Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
File: pol1o9gy4UUny7or4QujwebGOFY.mft (raw, json)
Hash identifier: t2C7CMh4di522rxoTmBtDCxkQ8g0kLQYKENQbziIHJk=
Subject key identifier: 25:FE:B3:30:CB:C9:E6:8A:E8:AD:73:11:66:07:F0:03:5C:15:2F:D0
Authority key identifier: A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
Certificate issuer: /CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Certificate serial: 019873E30206E83994F69E64D1C6FEE56F2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
Manifest number: 05EB
Signing time: Mon 04 Aug 2025 07:01:53 +0000
Manifest this update: Mon 04 Aug 2025 07:01:53 +0000
Manifest next update: Tue 05 Aug 2025 07:01:53 +0000
Files and hashes: 1: pol1o9gy4UUny7or4QujwebGOFY.crl (hash: DhxbVw8cmIS3mHzNYk+xGAf234SzxEPO+55xWqHu+pk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:02:06:e8:39:94:f6:9e:64:d1:c6:fe:e5:6f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Validity
Not Before: Aug 4 07:01:53 2025 GMT
Not After : Aug 5 07:01:53 2025 GMT
Subject: CN=25feb330cbc9e68ae8ad73116607f0035c152fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:85:52:99:8b:05:7f:aa:96:fc:ef:80:1c:87:
26:c0:ec:8f:b0:0f:30:dc:44:40:89:42:4f:69:e7:
15:84:6d:b2:d8:c4:40:34:16:bb:1d:aa:8b:9f:56:
44:26:88:2b:11:57:73:d8:ee:ee:f9:04:08:05:ae:
01:64:2f:6c:73:31:fe:43:e4:a0:8c:0f:1c:66:c9:
0e:ac:7f:70:c2:a7:8d:2a:ac:1e:e5:e8:8e:5e:54:
c3:d6:11:e8:f8:fb:66:22:bc:af:70:fd:52:38:40:
80:e1:f8:cc:1e:9d:23:1f:b7:91:3d:73:bd:c3:4c:
89:01:05:9a:4c:a9:d6:a5:0e:09:a9:8b:03:98:00:
29:77:4e:b9:71:e1:96:08:03:ed:2c:0a:1e:63:aa:
e0:9c:2b:13:b7:74:f9:b8:6f:d9:0b:e8:8d:0b:95:
50:0d:b6:0e:2d:89:93:fa:e8:8e:6d:e9:f3:ca:45:
01:a3:82:a8:72:86:27:68:23:15:f1:1c:f5:7b:b8:
84:27:19:0d:63:4b:51:83:94:94:d4:bd:62:f3:83:
85:15:5d:62:7b:8f:2a:31:5e:a3:1e:b7:34:a1:0d:
15:39:a6:39:cf:61:ac:ba:ba:17:a7:23:41:10:a4:
2e:c9:08:a1:b8:68:c2:5f:b6:44:50:65:d5:a0:5d:
c0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:FE:B3:30:CB:C9:E6:8A:E8:AD:73:11:66:07:F0:03:5C:15:2F:D0
X509v3 Authority Key Identifier:
keyid:A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:a2:e3:34:44:27:a1:03:6b:ff:24:00:2b:ce:c7:1b:78:da:
d6:4f:90:f2:7a:9e:6c:8c:ce:46:1d:70:0c:b3:b6:1e:93:b8:
a7:3c:b4:82:2b:c5:53:e1:b1:3a:9a:30:8d:8e:bf:ca:66:b7:
db:19:75:97:b3:6a:21:0d:a5:c0:0f:75:f6:0b:68:7a:fb:11:
47:da:73:3f:39:3a:4f:32:aa:27:c2:0b:ea:8c:02:77:db:2b:
ce:a1:10:76:b9:61:f7:3c:2e:8b:47:d9:81:fb:98:7b:56:54:
4d:46:a8:1b:f7:2e:84:50:98:1a:27:14:17:d7:04:03:d8:23:
43:4c:c0:74:c0:2d:ae:15:af:e0:80:1f:25:f9:3b:1e:44:93:
03:00:01:70:bc:4e:fd:80:12:e3:ed:a4:ec:be:ef:34:dd:51:
e0:9a:a3:eb:d7:1e:a6:24:4d:ea:65:7d:db:71:7b:78:44:ad:
ed:d8:ec:34:53:a9:9c:f2:fc:f3:42:08:b1:84:89:f1:de:fa:
5e:b2:5a:f3:f9:ff:ad:96:6a:37:24:38:fa:f9:fd:99:3e:20:
1e:ab:fe:ed:3a:0e:00:ab:f7:db:cb:d7:6a:9e:d4:fb:63:4d:
11:aa:35:cd:ba:e5:8a:de:1d:f9:e8:fe:be:b8:9d:3d:26:e0:
4f:4b:93:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:39:56 2025 by rpki-client