Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/5e731f-528b-4e02-ad68-6d9035af1535/1/f1HfHfTohn5B5ef5Lef50foMFU0.mft
File: f1HfHfTohn5B5ef5Lef50foMFU0.mft (raw, json)
Hash identifier: cSfhwRkX/cQWlgEGTzgyXG18ueOWSfyaDVt2ABdAm2A=
Subject key identifier: F7:67:8E:92:F3:AD:8E:E6:30:4B:C8:8A:1F:11:A1:5C:20:BD:1B:10
Authority key identifier: 7F:51:DF:1D:F4:E8:86:7E:41:E5:E7:F9:2D:E7:F9:D1:FA:0C:15:4D
Certificate issuer: /CN=7f51df1df4e8867e41e5e7f92de7f9d1fa0c154d
Certificate serial: 01987450416E173937D3F4150B672B0483F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1HfHfTohn5B5ef5Lef50foMFU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/5e731f-528b-4e02-ad68-6d9035af1535/1/f1HfHfTohn5B5ef5Lef50foMFU0.mft
Manifest number: 0AFC
Signing time: Mon 04 Aug 2025 09:01:13 +0000
Manifest this update: Mon 04 Aug 2025 09:01:13 +0000
Manifest next update: Tue 05 Aug 2025 09:01:13 +0000
Files and hashes: 1: f1HfHfTohn5B5ef5Lef50foMFU0.crl (hash: 0LfHh1a0wbynrU2QdXwXZg/YFzkoLADXbRcolkmkHf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/5e731f-528b-4e02-ad68-6d9035af1535/1/f1HfHfTohn5B5ef5Lef50foMFU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/5e731f-528b-4e02-ad68-6d9035af1535/1/f1HfHfTohn5B5ef5Lef50foMFU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/f1HfHfTohn5B5ef5Lef50foMFU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:41:6e:17:39:37:d3:f4:15:0b:67:2b:04:83:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f51df1df4e8867e41e5e7f92de7f9d1fa0c154d
Validity
Not Before: Aug 4 09:01:13 2025 GMT
Not After : Aug 5 09:01:13 2025 GMT
Subject: CN=f7678e92f3ad8ee6304bc88a1f11a15c20bd1b10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:12:ae:d8:d8:6d:23:de:f7:74:43:ec:57:0d:
e0:75:3f:13:30:30:56:67:d8:fa:4d:28:ad:14:8a:
1d:d8:7d:c8:61:9b:89:88:a7:38:db:9b:1e:0a:46:
86:25:0e:5b:d8:c5:47:24:b2:e9:f8:65:e6:83:68:
ab:b7:65:85:f6:b4:35:e0:11:62:cc:b7:b4:2c:15:
94:10:91:47:93:ff:db:d4:82:6d:28:cf:08:03:a0:
f2:a6:74:59:41:70:7f:ae:d7:98:08:f5:64:2c:50:
16:2b:2e:87:d0:22:82:4c:f8:5c:c4:90:b4:b5:ec:
98:c3:11:24:e6:c8:a2:e6:2a:cc:15:8d:a7:d8:82:
12:1f:81:48:db:a2:ee:d6:e6:5b:e4:7c:ee:bb:a3:
40:39:30:f2:9c:d2:0f:8a:43:bb:e6:c7:d7:1f:f0:
82:64:a1:87:fb:92:ff:4c:ca:94:2a:24:fc:a3:3b:
d1:b7:38:b8:30:9b:c2:93:c3:40:4d:8e:c3:22:fa:
82:f7:4d:e3:a2:54:95:06:d8:b5:af:80:6d:05:0a:
da:4a:93:d3:c8:f0:12:ee:60:7e:64:42:eb:8d:a7:
f9:3d:b7:cb:72:31:87:47:ab:a0:99:cf:f0:84:2a:
00:0e:2a:69:ad:97:8a:c7:de:a6:31:4d:64:51:ef:
0c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:67:8E:92:F3:AD:8E:E6:30:4B:C8:8A:1F:11:A1:5C:20:BD:1B:10
X509v3 Authority Key Identifier:
keyid:7F:51:DF:1D:F4:E8:86:7E:41:E5:E7:F9:2D:E7:F9:D1:FA:0C:15:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1HfHfTohn5B5ef5Lef50foMFU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/5e731f-528b-4e02-ad68-6d9035af1535/1/f1HfHfTohn5B5ef5Lef50foMFU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/5e731f-528b-4e02-ad68-6d9035af1535/1/f1HfHfTohn5B5ef5Lef50foMFU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:9f:a2:e5:00:f7:93:91:f5:6b:8f:5f:18:3f:57:3c:18:74:
f3:fb:20:2e:02:11:b4:b9:a5:38:5a:df:a9:ab:36:47:e7:99:
99:65:c2:aa:ef:ae:30:85:21:d2:c3:62:d0:b8:bf:cd:44:d2:
06:c0:2d:53:95:7f:24:89:36:22:82:a0:b0:ff:c9:11:56:91:
99:e2:10:40:cc:c5:b3:41:39:c7:b9:88:bf:90:9f:18:d1:b0:
7e:b9:08:e8:c0:89:f2:19:02:b8:af:e1:21:da:ce:a0:a1:94:
da:2d:25:f3:56:c0:9a:1e:49:fc:fa:0e:1c:59:fc:ae:66:64:
95:01:98:9d:71:02:0f:94:e6:26:40:23:88:84:35:63:b7:e5:
43:50:91:25:06:cb:01:3f:e6:8e:ba:ae:4b:1d:ed:44:65:60:
49:3e:d3:8e:14:3e:09:ce:d2:ca:b0:47:a8:40:38:82:bc:ea:
cc:af:e4:39:7f:bd:28:8a:56:d4:6c:3f:60:4b:96:ee:24:08:
ab:55:0a:0f:f6:64:f8:92:be:e4:52:3f:4a:02:6c:4f:4d:8b:
68:f8:b0:74:6d:37:fb:b1:39:d3:19:a7:93:33:d5:9e:ab:61:
90:d9:96:bf:d6:8e:be:c1:99:78:f0:13:20:16:88:35:d7:81:
97:e2:e0:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:25:10 2025 by rpki-client