Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
File: mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft (raw, json)
Hash identifier: Ul+fHdwhvqoByOHAL2p+aRAMYRkUltfdevsKRkoYDTc=
Subject key identifier: 31:95:59:02:75:C9:C0:EE:A8:55:B5:BF:AB:DA:7D:B0:1D:F2:70:FF
Authority key identifier: 9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
Certificate issuer: /CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Certificate serial: 0198816718C8749207567F5FF8CB450C0DBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
Manifest number: 10C0
Signing time: Wed 06 Aug 2025 22:01:13 +0000
Manifest this update: Wed 06 Aug 2025 22:01:13 +0000
Manifest next update: Thu 07 Aug 2025 22:01:13 +0000
Files and hashes: 1: mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl (hash: B5SNYq3sgTpQXXMfmMkL3m2RnElsKoN6HAqsvnRtOS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:67:18:c8:74:92:07:56:7f:5f:f8:cb:45:0c:0d:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Validity
Not Before: Aug 6 22:01:13 2025 GMT
Not After : Aug 7 22:01:13 2025 GMT
Subject: CN=3195590275c9c0eea855b5bfabda7db01df270ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6d:4e:b3:1d:2e:8c:e1:73:65:35:ac:e1:89:
3b:78:7a:df:44:1f:79:f8:05:4f:16:dc:be:60:6c:
82:fc:42:e2:4d:7d:26:b8:3d:ff:4d:dd:15:39:07:
06:af:b7:d2:cb:0c:4b:e5:aa:0d:db:9e:57:7d:09:
dd:a9:6d:3e:93:0e:07:cc:a7:ee:78:8c:d7:0f:ea:
5e:d3:16:0a:3b:b7:b2:60:0a:f3:6f:21:a4:fb:c1:
81:c7:a6:b0:6c:93:5f:cf:8b:68:44:a9:e2:6e:21:
64:8c:47:3e:60:b9:fd:f3:ca:79:a2:07:48:0f:d7:
4e:0f:7c:3a:4f:91:03:46:d7:41:86:ab:fe:6e:2a:
7f:84:d1:d0:01:77:ea:35:98:79:02:8a:36:9f:14:
94:15:d0:99:ce:03:1d:f0:c1:d6:16:53:aa:c3:69:
56:a2:ac:e9:df:8b:99:d4:5f:c6:cd:40:7e:cb:26:
c4:79:47:15:07:ec:cc:33:f5:38:99:d8:7d:b5:87:
cb:4e:3a:3e:51:57:ff:4b:36:9f:75:43:61:4a:04:
c5:46:1b:e8:3e:b4:30:95:4f:a6:b6:a7:b4:88:a6:
4a:b1:47:53:ad:96:ae:56:ca:5a:cd:ac:19:12:f3:
82:0d:ad:3f:80:ac:66:76:36:97:28:45:58:0e:99:
74:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:95:59:02:75:C9:C0:EE:A8:55:B5:BF:AB:DA:7D:B0:1D:F2:70:FF
X509v3 Authority Key Identifier:
keyid:9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:98:87:13:ea:a5:90:74:88:23:a6:ae:eb:01:f9:6d:3a:28:
3e:46:76:45:56:d0:3f:d1:8c:df:2c:07:c6:56:eb:96:68:10:
bc:f3:a2:51:16:21:60:1f:cd:f6:52:87:28:5f:da:bd:9f:7b:
18:5d:cc:14:53:47:8b:03:f8:39:66:56:be:55:d8:7f:23:7a:
22:fe:cb:38:10:27:68:f9:4f:f0:12:e9:b1:1b:80:4d:64:78:
bb:81:55:13:27:9c:3e:b6:29:83:75:07:30:9e:b4:44:4f:5c:
b1:60:00:ca:2d:5e:44:0c:1a:4a:7b:76:62:2b:1a:6d:45:a9:
2f:c5:7c:8d:0f:de:a2:a5:73:a9:9b:36:49:08:cd:2a:e6:c6:
22:16:42:98:98:85:4b:ea:d4:80:db:7b:cb:5c:2f:88:a9:8a:
27:dd:83:f4:c8:65:ad:cc:3d:2e:3a:3e:8f:45:94:d9:53:e7:
ea:28:47:d4:28:0a:ac:8b:a4:0a:b0:33:f4:f9:d9:f6:9f:cb:
04:fb:fc:83:9f:62:a0:0d:56:0f:46:83:1b:a5:cc:c5:c3:16:
c4:c7:a2:c1:e0:15:e4:80:a5:fe:c2:21:d5:0a:dc:69:57:63:
02:ca:3f:7f:20:89:16:d0:c1:d3:cc:a6:35:41:c5:b6:38:b3:
ac:93:c4:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:48:23 2025 by rpki-client