Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
File: rjRcTQnm4iTh2vRmV9PHEYewIjY.mft (raw, json)
Hash identifier: okxqmAONS+qJwpNXI/sbSVhbEQl8azddvDHafoedWUY=
Subject key identifier: 00:A5:C1:C6:58:6A:7A:67:6A:51:C2:3F:F4:9C:74:7E:98:16:7B:6F
Authority key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
Certificate issuer: /CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Certificate serial: 01989F70CCF0F24EBEA2D147179512D14BA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
Manifest number: 0577
Signing time: Tue 12 Aug 2025 18:00:26 +0000
Manifest this update: Tue 12 Aug 2025 18:00:26 +0000
Manifest next update: Wed 13 Aug 2025 18:00:26 +0000
Files and hashes: 1: rjRcTQnm4iTh2vRmV9PHEYewIjY.crl (hash: YIU8rK6HB81nmIfA2IRLRHC9W852veFSpbuznw7NR+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:70:cc:f0:f2:4e:be:a2:d1:47:17:95:12:d1:4b:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Validity
Not Before: Aug 12 18:00:26 2025 GMT
Not After : Aug 13 18:00:26 2025 GMT
Subject: CN=00a5c1c6586a7a676a51c23ff49c747e98167b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:08:b0:df:f4:18:fc:21:e4:35:1c:aa:0d:40:
6e:de:18:15:3c:56:c8:c3:88:2d:56:9d:69:dd:91:
78:28:91:ae:7e:41:a9:34:a8:91:d6:8f:4c:9c:d1:
68:c2:0b:57:66:77:b7:a3:e0:c5:b6:d1:d1:44:b8:
59:84:b4:67:c8:b7:67:05:53:e2:f4:69:3c:00:67:
ea:db:e4:3c:5f:f8:f2:a7:7a:5e:9a:52:33:c4:62:
ab:5d:18:be:b5:23:33:e1:26:b6:f0:41:2a:c9:19:
a2:0a:0b:db:7e:1f:da:37:90:97:b5:56:41:f5:a3:
1b:9c:96:6a:f3:99:e4:d5:74:1c:b0:eb:b5:3e:86:
49:f9:3a:c5:93:75:82:4c:58:00:d4:2e:9f:85:57:
30:a3:4f:fa:07:ff:3c:89:9d:2d:cf:57:13:58:c6:
d1:3d:77:c2:7c:46:69:23:d0:11:58:6f:92:7c:b0:
32:ed:e0:32:6f:5a:1d:aa:49:7f:d7:dc:6a:0c:4a:
fa:8f:a0:bb:13:9c:4d:ea:e8:6e:32:49:62:8d:d7:
a0:ee:17:de:bd:5c:6f:41:fc:63:44:5f:1d:83:a9:
54:7d:b8:d3:3c:86:b3:1d:b0:da:c1:1d:29:82:b8:
36:18:49:c2:67:bc:35:42:9d:24:4b:b1:4f:fc:0f:
79:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A5:C1:C6:58:6A:7A:67:6A:51:C2:3F:F4:9C:74:7E:98:16:7B:6F
X509v3 Authority Key Identifier:
keyid:AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:0e:0b:d1:c7:f6:8c:08:85:b7:b2:46:7a:37:08:b7:fe:69:
0d:60:07:83:0a:a5:49:44:41:30:bf:b6:2c:99:b3:0b:57:6f:
2f:bb:af:86:98:db:f6:3f:f3:be:38:dd:5e:f6:ca:f1:59:49:
5e:44:8b:92:af:2d:b1:1b:e7:e0:e0:d3:51:bd:be:90:51:73:
c6:9d:ed:0a:8f:48:d6:28:d3:7b:4d:47:45:0e:6e:73:71:0d:
e9:f4:ea:f9:a4:7f:0b:e4:e1:17:94:71:37:fa:d1:e2:b4:76:
7f:50:70:c6:0f:64:a9:38:cf:a5:e3:97:a6:83:13:3b:fd:35:
f3:1f:f8:a5:e7:9f:68:d0:eb:1b:0f:34:e3:9e:84:05:f0:0e:
45:4b:0e:6c:ca:c4:91:90:9b:3c:aa:3a:65:43:4c:50:bf:dd:
35:63:3e:85:2c:59:3d:76:59:cc:fa:0f:29:50:f9:7a:6f:09:
a5:66:8f:0e:65:22:49:f6:30:44:a8:92:34:e2:96:39:eb:05:
1c:9a:73:43:ff:77:54:0e:13:82:59:cd:76:d8:e4:e6:06:c8:
de:1f:ed:13:00:96:df:f4:ee:df:5c:5b:03:f9:35:e4:92:30:
84:f5:de:d9:cc:08:e1:69:b6:e6:a4:3d:9d:4f:9e:39:65:b8:
99:bb:a7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 00:37:43 2025 by rpki-client