
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: w/41XgsQ/iubgxMZ9hj7YCLx7aDinsF//00gOO0q5qA=
Subject key identifier: 5E:D0:39:4C:EB:C5:EB:C8:01:D3:88:67:74:53:0C:EB:4F:72:27:F2
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 019875D27EA2F20E05DD0097E593F5A91794
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0C6C
Signing time: Mon 04 Aug 2025 16:03:05 +0000
Manifest this update: Mon 04 Aug 2025 16:03:05 +0000
Manifest next update: Tue 05 Aug 2025 16:03:05 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: z0YP7L4y28qhQHjO07w4gQNCU+6M8ZjP4husRvObfh4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:d2:7e:a2:f2:0e:05:dd:00:97:e5:93:f5:a9:17:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: Aug 4 16:03:05 2025 GMT
Not After : Aug 5 16:03:05 2025 GMT
Subject: CN=5ed0394cebc5ebc801d3886774530ceb4f7227f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:94:ec:81:16:f3:3f:bd:25:ac:6d:4f:de:0a:
a5:7e:a2:7a:44:c2:36:33:59:83:bd:d7:6f:9c:bb:
69:88:70:d8:13:be:1f:6b:35:da:2d:63:33:01:7d:
77:08:b0:f6:ca:ae:76:87:23:e6:ae:6a:76:3f:d1:
c2:51:aa:c0:33:7d:25:5f:4c:9a:4d:51:6e:a9:60:
be:53:8e:28:89:c5:2b:9a:af:c8:d3:90:39:da:d9:
b9:37:bf:e2:26:2e:4d:e0:7e:50:c0:ee:2f:6d:29:
15:5e:ba:3f:4b:13:ca:e8:2f:77:24:54:86:c9:7f:
07:c6:c9:2e:99:34:87:2c:90:40:68:83:53:1b:22:
4e:95:87:54:7a:24:c0:30:e7:48:15:7e:41:e1:29:
5e:4b:b2:f9:4f:d9:26:c7:f7:c0:16:1c:3b:6b:42:
d7:8e:ba:48:bf:55:6c:66:74:d8:03:6d:c6:60:ec:
ef:e7:d3:20:65:fc:e3:6e:b6:c2:af:eb:a6:2d:22:
93:1f:5a:da:2c:54:00:3e:30:a6:fd:29:b4:de:51:
c2:d0:d3:4f:98:e3:e8:12:3f:47:40:0e:7b:94:a8:
d5:5e:fe:92:86:2d:dd:61:bc:5e:85:93:af:60:a6:
fb:71:5f:50:f7:e9:43:04:32:10:91:cb:62:4b:5d:
da:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:D0:39:4C:EB:C5:EB:C8:01:D3:88:67:74:53:0C:EB:4F:72:27:F2
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:94:44:71:39:e6:e4:e3:3b:f1:4d:4b:97:31:5e:4e:82:ce:
52:d6:73:ce:ab:58:bd:1e:74:c7:df:80:5c:a5:f2:42:c0:38:
67:cb:26:f0:9e:f1:5c:ea:fe:e4:17:a7:6e:b4:09:19:67:3a:
d2:3b:84:2a:e8:a4:fc:ae:6b:cd:d9:eb:f1:06:c4:8a:45:2f:
b0:46:a5:51:30:d8:74:97:68:84:48:10:81:b0:f3:d8:ed:cf:
6e:d5:d7:f0:5a:6a:8b:55:da:f0:8d:80:03:45:d4:04:a0:de:
ca:6d:1d:da:01:53:fe:e3:be:e2:d9:88:42:9b:7b:d1:61:00:
b4:06:a7:91:91:b1:9b:c9:3c:53:66:2d:72:b3:69:0e:92:0e:
02:76:4c:68:d8:5e:76:96:64:ec:22:d4:8c:89:73:69:1e:a4:
ed:8d:f8:5a:b8:8e:75:42:3a:11:e3:09:8d:d0:ee:48:36:e8:
6a:52:05:33:fd:bb:57:16:0b:ce:da:13:c0:51:d5:d8:ef:af:
89:33:91:4e:94:e3:0d:c5:a3:16:26:ea:ac:d4:1c:07:bc:ef:
bd:2c:90:7a:a8:63:7a:18:2e:4a:7e:8d:49:36:27:bf:9d:44:
25:4e:a4:00:b7:d4:5d:5e:6d:48:64:f5:f9:ce:9a:36:5a:b9:
8d:ff:36:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:56:11 2025 by rpki-client