Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
File: M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json)
Hash identifier: lNS7a+yHTWxyYWjvRE/4jZx7G59WP+5ngzRocRnCNag=
Subject key identifier: 48:7E:E7:0B:21:BA:96:18:9D:9A:DB:78:F1:E8:27:A4:6D:CF:07:C4
Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
Certificate issuer: /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Certificate serial: 0197488C91ECA15D30FE115E63A2FB6B5135
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
Manifest number: 1161
Signing time: Sat 07 Jun 2025 04:01:01 +0000
Manifest this update: Sat 07 Jun 2025 04:01:01 +0000
Manifest next update: Sun 08 Jun 2025 04:01:01 +0000
Files and hashes: 1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: WbBierl2XCWboGciDwf2IexGSw1hngje7Eb3wnDyVrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:91:ec:a1:5d:30:fe:11:5e:63:a2:fb:6b:51:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Validity
Not Before: Jun 7 04:01:01 2025 GMT
Not After : Jun 8 04:01:01 2025 GMT
Subject: CN=487ee70b21ba96189d9adb78f1e827a46dcf07c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:54:6d:6e:86:51:42:0b:b4:ad:fd:04:f8:23:
a8:eb:25:8a:40:cd:55:26:a5:aa:ee:0a:b6:50:39:
f5:c7:c9:73:b8:b4:79:46:8d:1a:a0:a5:e2:d9:06:
ed:d3:63:0b:04:68:0d:f6:dc:d0:a9:c8:c4:62:66:
80:de:7a:19:72:69:f8:62:bc:61:5c:e1:31:3d:2c:
c0:e9:19:7b:bf:8a:79:36:11:58:95:9f:52:aa:7c:
71:d0:a2:e8:d0:36:0c:74:ae:a1:00:f3:09:da:52:
32:0b:b5:21:8d:62:8e:66:80:79:79:81:9b:b2:8f:
17:73:66:23:5b:99:a8:b4:02:8e:8e:fd:0e:fa:c8:
4d:01:88:72:9c:3b:d1:d8:e6:50:2a:82:47:9c:d6:
7a:11:85:e1:89:39:00:18:71:26:d5:c5:65:74:de:
43:97:ba:41:4d:c0:76:f4:89:94:13:85:5d:6c:de:
75:de:f0:00:89:83:58:43:d8:46:b4:6d:a2:3c:23:
79:5d:79:5f:e5:a4:3d:00:3b:45:a4:cd:30:6b:54:
de:ec:87:1f:cd:29:0e:c9:ab:ec:3f:7f:42:d2:9d:
b4:56:b4:48:e3:8e:49:11:11:f7:58:16:19:e2:6d:
4d:93:00:78:7d:2a:64:42:0f:c4:e7:1e:4c:11:35:
f7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:7E:E7:0B:21:BA:96:18:9D:9A:DB:78:F1:E8:27:A4:6D:CF:07:C4
X509v3 Authority Key Identifier:
keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:cd:00:af:61:3f:36:27:7e:a2:e3:9e:35:75:d4:47:83:55:
19:1f:0e:e3:42:e5:f1:3a:bf:77:e9:5f:bf:09:6e:82:31:1d:
78:d3:a5:5a:21:a8:11:63:82:f5:cc:7e:0c:cf:88:e2:5f:9c:
3b:c8:14:b5:76:b4:55:40:79:74:f4:11:eb:70:3f:03:82:df:
4f:3c:34:a1:30:40:77:03:f3:9a:23:ac:f8:1c:f8:0c:ae:d9:
04:89:45:aa:eb:24:e4:6c:80:8f:c5:87:08:91:38:40:8e:cb:
db:b8:2e:f6:92:12:90:56:d4:2f:96:08:0c:f6:32:39:b1:fa:
ec:aa:b3:67:dd:a0:6d:5c:ca:1f:a7:04:a9:f5:23:eb:80:e7:
2a:58:2a:75:fc:ce:96:fb:74:a8:91:73:49:f8:d2:45:45:c1:
d7:17:cb:89:c5:ce:e0:89:f5:57:a8:58:84:87:98:58:fd:68:
9c:56:d8:b8:39:8c:dc:93:53:b7:72:45:44:7b:20:57:4c:93:
f8:96:b4:71:18:ad:db:9b:bc:76:02:85:17:a4:81:43:df:5e:
c7:65:3c:cc:e6:c6:f2:49:14:c5:4f:f7:6f:ea:32:88:cf:26:
88:03:46:98:cb:47:d7:53:56:2b:3f:2d:c7:e8:27:14:d8:0d:
e4:5a:ce:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:40:26 2025 by rpki-client