Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
File: s1IytLD6jIPU_4wSROhk67yt1os.mft (raw, json)
Hash identifier: sGLGylMQ0h7hpiK6T2FQKphUJ4M6rgUY2BlamUyzOtI=
Subject key identifier: D5:FB:09:B5:07:B5:D1:23:00:16:B1:D7:82:55:F1:46:24:49:D4:AA
Authority key identifier: B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B
Certificate issuer: /CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b
Certificate serial: 019873E2B145480DD329CBB256AB8E5EF144
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
Manifest number: 108E
Signing time: Mon 04 Aug 2025 07:01:33 +0000
Manifest this update: Mon 04 Aug 2025 07:01:33 +0000
Manifest next update: Tue 05 Aug 2025 07:01:33 +0000
Files and hashes: 1: s1IytLD6jIPU_4wSROhk67yt1os.crl (hash: 1Q3G+hfQ9rK9Cr0X+cRERhBbMJuaqJA6qKC4ZxsYbbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:b1:45:48:0d:d3:29:cb:b2:56:ab:8e:5e:f1:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b35232b4b0fa8c83d4ff8c1244e864ebbcadd68b
Validity
Not Before: Aug 4 07:01:33 2025 GMT
Not After : Aug 5 07:01:33 2025 GMT
Subject: CN=d5fb09b507b5d1230016b1d78255f1462449d4aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f6:72:89:c8:6a:e2:c8:1a:db:a9:3e:44:78:
8e:c7:9e:de:3a:8f:1f:ad:b0:a2:e7:fc:11:3a:e7:
7f:12:5e:91:fc:98:48:f9:45:20:5e:e7:4a:54:d9:
6f:63:0e:3a:8b:47:15:c3:4d:78:11:87:21:2f:69:
ee:c8:ec:80:82:a0:dd:c6:98:6a:35:ef:a4:94:28:
bf:ee:df:79:7b:72:81:90:08:b3:55:c0:0f:40:cc:
01:e8:00:80:ce:24:5d:24:c3:3d:bf:f2:5a:39:c0:
53:65:4e:11:b2:bf:bf:77:03:00:ff:0e:30:da:f6:
ea:6e:c9:93:4b:a6:c7:ee:14:db:86:b2:ab:cd:6e:
1c:81:3f:79:55:7c:8a:62:9b:1d:2b:de:b6:36:75:
5c:89:74:a9:ca:e5:e3:35:be:ec:c0:ac:5a:cd:ba:
b5:56:1b:07:7b:69:c3:a8:61:47:a6:2d:d6:2a:14:
55:ee:55:0d:41:cd:fb:4f:c4:33:79:68:9e:71:c8:
8f:72:61:24:15:f4:35:99:e2:2f:98:1c:62:ed:8e:
c8:b4:c7:14:cc:cc:3e:29:e5:9f:4f:65:7e:c7:81:
a3:7f:be:db:f2:90:b4:b8:1e:aa:53:83:41:ba:85:
9e:98:6f:01:71:b6:6e:a8:e7:f5:19:24:fe:28:ba:
e3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:FB:09:B5:07:B5:D1:23:00:16:B1:D7:82:55:F1:46:24:49:D4:AA
X509v3 Authority Key Identifier:
keyid:B3:52:32:B4:B0:FA:8C:83:D4:FF:8C:12:44:E8:64:EB:BC:AD:D6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1IytLD6jIPU_4wSROhk67yt1os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bd9fd8-a346-459e-838a-b9122e521058/1/s1IytLD6jIPU_4wSROhk67yt1os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:3c:0e:95:26:71:82:9f:2e:3e:71:25:68:8b:be:a1:83:39:
5a:76:35:1a:57:30:5d:f3:77:37:9a:e8:bc:51:5d:7c:fc:c8:
d8:00:d5:f1:bb:58:8c:63:e1:34:bf:74:37:94:c7:08:e7:ea:
05:9b:62:61:db:47:43:50:77:55:c1:41:e5:69:a1:81:7e:4a:
41:2a:6d:db:a4:40:83:70:d2:20:10:17:fe:0f:96:c5:ea:9b:
b4:7f:d0:98:0c:84:ea:af:b8:73:1d:99:41:c3:15:69:2f:01:
4e:6b:84:eb:22:e5:0f:d9:74:25:d5:d7:9d:19:46:3a:d5:3e:
75:5a:58:cb:ac:1b:34:1b:91:61:f8:ea:d0:df:43:44:06:d9:
99:3c:a2:41:d7:fd:28:0a:87:08:09:af:07:95:03:1f:62:ca:
94:45:02:26:69:a7:b4:20:1b:bd:cd:77:17:27:a7:f9:27:ce:
61:25:af:aa:51:be:0d:80:d4:a8:bb:30:cb:5f:4b:15:7d:b7:
74:6e:7b:c5:6f:6d:5c:e8:19:28:bf:17:da:02:79:90:cf:48:
58:bc:c2:d4:e0:f8:b7:c1:a3:ca:32:e7:ab:16:c7:ca:cc:67:
fb:b6:1a:7f:3b:98:ac:24:3f:6d:cb:2a:55:5f:25:cb:48:ef:
53:18:90:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:40:17 2025 by rpki-client