Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
File: cc2ljxUk2CM2224M8qKf-vLaifg.mft (raw, json)
Hash identifier: /aUTIfzHHLOAxuNK8dJ1RSFZm+9zXNvZ0YyE/+DAFDg=
Subject key identifier: 4F:D3:BA:AC:80:6B:AC:7E:4B:A7:F8:7D:BE:BD:73:CC:8F:C8:99:58
Authority key identifier: 71:CD:A5:8F:15:24:D8:23:36:DB:6E:0C:F2:A2:9F:FA:F2:DA:89:F8
Certificate issuer: /CN=71cda58f1524d82336db6e0cf2a29ffaf2da89f8
Certificate serial: 019892C8D4987B4AC2CB2211F67F043F3B54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
Manifest number: 0E42
Signing time: Sun 10 Aug 2025 07:01:31 +0000
Manifest this update: Sun 10 Aug 2025 07:01:31 +0000
Manifest next update: Mon 11 Aug 2025 07:01:31 +0000
Files and hashes: 1: cc2ljxUk2CM2224M8qKf-vLaifg.crl (hash: 0rBIJhQGDkFixwxEwPXn0SzlB3aQPIZiJ547HcLdu5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 07:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:c8:d4:98:7b:4a:c2:cb:22:11:f6:7f:04:3f:3b:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71cda58f1524d82336db6e0cf2a29ffaf2da89f8
Validity
Not Before: Aug 10 07:01:31 2025 GMT
Not After : Aug 11 07:01:31 2025 GMT
Subject: CN=4fd3baac806bac7e4ba7f87dbebd73cc8fc89958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:76:18:97:9f:c9:c4:43:bb:a6:05:f0:4c:f2:
59:f1:85:3a:9b:66:e3:94:14:89:16:e0:02:32:92:
42:ae:c9:1c:16:bd:2c:d8:82:f9:75:c6:28:65:c3:
13:5d:dd:23:35:0b:a1:da:49:a0:a0:59:2b:17:8b:
95:d8:08:47:1a:0c:a9:a7:b9:c9:ff:be:3a:fe:ff:
fb:72:b9:5b:ad:98:1e:d2:ee:8b:f1:b8:f8:48:34:
e8:2f:fa:5e:3d:65:c2:a4:dd:09:0c:9e:95:fe:69:
92:99:80:48:04:63:ce:01:66:5d:62:62:76:c6:7e:
6c:95:63:bd:ee:14:77:c9:df:cd:05:4a:0b:9c:56:
78:07:4d:ef:ea:44:7c:bd:84:5b:33:69:f4:b6:1a:
cc:45:24:7a:1d:98:07:db:f8:1e:34:52:74:dd:0a:
49:07:94:52:2b:78:59:d6:75:4d:5b:bd:33:78:96:
f1:d2:f0:3c:05:36:35:94:99:6b:32:7f:c5:85:6d:
0b:77:78:92:00:e9:ab:0e:7a:53:c2:3d:02:2c:2c:
fa:de:45:4c:af:7e:49:aa:3d:df:7f:4c:9b:1c:66:
c2:87:03:46:e4:cb:0f:b7:22:9d:51:16:1c:f2:9c:
f9:e8:ed:b7:1c:a2:b8:73:6d:a4:1e:59:e2:43:33:
38:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D3:BA:AC:80:6B:AC:7E:4B:A7:F8:7D:BE:BD:73:CC:8F:C8:99:58
X509v3 Authority Key Identifier:
keyid:71:CD:A5:8F:15:24:D8:23:36:DB:6E:0C:F2:A2:9F:FA:F2:DA:89:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:44:29:e0:c4:24:4c:0b:3e:aa:2d:13:11:fe:d7:9e:9f:88:
f6:34:46:ee:71:24:fe:4e:a6:4a:23:43:3f:68:f4:66:da:e0:
c6:cf:bf:f5:c7:ae:e6:93:88:c3:49:72:08:35:6a:af:d5:79:
fb:f5:0e:b5:28:75:e7:de:aa:35:2e:59:3f:0e:b2:70:f6:eb:
ea:5a:ec:3f:9b:b7:64:d2:70:9c:0b:21:37:75:89:c1:17:fc:
8e:6c:fb:bc:e2:e7:32:83:c3:a0:d2:ca:eb:6f:e8:9f:77:aa:
7e:ca:66:76:37:21:79:90:65:01:28:36:39:e6:ad:e5:08:25:
03:8e:8a:e8:e5:75:59:30:06:47:d1:4b:f6:5e:8f:22:d6:d3:
b1:14:c5:b5:57:c5:f8:07:11:87:df:2b:03:a1:42:ed:ab:36:
48:55:ec:3e:73:67:bf:14:5d:2b:bc:b1:ad:3c:51:0b:a0:ba:
0b:fa:f9:1d:5a:74:b4:e7:f6:14:03:a8:56:4e:62:c6:a7:b6:
5d:7e:08:55:39:33:9c:22:32:4d:1a:4b:2c:5f:d3:f3:d0:4e:
a4:b0:2c:d7:64:e7:f7:41:c9:a7:08:d1:af:4d:a1:4f:72:74:
44:78:25:3d:6c:c6:09:1c:ba:2c:e6:36:b4:f2:22:09:02:60:
fc:76:fd:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 15:56:46 2025 by rpki-client