Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.mft
File: 5OIv9yeFHntJFhTwetExVxQcwwk.mft (raw, json)
Hash identifier: +4XQ7VlYNVRpf4GORvzzOM9r7bEXAfGOZwL+A36XpCU=
Subject key identifier: 35:3F:A4:74:E5:67:64:FF:D1:0E:73:B9:31:FF:1C:F8:A7:42:41:35
Authority key identifier: E4:E2:2F:F7:27:85:1E:7B:49:16:14:F0:7A:D1:31:57:14:1C:C3:09
Certificate issuer: /CN=e4e22ff727851e7b491614f07ad13157141cc309
Certificate serial: 01988BEAC9839DC781B3ACF691FF0A322061
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5OIv9yeFHntJFhTwetExVxQcwwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.mft
Manifest number: 14D2
Signing time: Fri 08 Aug 2025 23:01:16 +0000
Manifest this update: Fri 08 Aug 2025 23:01:16 +0000
Manifest next update: Sat 09 Aug 2025 23:01:16 +0000
Files and hashes: 1: 5OIv9yeFHntJFhTwetExVxQcwwk.crl (hash: oq+GKPNW3GO9N+jG3eFxgAt7g+05Qcgxiy6dcfLxesI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.mft
rsync://rpki.ripe.net/repository/DEFAULT/5OIv9yeFHntJFhTwetExVxQcwwk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:c9:83:9d:c7:81:b3:ac:f6:91:ff:0a:32:20:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4e22ff727851e7b491614f07ad13157141cc309
Validity
Not Before: Aug 8 23:01:16 2025 GMT
Not After : Aug 9 23:01:16 2025 GMT
Subject: CN=353fa474e56764ffd10e73b931ff1cf8a7424135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7d:c9:c4:e7:93:f2:1a:aa:63:42:0e:5d:68:
63:0a:9e:d7:cf:64:25:2b:0c:23:db:1c:70:9c:99:
63:f9:85:19:58:fe:9c:5f:14:cb:05:dd:7f:a0:09:
93:6c:f3:a9:c1:dc:88:6b:21:ea:05:ca:f6:c1:9f:
09:cc:9b:15:21:58:c5:d3:c3:9e:c1:01:e9:7c:4d:
f7:5e:c7:f1:39:2c:50:86:65:fc:a2:ee:5a:b7:13:
5e:62:5e:6b:17:75:36:92:0e:49:8a:c9:a9:32:0f:
a7:49:5f:ee:fb:47:eb:6c:ad:a7:89:4b:57:36:da:
f7:6a:2f:81:1f:8a:e5:33:e5:1d:1f:2d:f8:a5:23:
c7:a0:0e:39:ae:24:38:bf:d8:90:08:a4:01:5a:2a:
62:28:6e:90:f6:a0:41:28:14:b0:97:43:5a:63:67:
76:58:67:e1:08:ec:75:23:a9:42:a9:08:23:5b:09:
85:80:6f:8c:f1:ae:33:db:50:30:7e:fe:7c:0d:2b:
ab:f5:1f:e0:b2:10:4d:f2:15:47:81:18:8f:01:26:
3f:7f:22:4c:77:85:ae:21:4a:0d:81:60:95:43:b2:
32:1c:32:de:d4:3d:3e:eb:a2:6e:eb:1e:c4:1b:89:
b2:ae:cc:7b:e7:e8:63:ca:4b:51:1d:ef:71:3d:80:
93:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:3F:A4:74:E5:67:64:FF:D1:0E:73:B9:31:FF:1C:F8:A7:42:41:35
X509v3 Authority Key Identifier:
keyid:E4:E2:2F:F7:27:85:1E:7B:49:16:14:F0:7A:D1:31:57:14:1C:C3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5OIv9yeFHntJFhTwetExVxQcwwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:54:5a:5e:7a:e0:86:b3:dd:b3:ea:34:1f:91:25:51:9f:23:
85:5f:68:e4:1c:97:a8:1b:3e:da:14:9e:53:d8:04:b3:6c:1c:
78:ad:8b:af:ba:2b:ba:80:e4:4e:68:34:f3:f8:dc:9d:f4:d1:
2f:cf:bd:2d:e2:d5:f3:12:a2:5d:5e:f0:48:35:d9:62:da:2f:
45:cb:b9:20:d6:27:78:3a:a6:88:3a:88:8a:9a:76:4a:c0:a7:
f7:ac:4e:65:e4:ee:09:3c:d0:f2:4c:fa:45:57:d4:21:cf:9e:
07:83:19:79:4e:77:09:e7:c9:dc:36:b9:36:af:fd:cd:60:af:
7d:80:f9:99:c1:7a:14:8c:59:b6:02:49:9f:d6:49:98:9d:28:
79:27:00:3b:6f:03:a3:26:cd:5d:2a:83:8b:90:0b:e7:87:4a:
5b:64:aa:58:35:95:74:3a:65:b7:9d:e5:f6:e6:ea:38:4d:ff:
91:44:d8:37:3a:67:bd:62:68:ce:4e:fe:1d:50:a3:f2:08:0a:
af:a2:ef:40:2e:44:94:3f:92:12:05:9c:ac:1a:e5:df:43:d5:
18:f1:aa:76:9f:53:84:d5:b6:ad:03:5f:fb:27:23:52:08:fa:
24:4b:f2:7c:db:12:dc:89:96:29:16:92:27:b0:98:86:a6:c2:
38:7e:93:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 00:59:56 2025 by rpki-client