3d8bb69a7a03ceacdd2ae7c2c8ce37
Validity
Not Before: Aug 8 19:02:49 2025 GMT
Not After : Aug 9 19:02:49 2025 GMT
Subject: CN=1841ee6c0316955a2ea482c9be0f116bb9a0e7cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a6:23:fe:5a:0d:6a:93:73:f6:4a:ae:c9:2f:
2d:fc:b3:13:6c:96:2e:bb:ae:c2:2f:a5:d9:76:81:
ac:69:9f:05:c7:c0:28:a4:db:d4:37:04:cc:ad:97:
ca:84:12:5f:21:c2:df:b6:dc:8a:17:28:77:20:8b:
c6:a7:fd:21:7d:09:38:38:6f:31:18:e5:47:42:73:
db:c2:08:e3:cb:20:00:60:7e:c1:d6:7e:10:e2:4c:
a2:44:a5:d4:dd:ce:dd:e3:08:b7:ce:24:61:8f:c6:
c2:b9:45:17:38:74:02:0b:aa:4a:b0:9c:32:b6:ce:
0a:0b:50:fe:8f:75:72:45:8c:9a:42:fe:c3:55:25:
d7:f7:79:2d:d5:5e:cc:6c:4e:92:20:5b:22:15:eb:
b9:b7:c2:ec:2f:20:c4:9e:3d:9a:4b:a7:2b:b2:fa:
b1:90:65:aa:9c:67:10:6c:9b:ac:24:37:bb:09:2a:
d7:58:12:37:22:67:b1:4c:7a:57:f3:ff:2c:27:b9:
59:d1:a4:b7:38:f9:60:be:69:e7:60:20:9f:90:82:
33:9f:00:ad:d2:1c:e6:77:66:f3:8d:b3:04:34:fa:
f9:b5:8b:fb:1c:eb:92:f7:83:e4:59:22:80:74:2b:
0f:69:8c:07:ec:a1:66:30:17:a1:f8:8d:b2:31:98:
bb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:41:EE:6C:03:16:95:5A:2E:A4:82:C9:BE:0F:11:6B:B9:A0:E7:CD
X509v3 Authority Key Identifier:
keyid:14:B9:25:1C:6F:3D:8B:B6:9A:7A:03:CE:AC:DD:2A:E7:C2:C8:CE:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:44:c7:2d:7d:6e:19:49:ac:8b:84:2c:95:26:e1:13:40:64:
a9:5d:a8:8e:38:cf:16:9a:1d:f2:13:b2:f6:41:c0:ed:ae:9e:
08:ab:c6:93:26:b9:9b:a3:0e:5c:bf:69:b1:03:9a:55:3a:24:
4c:6a:1b:76:bf:d0:70:c1:d4:54:7e:00:0e:15:20:8c:3b:06:
10:4e:45:c5:57:d2:93:67:df:16:6d:4a:eb:ba:3d:e5:ae:5e:
c2:1c:c1:76:05:70:c4:cc:79:73:3a:f1:1f:0c:ff:04:a7:ba:
37:0c:2e:c2:b4:f7:da:6c:0e:db:9b:9a:cc:97:a1:2d:30:c7:
1e:88:31:2e:25:73:2c:64:de:6c:0a:da:e9:06:fb:80:39:31:
21:ab:9e:af:09:d9:36:09:2f:07:8c:ae:59:fc:a8:6c:ef:44:
5e:72:e5:c4:c0:b8:20:b0:e3:85:75:02:13:ac:a7:9b:b5:70:
fd:d4:63:eb:4d:0e:0c:37:63:66:a0:9a:dc:91:94:95:55:7c:
6c:19:b0:19:5a:7f:51:4d:71:7b:d7:9b:43:2d:99:1a:46:d4:
d2:8e:86:5d:c9:40:1a:04:08:73:6a:24:cf:83:1a:87:76:f4:
37:e1:a3:88:a9:12:45:9f:79:00:ff:62:40:a7:7b:ca:c1:05:
ac:c5:dd:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:35:15 2025 by rpki-client