Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: ocUQJpNw3Qk5saW1qrWKdx24N43UxTMmLGWR47sV+M8=
Subject key identifier: 4E:AF:CA:E0:01:52:B2:1D:34:89:4E:DC:2F:80:D3:7B:0D:E9:BC:7C
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 01974BC49E461C8EEE0497E6338716BB39D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 06FD
Signing time: Sat 07 Jun 2025 19:01:06 +0000
Manifest this update: Sat 07 Jun 2025 19:01:06 +0000
Manifest next update: Sun 08 Jun 2025 19:01:06 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: VjFpkB6O51Gy2SfXyjgI7s+iRgBkVe+9X+oBGhSX6FE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:9e:46:1c:8e:ee:04:97:e6:33:87:16:bb:39:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Jun 7 19:01:06 2025 GMT
Not After : Jun 8 19:01:06 2025 GMT
Subject: CN=4eafcae00152b21d34894edc2f80d37b0de9bc7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4e:4c:c4:a3:69:5f:30:8e:ed:30:0d:33:49:
86:e3:b5:55:fb:70:19:90:5c:3b:74:01:e5:9a:44:
bb:11:6e:af:cf:a8:a7:0c:4d:f1:6f:5d:9e:61:55:
b6:4f:18:ab:62:e4:e0:dc:b4:5b:85:bf:63:54:26:
d2:c8:ad:36:f4:c1:8e:af:e6:ed:96:67:fb:c2:49:
86:f4:c0:b9:1e:c3:19:e6:1d:00:51:33:93:50:4f:
67:f6:97:86:7a:47:fb:64:62:9a:69:ea:8d:c5:bd:
3b:e8:63:8b:ba:d5:48:7e:24:db:bb:71:ee:3d:a8:
c3:ac:4d:d5:d8:94:87:7f:64:2f:d3:b8:b2:58:ca:
45:48:73:44:ef:b8:ff:dc:02:10:e6:ee:ae:f7:e6:
d9:fd:34:45:da:1b:77:6a:1e:76:bb:5d:ff:50:e0:
b4:c5:51:da:c9:60:61:53:2b:6a:93:b1:35:ef:c0:
53:f4:6a:d6:aa:8e:8c:a8:6c:31:24:4c:a4:25:97:
7b:ab:4f:95:bd:f3:3a:69:bc:49:76:15:0b:84:0e:
73:bc:37:ca:58:c1:16:37:b3:4f:7a:d8:a0:41:e6:
24:81:b1:02:ea:1b:b0:9f:61:ef:3d:ad:04:45:39:
fd:cc:b4:e5:99:9a:ad:e9:c0:0f:f1:e0:3a:9d:ed:
c5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:AF:CA:E0:01:52:B2:1D:34:89:4E:DC:2F:80:D3:7B:0D:E9:BC:7C
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:ba:ac:5c:fe:92:07:3a:a6:08:c0:07:65:ac:74:c3:f2:a1:
83:1f:ad:ea:67:86:39:df:0b:53:0d:26:4d:83:1c:79:69:b9:
53:63:ae:27:7a:5c:24:9e:f7:26:72:6f:83:ae:be:61:7b:60:
e0:02:12:7d:e5:36:89:99:cc:1a:25:45:02:3f:c9:b5:7a:65:
88:f5:26:7c:9a:f4:9c:b7:d4:2e:2c:93:d6:1e:ac:f0:0e:af:
c7:b8:40:6e:56:c5:53:c9:f4:fc:80:15:ba:5b:cf:79:5e:26:
db:6c:4a:cf:fd:2a:e1:e8:a4:1e:11:c5:3a:c0:79:c0:bc:3a:
18:d3:40:3d:36:5c:0b:41:19:c4:5e:39:af:c2:38:90:03:97:
2a:97:47:c3:fc:24:d9:20:e1:c8:e7:67:cc:7a:d3:37:3e:76:
bb:2a:74:be:3e:ad:e8:25:cf:e1:55:e2:ad:f3:2c:c9:35:b1:
6a:14:e4:4d:86:6d:9e:90:e9:99:73:a1:b7:bd:fe:32:ee:5d:
54:d1:45:c5:6f:2d:53:e3:6e:81:2c:b0:17:cb:2d:35:27:a1:
40:8b:aa:5f:40:3a:03:f4:9b:7e:24:83:c3:4e:ba:8b:bf:f7:
ea:58:ff:87:3b:a7:b1:e8:f4:0f:6a:89:9d:16:38:10:4e:89:
a9:bc:3a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:24:25 2025 by rpki-client