Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
File: 0krezYS7F0i9NbmezqRncuAeyTU.mft (raw, json)
Hash identifier: WHaNt3QjGkuanp1Sdeo+bMtuyVUDE8fNJXt4XdxzMcE=
Subject key identifier: 67:88:23:C7:57:60:6E:64:B2:56:1D:A0:64:DE:C2:43:C8:30:45:D6
Authority key identifier: D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
Certificate issuer: /CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Certificate serial: 0198936D022D616416340BB02CFB26B396D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
Manifest number: 162A
Signing time: Sun 10 Aug 2025 10:00:51 +0000
Manifest this update: Sun 10 Aug 2025 10:00:51 +0000
Manifest next update: Mon 11 Aug 2025 10:00:51 +0000
Files and hashes: 1: 0krezYS7F0i9NbmezqRncuAeyTU.crl (hash: c4pIq5J/E7ojJKPuTbrWN8NlH4+dEDjN1DmDGELQmug=)
2: UON5AT9SXUWq39L68I_y2_ZUikk.roa (hash: JwjZjFuzIaj/y6AQtmJH9bJqGEr4cg/qlCiSjx+pXxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:6d:02:2d:61:64:16:34:0b:b0:2c:fb:26:b3:96:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Validity
Not Before: Aug 10 10:00:51 2025 GMT
Not After : Aug 11 10:00:51 2025 GMT
Subject: CN=678823c757606e64b2561da064dec243c83045d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:09:3f:d7:36:7c:c9:c6:0f:4b:f8:4c:92:17:
b8:3a:d5:70:14:e3:70:b9:3a:38:9f:4a:1a:26:09:
76:6e:67:a4:31:8a:37:b2:1f:85:dc:07:8c:ca:fe:
a0:1d:e0:aa:f8:ea:3f:bd:12:d7:8f:b5:1b:84:9f:
7a:20:53:11:a9:b0:f7:ce:a5:b7:b2:79:76:c1:90:
48:b2:e4:51:cb:40:df:cf:d1:60:70:de:50:a5:b0:
ca:a1:2b:6d:42:64:81:04:36:68:02:b2:d8:40:40:
0a:d3:13:c5:b7:2c:c7:f7:12:ef:be:8e:04:96:0a:
5f:1f:95:4b:e2:5a:bd:f9:79:b2:da:4e:22:c0:3b:
93:35:19:ec:7c:2b:8e:63:ab:15:b6:0c:d4:b8:64:
66:84:4f:26:60:58:60:5e:64:ab:2e:d4:5a:65:09:
c0:db:f3:9d:55:44:c9:96:05:f5:54:d5:59:76:70:
d7:6c:98:7b:e0:da:b4:8c:ff:4a:cd:75:4a:44:cb:
35:d8:37:00:3b:8d:03:7e:22:9f:4d:81:19:ee:9d:
73:4e:4d:21:98:af:d6:0d:99:d0:f0:bb:3c:d4:2e:
5f:eb:f4:6a:9b:9b:7a:c0:91:dc:7e:07:48:2a:e5:
22:e8:bb:df:8c:5c:c9:79:ac:d6:f3:20:18:5b:4d:
92:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:88:23:C7:57:60:6E:64:B2:56:1D:A0:64:DE:C2:43:C8:30:45:D6
X509v3 Authority Key Identifier:
keyid:D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:7a:08:77:33:0b:61:5d:4b:10:be:82:1d:82:6f:07:a5:26:
7e:21:72:7f:c6:19:c7:73:41:d0:05:0b:1b:4f:2e:5b:7c:f1:
14:71:32:ae:0f:1e:31:ce:a6:ac:16:74:9a:af:9f:ca:f9:3d:
9a:95:fc:37:ef:e8:b0:90:36:d6:52:54:c5:06:06:3c:a5:09:
a2:72:8f:61:93:cf:85:1f:6f:05:0b:83:5d:17:0b:7c:d9:f6:
ed:f5:cc:50:96:02:56:b8:0a:83:05:c7:f7:84:cd:82:0a:54:
da:31:99:61:5d:af:a6:fd:ff:13:09:21:ac:af:21:20:d1:cc:
3c:20:81:ed:33:8b:78:44:69:74:ea:be:c7:04:da:b5:b5:cf:
cd:1b:ea:28:8a:55:eb:6b:46:e8:a5:73:3b:7c:d5:c1:ac:29:
b9:44:90:68:3e:ca:c2:59:81:7f:d3:c2:a3:7c:39:66:a6:8b:
c9:9b:f2:c5:ea:5a:81:3f:6a:26:22:3b:ab:c9:52:b4:a4:fb:
e3:e8:22:c3:e9:ef:cd:af:89:25:97:61:37:01:29:9e:91:0f:
dd:49:82:32:14:42:84:67:2a:c0:63:e5:b2:5c:f7:8e:46:eb:
8e:3d:b6:42:cf:98:1b:d2:67:1b:da:ec:56:7f:0b:bd:dc:c1:
8f:4d:df:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:43:48 2025 by rpki-client