Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
File: rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft (raw, json)
Hash identifier: nyRK3Fl6w28QaFJQ5T5SD9jQCn6OtgFNiJCweA9Qms8=
Subject key identifier: C3:79:CF:28:05:48:C3:33:D7:38:55:9A:39:65:DA:B8:64:50:8C:A1
Authority key identifier: AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
Certificate issuer: /CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Certificate serial: 0197488C835321520863C11EC6658AF408A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
Manifest number: 0A79
Signing time: Sat 07 Jun 2025 04:00:57 +0000
Manifest this update: Sat 07 Jun 2025 04:00:57 +0000
Manifest next update: Sun 08 Jun 2025 04:00:57 +0000
Files and hashes: 1: rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl (hash: apMZXAn7CwLYkIBZ3iJ154NBhJv7DIhut7InFmwlAGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:83:53:21:52:08:63:c1:1e:c6:65:8a:f4:08:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Validity
Not Before: Jun 7 04:00:57 2025 GMT
Not After : Jun 8 04:00:57 2025 GMT
Subject: CN=c379cf280548c333d738559a3965dab864508ca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:be:9f:5e:29:24:85:84:45:dc:f1:b6:24:05:
bd:05:7b:ae:a4:84:48:30:d7:8b:b6:ac:49:54:c1:
b7:fe:b0:77:e5:69:a9:fd:0a:01:66:97:1b:5c:56:
b5:98:24:36:b6:62:68:ce:44:9e:37:50:b8:98:5e:
0a:1c:30:88:35:8e:5e:60:69:eb:00:90:22:ab:5e:
1e:a9:1d:16:b0:75:4a:fe:ba:65:48:58:bf:7b:79:
64:a2:5f:a8:84:4c:a1:04:ab:a9:b3:8b:66:c6:fe:
6c:27:4c:a1:ff:c9:39:5f:42:b4:dc:d8:7d:d7:10:
1b:f7:15:6f:4e:21:f9:45:f8:03:de:84:a5:b6:af:
29:5e:c4:39:34:a4:9d:25:f7:23:ba:c9:a1:86:00:
28:39:46:33:92:7e:28:66:5a:a7:6f:cd:00:01:45:
0c:15:08:53:c5:ad:da:23:7b:1a:14:aa:06:f7:a0:
e1:b1:cb:2f:b5:18:ab:5e:9f:16:6b:b9:e9:6b:f4:
a0:a9:f9:28:c1:d2:61:6b:71:d3:5f:5a:98:2d:21:
b9:e8:5b:37:b2:d9:c4:4a:ff:9d:63:e2:e0:c1:ce:
95:a6:25:3e:69:e6:e8:57:01:20:67:5c:d2:28:28:
32:21:0e:6d:b0:ac:0b:06:1b:1e:a5:2c:92:c0:03:
23:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:79:CF:28:05:48:C3:33:D7:38:55:9A:39:65:DA:B8:64:50:8C:A1
X509v3 Authority Key Identifier:
keyid:AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:d9:00:1e:ed:85:16:40:41:20:68:9e:94:b6:43:c6:60:02:
30:1d:ed:b7:bb:15:46:ca:4c:96:88:80:1c:02:c1:9a:0a:d2:
73:f0:e1:05:9c:0b:5f:2e:39:7b:e5:e1:89:2a:d2:bb:47:f2:
a9:98:26:9b:b4:f1:e5:44:62:3d:6c:86:aa:dc:07:32:f5:bf:
c7:2e:6c:9c:9b:18:b4:35:0e:9c:cf:df:f1:56:17:a1:1f:d6:
03:a5:4c:ab:da:cf:a1:20:ee:0d:05:7c:c5:11:6a:21:ce:ce:
1c:69:80:e4:b0:87:83:33:94:3b:7e:ac:3a:20:c4:01:8e:59:
e2:73:1b:57:e5:82:49:8a:d7:d4:53:c0:99:23:35:2b:1c:53:
f9:51:2d:39:3f:e7:84:62:ca:d0:76:f0:48:22:e5:bb:1b:cd:
e8:0c:44:08:d0:13:ee:93:56:39:61:d8:44:cf:bd:c7:a7:5b:
ff:74:c3:84:88:44:ab:cc:fb:ae:1c:90:da:d8:55:11:e1:0e:
30:84:45:c2:6b:6e:9d:2d:47:fe:86:a0:0a:89:97:fc:02:88:
32:46:d0:d9:17:17:bd:8c:02:6c:e2:72:bc:18:77:9d:26:7d:
d3:6c:a2:70:62:06:58:1d:89:ed:2b:47:2e:d5:98:98:2c:1d:
2e:c9:57:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:29:41 2025 by rpki-client