Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
File: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json)
Hash identifier: U/A6TfLlHfKDdY8NdC1NiADg6nLRPqd5p/8roth3cjA=
Subject key identifier: DA:8C:BC:70:D1:A4:F8:C2:43:07:1A:BA:08:C8:E0:2E:A3:76:DF:12
Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
Certificate issuer: /CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Certificate serial: 019748FA23E57F4591B0C1EB81846F6FC290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
Manifest number: 0CEC
Signing time: Sat 07 Jun 2025 06:00:42 +0000
Manifest this update: Sat 07 Jun 2025 06:00:42 +0000
Manifest next update: Sun 08 Jun 2025 06:00:42 +0000
Files and hashes: 1: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: j/rB2SeNmWmhtsthehoo3ydsrCC9EobvwmMwp45XCoM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:23:e5:7f:45:91:b0:c1:eb:81:84:6f:6f:c2:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Validity
Not Before: Jun 7 06:00:42 2025 GMT
Not After : Jun 8 06:00:42 2025 GMT
Subject: CN=da8cbc70d1a4f8c243071aba08c8e02ea376df12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bc:af:a5:12:7d:db:ba:c0:99:ac:c3:c9:6a:
b6:70:54:3d:11:af:da:58:d5:b0:50:70:6d:85:46:
7b:12:2f:de:68:f9:4f:28:31:31:5f:a0:7a:c8:bc:
c8:92:3e:b6:50:a1:20:7f:b7:49:f8:38:26:4b:ae:
ad:5e:4f:c2:01:e3:88:d0:13:cb:82:23:70:35:37:
13:b1:46:0c:e6:c8:13:ba:f5:27:6a:82:1d:47:65:
e5:02:1f:a0:0e:f7:59:28:a9:32:a2:bb:76:d9:1b:
ac:17:25:c5:76:e8:59:3b:46:e7:5c:9f:12:29:e2:
ad:7a:86:8e:5d:f2:77:4e:05:3d:a4:5f:23:4b:23:
aa:ad:47:76:48:9c:e5:cc:07:7a:6a:9c:06:08:f7:
26:12:d0:43:63:02:32:18:73:56:df:fc:03:bb:1b:
88:5f:1e:6d:6f:7c:0c:19:3a:6c:d1:ef:1f:97:fa:
87:6c:eb:f9:67:ed:fc:d9:0c:c5:6d:2c:72:67:6f:
8c:9e:52:43:d5:3f:b3:0f:cc:e7:f7:80:28:67:c8:
05:36:bc:8c:27:4e:1b:4c:ab:8f:bb:4b:1e:6e:93:
0d:d8:c5:9c:a0:06:d6:aa:44:6a:23:60:0a:87:3b:
b3:3b:9e:45:76:3f:0b:89:dd:80:ee:45:82:4e:38:
da:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:8C:BC:70:D1:A4:F8:C2:43:07:1A:BA:08:C8:E0:2E:A3:76:DF:12
X509v3 Authority Key Identifier:
keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:c9:4c:61:7f:41:32:70:4b:2c:cf:a0:9c:46:1d:ef:6a:5b:
25:21:41:69:02:49:c2:4f:5f:b6:58:b9:8c:e2:35:12:83:b4:
47:a2:17:de:28:bf:ca:50:5e:9d:15:1b:0f:7e:fe:f9:87:93:
6f:60:0c:7c:52:8b:4f:ad:3a:f1:d6:01:14:7b:04:69:4c:ed:
d2:e1:25:0c:4c:0c:3b:d3:99:cc:f1:95:79:8c:04:70:fb:24:
31:98:36:5c:b9:14:07:a6:aa:cd:84:0d:fc:9e:0c:7e:4e:80:
5f:72:37:07:e3:37:14:97:39:f2:36:3f:ca:85:67:c8:5a:eb:
75:e5:dd:76:5b:3f:c5:7c:b8:eb:dc:d3:a9:47:6f:9b:cf:dd:
72:a1:40:89:b9:52:90:dd:53:dd:0d:90:44:64:00:44:4d:cf:
39:66:f8:bf:83:26:03:e8:0e:87:29:5e:65:2a:bd:0b:73:13:
d9:30:30:46:38:cd:e2:59:bb:04:96:e5:60:df:15:03:09:21:
2b:66:4a:4d:6e:93:ee:aa:13:52:c8:94:a4:aa:0c:14:af:97:
9b:9d:75:95:56:23:d7:3d:83:84:e9:0b:53:dc:2c:fb:48:26:
66:39:4b:ca:04:fd:7a:53:ad:b6:d3:e7:de:ba:ae:df:b3:ac:
6d:c2:b2:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:07:53 2025 by rpki-client