Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
File: Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft (raw, json)
Hash identifier: njVWru28g1hLSqJ20XvutZ6kMC2q7u67s/h/JvWOhtg=
Subject key identifier: A1:4F:3B:11:E9:14:FB:A3:AB:F0:FA:C4:3E:A8:8C:DB:0A:A9:0F:AD
Authority key identifier: 46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75
Certificate issuer: /CN=468ecba10e7599a030aa613088688a6c26d62d75
Certificate serial: 019749D5A7541FA0F55CC38C686A1F1619E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
Manifest number: 120D
Signing time: Sat 07 Jun 2025 10:00:28 +0000
Manifest this update: Sat 07 Jun 2025 10:00:28 +0000
Manifest next update: Sun 08 Jun 2025 10:00:28 +0000
Files and hashes: 1: Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl (hash: wvv4+daiJd0ZjeDmPvaQG/smV5S5y2Nz1H99CigLAnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:a7:54:1f:a0:f5:5c:c3:8c:68:6a:1f:16:19:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468ecba10e7599a030aa613088688a6c26d62d75
Validity
Not Before: Jun 7 10:00:28 2025 GMT
Not After : Jun 8 10:00:28 2025 GMT
Subject: CN=a14f3b11e914fba3abf0fac43ea88cdb0aa90fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:28:f9:ff:9a:2b:a8:2f:45:c5:8d:b7:08:86:
8d:81:24:6b:62:96:46:65:e4:2e:3d:33:f6:33:02:
46:17:75:b4:28:b8:bb:7d:13:68:49:6d:51:f1:0c:
0d:ce:12:50:6a:99:13:6e:31:56:7c:eb:f3:25:8a:
a6:34:a5:7f:3a:73:37:14:dd:f2:db:c2:69:7a:24:
ba:25:cf:42:b0:04:03:82:10:55:d5:40:94:d7:87:
82:64:85:4a:44:9c:13:d5:a1:87:7b:ba:94:33:90:
69:61:b7:98:f0:1e:31:3a:29:47:25:ef:1d:17:78:
1f:65:5c:2a:48:8e:59:da:ef:fd:0c:ec:47:53:2f:
51:65:ce:43:5e:be:83:dc:1a:f7:d0:91:e3:7a:e3:
c2:3f:31:3c:ff:19:53:01:b5:7e:b6:58:08:2f:dc:
68:cf:4b:c3:bc:56:5e:2f:b6:10:8b:f1:23:c1:88:
59:dd:c8:f9:59:c5:4c:16:83:58:9a:32:aa:2e:fb:
e9:45:b5:1a:78:da:10:53:79:6b:10:b5:ba:89:4e:
c0:e4:6d:87:07:df:8f:60:97:f5:cb:8d:1f:29:7a:
20:9d:c7:a8:1e:ef:56:70:fd:9a:41:4b:c2:23:77:
f1:f8:fd:62:bf:a2:59:61:d6:d8:b6:07:a1:e9:65:
1f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:4F:3B:11:E9:14:FB:A3:AB:F0:FA:C4:3E:A8:8C:DB:0A:A9:0F:AD
X509v3 Authority Key Identifier:
keyid:46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:36:aa:bc:42:9f:59:cb:04:09:46:87:87:b6:da:3e:0e:d6:
73:95:4b:8d:0e:e5:6e:84:a2:90:c8:e4:2c:3a:6f:20:2f:d4:
14:c1:7a:4a:f8:80:3a:8b:7b:74:e4:75:bd:4b:f8:6b:b1:7f:
36:01:50:c6:a4:82:0e:6f:23:4b:92:ab:cf:dc:23:e8:47:df:
a3:ae:96:35:06:2b:d1:d7:a3:94:e4:2e:d1:de:77:6c:06:ce:
6e:1a:15:87:45:83:5a:52:2d:12:4a:f9:dc:24:dd:ac:e3:47:
22:4d:2b:52:05:6c:09:60:9e:e8:b3:77:d7:b7:8a:8c:06:79:
9b:a3:18:3a:20:8f:b4:4b:dd:dd:44:97:bb:be:d8:9c:b3:a5:
15:71:d6:51:b4:b8:22:af:f2:b3:5e:23:9c:30:b7:f0:fe:c2:
33:b8:be:90:be:d8:f9:73:fa:9f:c2:7e:bd:09:23:83:2f:9a:
6f:bf:27:ab:78:e1:ea:02:c2:cb:ef:bd:ac:a5:e3:82:06:20:
5d:e5:19:cd:48:8f:42:e9:3e:a9:86:c9:c9:23:f0:dd:a3:2d:
54:c6:b2:67:17:54:7e:88:1b:89:ec:21:f2:dc:3e:ec:fa:93:
0d:59:5d:90:15:cb:45:94:9a:77:48:9e:2d:c1:8e:29:c7:91:
ef:19:a8:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:34:22 2025 by rpki-client