Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
File: 6ocBJxa2bugiZCwvChuQFItceyk.mft (raw, json)
Hash identifier: tmgSFqtkI9g6fgOi2EHLWF424dC5vinOZa8Q/xkX/GE=
Subject key identifier: 12:0B:50:AA:E6:44:9F:2A:70:14:46:47:3D:7F:0D:4C:D9:F4:EF:16
Authority key identifier: EA:87:01:27:16:B6:6E:E8:22:64:2C:2F:0A:1B:90:14:8B:5C:7B:29
Certificate issuer: /CN=ea87012716b66ee822642c2f0a1b90148b5c7b29
Certificate serial: 0197488CEC48A640499A94479081F35AB5EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
Manifest number: 0CCB
Signing time: Sat 07 Jun 2025 04:01:24 +0000
Manifest this update: Sat 07 Jun 2025 04:01:24 +0000
Manifest next update: Sun 08 Jun 2025 04:01:24 +0000
Files and hashes: 1: 6ocBJxa2bugiZCwvChuQFItceyk.crl (hash: RyQDE2dJ+AexlUdqy7JefSZXPCKFwiXoj1fEScuzXuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:ec:48:a6:40:49:9a:94:47:90:81:f3:5a:b5:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea87012716b66ee822642c2f0a1b90148b5c7b29
Validity
Not Before: Jun 7 04:01:24 2025 GMT
Not After : Jun 8 04:01:24 2025 GMT
Subject: CN=120b50aae6449f2a701446473d7f0d4cd9f4ef16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:08:10:9a:e6:8b:f2:8f:cb:70:6d:24:87:05:
9e:e5:22:22:8b:08:0e:43:cd:4c:90:c1:7b:b2:4e:
71:d5:b9:02:70:c4:df:f2:d8:1b:00:64:6b:bb:93:
fe:55:23:97:c8:c9:1d:ce:9d:da:1a:a5:8d:40:94:
85:57:6b:5c:64:c0:41:b5:b7:08:22:2b:fb:89:84:
d7:f9:bb:5d:59:df:97:da:92:cc:77:e7:be:5e:f1:
6d:1e:1a:7e:49:b1:32:d9:2a:4b:b5:c5:17:83:f2:
e0:3d:62:4c:41:8b:ba:20:a2:39:e6:5a:22:d9:a3:
40:f2:0d:87:25:57:49:45:41:12:c9:91:5a:4c:41:
98:da:11:44:66:72:1a:c5:e5:0d:3b:91:6b:56:28:
25:4d:cc:a7:a5:73:6f:da:4d:b0:06:7d:1b:fc:db:
c9:5d:8a:27:a2:2a:93:15:70:76:ea:83:f9:73:98:
07:42:56:4e:7d:41:f6:0e:03:23:ff:3c:bd:63:02:
de:9a:86:10:f5:86:cc:c6:6d:a7:aa:5d:53:82:8f:
ac:6a:e3:9a:3f:88:bb:02:b7:b7:3a:b0:91:18:6d:
59:01:3d:3c:b5:e6:a3:2e:10:db:18:6f:d9:82:08:
22:78:2a:ba:db:8b:ef:d2:5e:d6:79:39:d0:ef:de:
93:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:0B:50:AA:E6:44:9F:2A:70:14:46:47:3D:7F:0D:4C:D9:F4:EF:16
X509v3 Authority Key Identifier:
keyid:EA:87:01:27:16:B6:6E:E8:22:64:2C:2F:0A:1B:90:14:8B:5C:7B:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:28:87:28:78:b1:27:a4:cc:e4:3d:0c:6c:06:44:c2:94:70:
72:34:40:b7:c2:4f:1e:65:70:ac:db:73:3b:07:cf:1e:7e:18:
05:16:48:d5:be:1f:9e:04:d3:81:48:ca:e8:db:f2:ab:a5:33:
96:2c:a1:d5:cd:8a:97:2e:b0:bc:36:e9:1a:4e:be:5f:b1:02:
23:02:3e:79:07:e6:23:8d:02:37:c8:ac:c7:67:b9:21:35:2b:
eb:d1:a2:57:d3:41:f6:c5:82:1a:22:7d:52:44:2e:46:b6:88:
e5:e9:94:21:b9:d1:90:46:49:de:3b:84:8e:3a:12:c7:46:e2:
05:a0:e1:8e:ec:54:c5:15:2a:f0:2b:23:ea:e1:47:83:a8:7c:
6a:c9:b6:b0:6b:29:51:a1:1f:ca:aa:18:54:39:32:78:ad:2f:
9f:eb:83:bd:d0:f3:4c:1f:19:32:24:b5:4f:cc:37:c2:2c:1b:
93:9d:fb:5a:4e:85:68:e4:5f:a6:7f:a9:ca:89:51:6f:43:ba:
4b:3a:9f:80:fe:07:02:69:3a:ed:87:9c:43:9b:59:65:4a:2f:
f4:1c:3b:eb:39:8a:c7:d8:dc:49:ff:2d:6d:b0:81:9a:a6:6b:
4f:25:5e:b9:ca:99:ad:9d:1e:cb:04:dc:43:c0:e2:07:8b:a4:
39:66:55:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:07:28 2025 by rpki-client