Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json)
Hash identifier: s8u7O+6bfp1Vj+I7mzEvS0KQAOrkr03MOvQw3sGDTyU=
Subject key identifier: 8D:AD:70:7F:7C:E6:67:30:B3:54:CC:90:B4:68:04:EE:9A:36:CD:45
Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Certificate serial: 019883558F5C161EA77FBF33BB43795CFA58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
Manifest number: 09BB
Signing time: Thu 07 Aug 2025 07:01:19 +0000
Manifest this update: Thu 07 Aug 2025 07:01:19 +0000
Manifest next update: Fri 08 Aug 2025 07:01:19 +0000
Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: e4u4YQ9Yh04IKYnmKRgRCdbuI4k1mZaaG3TJ5iXYbmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 07:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:83:55:8f:5c:16:1e:a7:7f:bf:33:bb:43:79:5c:fa:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Validity
Not Before: Aug 7 07:01:19 2025 GMT
Not After : Aug 8 07:01:19 2025 GMT
Subject: CN=8dad707f7ce66730b354cc90b46804ee9a36cd45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:81:fb:f4:a2:a4:a2:cf:95:15:2f:79:c9:ef:
87:59:07:2b:c5:5b:19:03:a0:1b:5f:10:f5:e9:ce:
49:59:5d:ef:84:bf:50:47:6a:e7:dc:d8:3b:56:9d:
44:10:9c:b8:32:20:77:82:c2:d3:4b:d5:d5:76:bf:
87:5a:aa:c7:ec:37:0e:e9:94:10:b6:ac:59:06:b2:
21:87:ab:59:a4:08:64:39:35:1c:ef:30:3a:2f:7f:
f4:35:15:0e:1c:a0:a2:b4:54:0a:07:ff:11:ad:e6:
24:a1:3d:16:91:a7:3b:2c:eb:e3:08:6d:21:0c:ee:
2f:eb:f8:9d:a6:24:8e:b5:64:cd:cc:a7:97:d3:02:
6f:e6:c6:a8:92:38:1f:32:ed:14:c8:34:9f:b9:54:
f3:45:5f:97:71:56:60:2f:f5:d9:73:39:5d:d3:00:
8b:38:35:0a:dd:da:9d:3d:6a:55:8d:4d:42:a5:94:
be:71:65:b7:8c:0c:3a:b0:a5:bb:61:ab:22:87:cf:
68:bf:3c:b4:1a:08:c0:27:c3:11:c9:8f:2e:1a:4a:
0d:4d:37:85:b5:c4:9b:a2:af:50:ac:fc:ff:0c:71:
c2:6d:c5:af:24:39:f7:3f:94:e0:83:71:32:1f:eb:
a2:ea:64:60:7f:4d:6f:6a:ea:fe:0b:27:38:5b:e5:
d7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:AD:70:7F:7C:E6:67:30:B3:54:CC:90:B4:68:04:EE:9A:36:CD:45
X509v3 Authority Key Identifier:
keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:9b:56:7a:a1:b4:86:07:c7:78:8a:08:6a:8c:4e:15:60:6a:
0a:ab:95:7a:9c:e8:2e:8f:b3:16:7c:ef:9e:4f:9b:81:e6:0e:
f7:1f:5a:83:f5:a6:fe:59:6c:36:84:55:2f:cf:c2:2d:ae:c6:
55:e3:4a:0d:c7:42:85:11:83:37:24:52:09:ef:0d:fe:fa:3e:
17:69:89:3c:38:b7:af:9b:04:57:19:bb:b1:35:35:1b:55:b6:
47:53:40:10:be:56:7d:4f:a0:f2:fb:35:d3:82:fb:f1:5d:36:
3a:8b:08:73:01:04:da:23:ad:88:d9:e6:d6:e8:04:24:60:48:
75:04:dd:f8:7a:05:9d:08:eb:dd:06:9e:50:eb:08:ab:a9:b6:
e6:c4:82:3b:b7:fe:57:2c:ed:ce:08:97:86:d7:f6:b8:79:d9:
5b:c2:65:a9:47:0a:b3:f3:44:ef:f2:a1:f8:fa:c8:41:42:e8:
65:1e:0f:18:d0:88:04:1e:ab:8b:c5:b1:ec:6d:9e:1e:40:ad:
52:12:30:b3:ca:5d:df:3f:84:bd:5a:5d:b1:9a:69:9e:ec:62:
25:97:49:93:68:e9:e1:e0:c2:f0:41:b3:67:ac:7e:bd:a6:dd:
92:bd:d5:db:c5:95:5c:6d:86:9a:02:69:3f:97:e4:ea:c8:52:
ba:7e:63:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 11:16:31 2025 by rpki-client