Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
File: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft (raw, json)
Hash identifier: 01crdEm1pvoQHPD4Yzei7ctpzTc1ghL7xYR+4+pD5rc=
Subject key identifier: 38:EF:C1:4F:C9:E3:71:C6:0D:0A:D0:D6:15:07:78:BD:EA:42:BE:96
Authority key identifier: AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30
Certificate issuer: /CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330
Certificate serial: 01988EECC6F82212785A18EF768AF561FD58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
Manifest number: 0EBA
Signing time: Sat 09 Aug 2025 13:02:18 +0000
Manifest this update: Sat 09 Aug 2025 13:02:18 +0000
Manifest next update: Sun 10 Aug 2025 13:02:18 +0000
Files and hashes: 1: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl (hash: 6NosAeJROPki37n70pXpVzN4XugwqMrvWrlTy/VwoLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8e:ec:c6:f8:22:12:78:5a:18:ef:76:8a:f5:61:fd:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330
Validity
Not Before: Aug 9 13:02:18 2025 GMT
Not After : Aug 10 13:02:18 2025 GMT
Subject: CN=38efc14fc9e371c60d0ad0d6150778bdea42be96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:05:65:2e:0d:04:69:0b:7e:58:d5:bb:67:e0:
46:f0:42:a2:bd:54:af:30:cb:f2:88:0b:e7:95:2d:
f3:80:96:85:6d:e9:a5:06:9f:cd:d2:92:61:d2:74:
3d:e8:81:c1:3d:08:86:bf:30:d8:23:43:64:02:d0:
b1:2f:36:9d:fb:14:51:3e:b3:bd:e4:d6:9b:e9:a9:
87:d5:d1:52:29:04:fd:23:f0:5c:33:5a:95:69:f5:
02:a8:79:7c:23:05:86:b2:f2:4f:22:2a:61:b5:a3:
a7:5d:ea:bb:59:a0:48:62:71:a3:9d:70:34:a0:55:
c0:01:15:b4:ee:82:54:e7:23:5f:c7:ff:88:ce:62:
4a:56:91:b4:14:7c:a4:aa:51:06:a4:df:89:50:f9:
80:a6:b7:e9:6d:01:a5:1b:29:a6:3e:1c:61:b2:78:
66:b1:ff:71:73:ac:95:c4:13:b4:9e:0b:75:95:a2:
ec:11:8a:ed:b4:dd:45:1b:2e:3d:98:f9:1b:a2:69:
5a:d3:5c:8e:40:19:6e:d9:45:31:c1:0b:23:b6:39:
a9:5d:3e:59:52:d5:f0:7e:3f:33:2a:49:3e:1f:19:
7c:8b:9a:60:29:ae:7b:7f:e4:79:2a:ae:1c:70:70:
b4:52:01:67:41:b7:85:04:d8:89:e0:d8:e6:4d:24:
6c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EF:C1:4F:C9:E3:71:C6:0D:0A:D0:D6:15:07:78:BD:EA:42:BE:96
X509v3 Authority Key Identifier:
keyid:AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:1e:e9:1f:6a:74:24:3c:93:50:f0:05:79:6a:70:f4:40:8a:
a1:66:50:71:5b:c1:8e:08:04:33:30:6e:87:92:f7:0a:2b:8d:
1a:f3:f5:c6:09:f3:9f:22:2c:96:b2:74:ef:c4:34:f1:b1:de:
65:23:3a:a7:31:38:b3:69:f3:61:38:f3:77:e9:21:6a:bd:2f:
73:c4:01:ce:ea:11:7c:a1:77:58:c2:d6:97:8c:ee:54:ba:6d:
18:39:f8:4f:8d:e1:94:78:14:fd:db:73:82:35:5b:4f:b8:5c:
ee:f9:1a:f2:2d:97:d2:80:10:84:14:b1:58:33:3a:03:28:2d:
49:11:02:11:ec:81:34:a1:ab:c6:18:55:30:f1:49:04:5b:7f:
82:18:3a:7f:f3:a3:12:6b:05:22:be:2a:dc:9b:99:24:47:5d:
db:06:51:7f:99:d1:a2:78:93:fd:5c:68:16:d0:be:43:76:aa:
88:ad:d1:f8:c1:78:f7:9c:80:e2:7b:97:32:f6:5a:20:20:39:
b2:fc:30:67:17:e2:ac:ad:24:d4:12:95:b5:c0:de:31:39:84:
e2:da:5a:13:b3:3a:65:12:03:7f:f6:85:6a:5e:f8:2f:ed:ad:
05:10:18:a2:8e:00:9e:25:40:cf:cb:1f:d9:5d:27:f7:23:85:
2e:56:c4:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:34:51 2025 by rpki-client