Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
File: FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft (raw, json)
Hash identifier: GxmQfamFsmLfB9NiscXFJS5+vlOst58RhyDjWgTlF04=
Subject key identifier: 3C:B3:08:D1:7D:B0:F4:F4:CA:68:05:EE:F5:B5:B8:43:A0:74:1A:6E
Authority key identifier: 16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08
Certificate issuer: /CN=16536fc756a5864aaa2c1e77bb764248dabe2608
Certificate serial: 01987DF7BA91922989CC3E0BA9F2623038D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
Manifest number: 066E
Signing time: Wed 06 Aug 2025 06:00:43 +0000
Manifest this update: Wed 06 Aug 2025 06:00:43 +0000
Manifest next update: Thu 07 Aug 2025 06:00:43 +0000
Files and hashes: 1: FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl (hash: sYdRbR+3sJXuyXRtgysUrvhTDULjcWYiZOgGmkG1qWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:ba:91:92:29:89:cc:3e:0b:a9:f2:62:30:38:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16536fc756a5864aaa2c1e77bb764248dabe2608
Validity
Not Before: Aug 6 06:00:43 2025 GMT
Not After : Aug 7 06:00:43 2025 GMT
Subject: CN=3cb308d17db0f4f4ca6805eef5b5b843a0741a6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:13:3c:6d:d4:38:83:fd:b9:b6:9b:28:9c:07:
8c:9d:72:fd:24:a8:a6:69:d5:c2:11:1d:84:19:21:
af:97:03:59:50:0d:75:ee:ab:7a:b1:16:84:b1:e5:
be:ba:f1:e8:2f:c6:31:10:4e:66:9c:98:7a:92:b0:
a7:a3:85:26:09:f6:6b:f3:2c:7e:a4:89:6c:fd:ca:
b1:1f:fc:e5:b3:86:f2:b0:3f:b7:0b:ca:bb:06:b7:
2c:e5:17:aa:38:f3:89:2d:59:ee:3e:cc:e8:a7:4c:
d0:a3:ae:58:3f:3b:26:d8:2f:a6:76:80:95:85:a2:
fa:e1:ab:3d:e8:13:ea:81:23:a3:5c:f4:16:45:e5:
1e:3a:be:d3:59:61:e7:a2:25:76:84:af:85:ba:69:
fd:ce:a0:58:6a:56:f2:c6:2e:1d:16:48:e1:ba:ae:
68:31:90:3e:1c:c4:9e:c1:f9:2b:7c:42:c1:fc:0a:
39:e6:0b:d1:87:06:ff:86:59:44:12:85:cd:8b:32:
25:27:c2:25:a2:97:7e:da:58:6a:3b:6c:13:0b:70:
63:68:de:08:bb:76:d3:90:60:15:58:8e:b7:3d:6c:
e4:7e:a2:ec:65:da:31:75:29:5d:d5:75:f9:84:18:
1d:2d:a2:09:dc:cf:cb:f5:55:86:b7:bd:52:68:e9:
1d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B3:08:D1:7D:B0:F4:F4:CA:68:05:EE:F5:B5:B8:43:A0:74:1A:6E
X509v3 Authority Key Identifier:
keyid:16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:da:87:b9:93:51:01:b2:51:52:49:51:1e:09:35:71:af:f1:
cd:de:4b:c3:f3:e3:df:08:f4:1f:54:cd:83:1a:d9:df:55:45:
db:d5:7d:9a:36:ec:d5:5e:bd:69:0d:1b:62:4a:2b:e2:04:7e:
33:03:8a:5f:ab:88:e9:b7:51:73:b6:f6:a7:da:c7:1d:62:c6:
35:3f:f3:2b:e7:26:50:c4:e0:2f:f0:bb:a4:7a:2d:d4:66:86:
2d:f7:d7:3c:97:48:08:4a:94:1f:d4:40:81:b1:e5:33:04:14:
ec:a9:d8:0f:81:0f:16:cd:69:fe:d5:a3:16:a8:e7:f2:5f:2b:
8b:59:b6:ff:b1:21:76:f7:59:04:78:fc:1f:c8:64:73:c8:fc:
46:4b:39:9b:74:dc:0c:9a:12:56:3d:a5:21:f7:06:c8:0a:c6:
c6:96:05:4c:a4:f9:06:0f:75:16:d4:e7:15:5a:69:a0:ee:3b:
35:39:1b:42:ba:01:a8:df:fa:ec:09:cc:4d:bd:d1:0c:d0:74:
8d:f0:e4:03:d4:7d:a0:8c:56:1d:46:6c:89:4f:14:2c:ea:f1:
dc:c8:21:6b:08:8f:51:b9:ae:44:09:89:85:92:fb:83:2f:4c:
c9:b9:66:1c:da:b2:aa:82:b0:44:c3:50:38:9d:22:63:94:ca:
a9:b0:11:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:39:26 2025 by rpki-client