Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
File: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft (raw, json)
Hash identifier: PIgB3S/22ZbMRLt0SzXXtNhCYa0G1fG0ILRysbkHYwY=
Subject key identifier: 7E:40:BE:C0:D5:0F:A6:8F:B2:B6:B1:6A:36:B5:43:2B:39:D6:C3:FF
Authority key identifier: D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
Certificate issuer: /CN=d425900312ff3bda4d2f896f64df65646fd9c251
Certificate serial: 01974BFB379861399A444BCE3BBF422CB63D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 20:00:44 +0000
Manifest this update: Sat 07 Jun 2025 20:00:44 +0000
Manifest next update: Sun 08 Jun 2025 20:00:44 +0000
Files and hashes: 1: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl (hash: +RsnK62JL2uAtoOCWvrawpCDwtO+Eugi9bGbEWZeH/4=)
2: g_HTJXlqiVwcXNQwQ-5NsdWLDwY.roa (hash: T8aREzkEhzdTgcqG/dOQatsiFG6CYLxa2kl0FfKGWAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:37:98:61:39:9a:44:4b:ce:3b:bf:42:2c:b6:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d425900312ff3bda4d2f896f64df65646fd9c251
Validity
Not Before: Jun 7 20:00:44 2025 GMT
Not After : Jun 8 20:00:44 2025 GMT
Subject: CN=7e40bec0d50fa68fb2b6b16a36b5432b39d6c3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:38:1c:3a:02:23:e5:32:cf:fb:df:33:c9:8d:
0e:51:aa:70:80:7f:08:da:19:df:68:b8:5b:92:f3:
e9:d4:1e:6c:7a:9b:4c:77:23:5a:0a:e3:5d:c1:12:
c6:43:b1:86:0f:04:16:0e:36:2d:ce:9c:5c:fc:fc:
29:ed:64:e9:61:13:d0:d1:4c:08:47:4c:3b:97:3f:
0b:94:8b:c9:f0:98:57:39:d6:7d:81:a6:77:39:44:
8a:7c:de:64:ed:41:b6:8d:e3:e5:95:b8:bd:01:a5:
95:41:35:07:86:c5:bc:81:e6:d2:ad:5a:b7:bf:5e:
ad:20:31:a6:3f:27:a9:9c:b5:d2:6a:a3:d7:8c:cf:
3a:43:85:12:28:7d:88:27:dd:b7:e6:05:35:35:5f:
77:9f:4d:d5:eb:45:40:be:a0:9b:df:28:d9:1d:d7:
ac:fe:e8:49:3c:e8:26:b9:87:b4:4d:0a:08:cb:b5:
5f:57:d1:4b:d8:ab:ea:3b:23:3d:0c:a7:cc:bb:2f:
0b:87:ea:2f:0e:be:21:ec:39:d6:6f:3a:45:59:78:
d6:5c:6a:ae:e5:9a:e8:7a:ba:40:3b:2e:b4:5e:ea:
e8:e4:f6:9f:c7:db:a7:d9:6a:4a:ca:bb:a7:6f:de:
f6:ee:ec:c8:68:49:d1:6e:7d:4e:b0:48:ce:90:3d:
ff:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:40:BE:C0:D5:0F:A6:8F:B2:B6:B1:6A:36:B5:43:2B:39:D6:C3:FF
X509v3 Authority Key Identifier:
keyid:D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:a4:3f:fe:c0:e1:53:ba:41:53:4c:44:24:3c:cf:61:6b:49:
10:3e:aa:5a:7d:0a:02:cf:12:80:8c:48:ba:a9:cd:41:c4:ee:
62:72:f2:3e:b8:05:30:0f:f2:2f:d6:8b:20:eb:94:8a:b8:01:
fc:94:f9:f0:2a:6b:5e:76:ac:ab:04:d2:0d:d1:79:96:aa:ec:
3b:84:6c:cf:fe:93:23:0e:4a:3b:67:04:40:a5:92:a5:23:6e:
2d:3f:c0:e4:fe:de:b7:bd:34:19:6b:bb:27:0f:fb:de:84:20:
a3:89:79:31:80:49:de:f8:33:34:74:bc:51:8a:2d:46:7c:40:
0b:69:74:87:e9:9d:6d:6a:86:81:db:0d:e2:2a:2b:c9:8f:f7:
32:bd:71:a6:05:89:05:09:e4:60:ea:11:ee:8e:ae:65:56:86:
ea:e0:ff:ab:27:06:86:e6:bd:37:8e:3e:6e:94:ab:b1:5c:4b:
6c:47:26:e6:22:3f:21:ef:cb:c3:d8:49:22:47:d1:af:10:24:
a8:ca:e8:ed:66:ad:a1:90:9a:85:71:cc:03:ca:cb:fb:59:1b:
6a:eb:70:f2:7c:36:8e:dc:87:a5:91:3e:32:b2:2b:67:6c:2d:
e3:4d:6b:e3:c2:6d:7d:51:cb:8b:4e:1d:06:f3:79:e5:a1:9f:
99:85:8c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:43:19 2025 by rpki-client