Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
File: goIekswnAHYZMDmOI4DCOqR1XxY.mft (raw, json)
Hash identifier: Ng7+2kvuokbT0zU1II+tIV0Hm4Rohjp4lItaD40H9hk=
Subject key identifier: D0:5C:5E:89:CD:F6:13:F3:C5:C1:88:22:89:07:06:35:53:46:D3:8E
Authority key identifier: 82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
Certificate issuer: /CN=82821e92cc2700761930398e2380c23aa4755f16
Certificate serial: 01974C68FD4E44F75A9EF42D5702AA272222
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
Manifest number: 0633
Signing time: Sat 07 Jun 2025 22:00:38 +0000
Manifest this update: Sat 07 Jun 2025 22:00:38 +0000
Manifest next update: Sun 08 Jun 2025 22:00:38 +0000
Files and hashes: 1: goIekswnAHYZMDmOI4DCOqR1XxY.crl (hash: UYMBk0dOygKvZYcZPUByzltr/kX2DvM61XN41GX7SZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:68:fd:4e:44:f7:5a:9e:f4:2d:57:02:aa:27:22:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82821e92cc2700761930398e2380c23aa4755f16
Validity
Not Before: Jun 7 22:00:38 2025 GMT
Not After : Jun 8 22:00:38 2025 GMT
Subject: CN=d05c5e89cdf613f3c5c18822890706355346d38e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:11:33:ae:a8:7e:e3:cd:11:1d:75:74:10:25:
26:ff:8b:c5:01:85:0f:d8:3a:08:11:ce:c2:29:a8:
67:f9:cb:cf:4c:20:d7:e6:f9:50:81:d9:a1:fc:52:
01:9c:f2:31:df:2b:4b:5c:bd:80:70:8e:b6:61:9e:
95:60:7d:87:69:ac:51:98:f3:8e:95:63:d8:37:45:
a4:03:ee:c4:6d:d4:12:a3:b6:24:c1:24:62:b4:f0:
c5:d9:ed:9c:f2:10:95:33:d3:f8:5f:43:8b:c4:db:
d6:e9:11:e7:b5:61:53:90:e5:8c:ac:4d:47:90:7f:
54:b8:40:7f:16:a0:ba:0e:ed:11:3f:79:d8:b6:45:
3e:c6:5f:82:f2:90:88:17:e6:20:ec:b2:90:f0:6b:
fb:fa:9f:61:11:84:de:6e:12:7e:28:8a:ec:05:2f:
6d:c1:ac:50:cf:d1:1d:f4:02:75:3b:37:4b:02:e3:
e0:c5:f2:36:dc:80:7a:1e:42:7d:5e:8a:d4:52:10:
3d:fd:44:94:57:e9:7e:79:73:c8:0e:5f:c1:9c:d5:
a6:a6:b3:f6:5d:e6:fb:d9:10:52:bd:af:ca:cc:05:
01:a4:eb:c6:52:61:0d:2d:ed:88:67:6e:5e:7e:9e:
23:72:44:90:72:61:71:7d:ff:f9:79:45:da:03:e3:
97:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:5C:5E:89:CD:F6:13:F3:C5:C1:88:22:89:07:06:35:53:46:D3:8E
X509v3 Authority Key Identifier:
keyid:82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:e3:0d:56:fe:a3:1d:e7:dc:1a:c5:81:d1:22:43:97:c4:96:
ab:45:00:ef:9d:c1:96:e8:da:16:53:8e:c3:cf:b1:f9:90:91:
9e:c4:60:ef:5d:eb:5c:fb:39:21:b9:8c:0d:03:a6:71:02:b8:
6d:07:1a:cc:e9:c2:3d:3e:a5:20:65:7f:04:db:62:dc:13:77:
5a:96:c7:34:02:5a:2c:54:6e:0b:1d:cd:f9:ef:9a:93:ac:11:
47:07:81:41:0c:04:d4:97:c7:50:5e:46:33:18:f6:39:80:32:
1e:f3:6b:a1:fe:24:25:de:31:6a:90:16:8c:d2:ef:50:a7:52:
f7:40:66:59:f2:f4:59:2a:b3:61:4f:ba:87:34:7c:0f:e0:63:
5c:d1:a4:20:17:24:f3:db:c2:53:ca:56:78:0c:f3:db:40:d2:
c6:a6:4b:e7:67:3a:64:06:97:ba:e8:31:80:73:7b:dd:a8:b4:
38:8e:a3:b4:5a:60:cb:fc:c1:e5:8d:d9:16:6a:c3:f1:3f:cb:
c0:0c:08:5c:28:22:e0:c4:89:2d:a2:da:d9:b2:c7:a4:aa:7a:
4e:39:6a:ed:4f:ef:bc:05:1e:8a:c1:55:f9:b1:91:c9:91:12:
12:39:eb:c3:16:44:07:d9:55:29:e2:5d:bf:c3:a9:d0:99:a9:
3a:f2:b9:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:21:47 2025 by rpki-client