Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft
File: cRcdWnbTurk3KszJJz66ffHFnPI.mft (raw, json)
Hash identifier: fITb/4os0+IQozo00rz8b3zHFghxm5HDqy+yIq8c69c=
Subject key identifier: 88:3B:4D:AC:08:2F:BE:29:FD:E3:BA:39:23:05:BF:21:D3:68:10:3A
Authority key identifier: 71:17:1D:5A:76:D3:BA:B9:37:2A:CC:C9:27:3E:BA:7D:F1:C5:9C:F2
Certificate issuer: /CN=71171d5a76d3bab9372accc9273eba7df1c59cf2
Certificate serial: 01974C6931B50D75F948ABA11E1E01F5D77E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRcdWnbTurk3KszJJz66ffHFnPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 22:00:51 +0000
Manifest this update: Sat 07 Jun 2025 22:00:51 +0000
Manifest next update: Sun 08 Jun 2025 22:00:51 +0000
Files and hashes: 1: cRcdWnbTurk3KszJJz66ffHFnPI.crl (hash: otWL4SWhKfgzGxGB1bpi5XF39WwU4fm0jvV3PQJ22Jk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cRcdWnbTurk3KszJJz66ffHFnPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:31:b5:0d:75:f9:48:ab:a1:1e:1e:01:f5:d7:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71171d5a76d3bab9372accc9273eba7df1c59cf2
Validity
Not Before: Jun 7 22:00:51 2025 GMT
Not After : Jun 8 22:00:51 2025 GMT
Subject: CN=883b4dac082fbe29fde3ba392305bf21d368103a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ed:47:26:10:bf:08:40:35:9d:32:40:f6:26:
07:b5:7a:90:50:e0:51:4d:66:f8:ab:73:e9:7d:95:
b3:92:68:25:10:40:36:be:50:d1:95:28:8b:5f:ae:
8a:88:b9:0a:bb:fb:df:50:f7:a9:e8:32:2c:9d:74:
9c:58:5c:0b:a9:23:db:dc:e1:44:b1:23:99:99:c5:
cc:d5:0b:b6:7c:d3:9b:6b:03:b0:ed:4d:86:a9:28:
51:8c:d1:4c:4c:f0:0e:eb:5c:d9:03:94:bc:01:3f:
24:c1:94:db:64:69:08:b6:ad:76:3a:69:ef:d3:24:
a2:dc:d5:52:8d:a1:fc:23:1a:02:87:f8:3c:16:39:
2c:fc:3a:1c:03:95:90:66:3d:65:75:72:36:56:fc:
e7:72:aa:e5:a6:09:e1:03:8f:16:d2:59:61:bf:71:
8d:3c:fd:0d:61:ac:3f:ff:07:a7:10:0e:3c:a4:00:
8b:48:05:62:93:18:09:19:15:db:80:ee:32:63:9d:
35:4d:f4:a9:24:d7:e9:2f:23:d3:21:dc:b3:e4:a7:
84:6b:f2:c1:a0:f1:6d:42:10:ef:0d:62:1e:29:e8:
ec:1b:f8:63:83:7f:34:5d:db:6b:a8:5e:9e:7e:16:
3c:fc:63:cc:66:fe:d2:7a:87:a6:c6:81:ae:4f:00:
8a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:3B:4D:AC:08:2F:BE:29:FD:E3:BA:39:23:05:BF:21:D3:68:10:3A
X509v3 Authority Key Identifier:
keyid:71:17:1D:5A:76:D3:BA:B9:37:2A:CC:C9:27:3E:BA:7D:F1:C5:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRcdWnbTurk3KszJJz66ffHFnPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:e5:2e:74:8c:32:aa:c2:30:98:bc:a1:10:67:bf:a5:55:1e:
2c:2f:89:89:9d:ab:b5:79:84:75:09:a6:a2:cf:1f:80:ca:4a:
71:01:ef:53:bb:ad:88:48:a5:98:5d:fc:0f:4f:4b:74:f2:b6:
d8:0e:3a:d8:8e:87:4a:95:fe:bc:c0:64:c4:7f:5d:b3:4f:61:
6c:64:b1:28:35:c7:3e:45:44:29:0c:0b:fc:b1:20:e1:44:8f:
42:7c:31:d3:5c:92:ba:1e:aa:f2:f0:c4:c1:3d:8e:ee:68:91:
06:b3:5c:e6:ec:06:75:4d:69:c4:74:d5:ed:fd:58:4e:5b:b9:
f7:eb:8e:c8:5b:5d:55:1a:85:33:80:69:cf:ef:c8:39:0b:ea:
4a:60:b0:a8:0c:0c:53:48:ee:b2:36:9a:ad:2f:e5:aa:31:b9:
ce:77:be:11:05:f2:d2:3e:e8:0a:8c:30:46:9b:e1:eb:6c:10:
fb:09:af:05:e4:a2:d9:0d:53:70:c1:3c:55:bb:d7:27:c0:61:
d9:52:9f:24:b1:83:76:70:4b:eb:eb:6e:49:4a:33:56:4d:43:
3e:e0:4e:52:86:bf:8e:ed:33:b9:10:f0:4c:d8:be:8a:c6:e8:
cd:97:43:18:81:a2:f0:11:4e:fa:4f:cc:94:3e:6a:a0:b0:e6:
2b:09:2a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:34:34 2025 by rpki-client