Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.mft
File: a2o1zDDsMRZCDA_wTFnkeT6Rk_s.mft (raw, json)
Hash identifier: 8zZG3kFJ/rU3bXAOFuAtg38Y2YXmZ5vuQdRTd/UeUxQ=
Subject key identifier: 9E:1C:0B:94:FF:EF:E6:81:23:D5:C9:13:BA:24:0F:01:6A:66:AD:06
Authority key identifier: 6B:6A:35:CC:30:EC:31:16:42:0C:0F:F0:4C:59:E4:79:3E:91:93:FB
Certificate issuer: /CN=6b6a35cc30ec3116420c0ff04c59e4793e9193fb
Certificate serial: 019873E341D4E53B254584D0727DBD449931
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.mft
Manifest number: 021C
Signing time: Mon 04 Aug 2025 07:02:09 +0000
Manifest this update: Mon 04 Aug 2025 07:02:09 +0000
Manifest next update: Tue 05 Aug 2025 07:02:09 +0000
Files and hashes: 1: a2o1zDDsMRZCDA_wTFnkeT6Rk_s.crl (hash: xPL9wOaQzLHkehuu4f2jGMgEzAEjrwSuQNt9wIv+oi8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:41:d4:e5:3b:25:45:84:d0:72:7d:bd:44:99:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b6a35cc30ec3116420c0ff04c59e4793e9193fb
Validity
Not Before: Aug 4 07:02:09 2025 GMT
Not After : Aug 5 07:02:09 2025 GMT
Subject: CN=9e1c0b94ffefe68123d5c913ba240f016a66ad06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:18:c5:38:1d:5c:94:69:f2:17:2a:89:cd:07:
e2:fb:a2:aa:e3:b5:c5:6d:b9:ec:a3:23:aa:36:98:
0d:4a:0f:da:3e:f9:bd:02:3c:ab:55:30:41:37:5e:
48:f5:6f:ac:c4:25:42:1f:c5:0e:a6:ac:15:8c:8a:
13:bc:00:72:f7:a1:b4:fb:d2:99:08:32:50:e2:29:
aa:b6:0f:80:e3:67:2f:2a:5c:b1:3a:73:cb:fb:47:
9d:41:cb:90:fc:2f:34:08:79:7c:b2:48:ec:f1:4e:
a5:ba:3c:b3:75:a3:82:47:27:ce:eb:84:fc:00:5c:
4f:4f:32:e4:7a:42:63:5a:e3:c2:4d:24:2b:28:0b:
ea:97:e6:2f:99:93:38:00:f7:4f:fd:21:16:87:99:
21:5c:c1:19:cc:93:af:80:65:31:2e:ec:71:41:f9:
34:22:79:b0:95:84:29:44:8a:22:8b:d8:a8:53:2b:
f4:99:4b:03:fd:a3:f7:e9:4e:05:53:09:2d:df:3a:
97:9b:98:0a:d9:30:46:28:e9:5b:56:98:a6:2b:b7:
eb:f0:28:a0:0a:4f:32:c7:89:0e:0e:c1:91:c5:1a:
f4:92:e4:db:4a:6a:0e:4a:e4:88:bc:3f:1c:ae:4f:
f3:5e:99:3b:bb:2c:97:51:6f:ce:2e:ce:ad:12:68:
a8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:1C:0B:94:FF:EF:E6:81:23:D5:C9:13:BA:24:0F:01:6A:66:AD:06
X509v3 Authority Key Identifier:
keyid:6B:6A:35:CC:30:EC:31:16:42:0C:0F:F0:4C:59:E4:79:3E:91:93:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/89226d-1fee-4571-8106-51fb82eff3d6/1/a2o1zDDsMRZCDA_wTFnkeT6Rk_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:2d:2a:6e:94:55:5f:e8:d4:98:21:13:39:6d:52:b9:72:e6:
cb:74:39:57:ba:ce:0b:7f:e0:5a:92:c6:2b:02:9b:7e:d8:9e:
6b:cb:58:01:f6:a9:82:8d:de:c0:86:61:4e:52:69:a0:f9:a5:
5d:da:4a:f0:5f:d4:12:ae:12:34:f4:2c:9e:04:f1:df:fe:ee:
53:6d:67:bd:51:2e:ff:0c:18:be:47:00:d5:4a:d4:09:2c:f6:
97:20:a0:38:43:31:9e:c1:fc:67:ef:44:46:52:e2:c7:a7:ca:
a0:a3:e7:43:1d:d5:c7:51:d9:59:59:77:83:6e:c6:8d:93:1f:
51:a8:23:46:54:13:2a:fb:87:ef:49:af:cf:ef:22:a4:80:2c:
72:7a:69:64:24:58:68:9a:be:80:ac:04:23:6c:2a:85:8d:de:
6d:f4:bb:3a:10:2a:8c:a6:17:90:b3:26:d8:ad:4b:12:4b:73:
8d:44:44:b6:a2:ca:65:11:a6:32:d2:a6:91:c4:e4:e5:37:fd:
f0:0d:86:32:97:b5:47:8f:02:d4:8b:cb:29:96:53:bd:b0:63:
96:42:ee:e4:42:14:b7:cb:3e:b4:ed:b6:a1:1f:1b:df:e8:91:
9f:ab:9d:7a:aa:8e:fc:9a:a3:cb:1b:c7:f1:4a:41:70:b0:04:
09:ae:7e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:38:13 2025 by rpki-client