Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft
File: clOCbDGl92CXvNwqL2UZiKE2flM.mft (raw, json)
Hash identifier: mB3WSjFJQ3AsB9DaHH5A2V9fby4+m5idKbEWEv8xOEo=
Subject key identifier: 14:BF:61:B0:72:D8:C8:EB:51:A9:29:ED:62:FC:6F:8A:CA:EA:0D:81
Authority key identifier: 72:53:82:6C:31:A5:F7:60:97:BC:DC:2A:2F:65:19:88:A1:36:7E:53
Certificate issuer: /CN=7253826c31a5f76097bcdc2a2f651988a1367e53
Certificate serial: 019748F9D2E7048CD04B5D32B64BE32409C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/clOCbDGl92CXvNwqL2UZiKE2flM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft
Manifest number: 0854
Signing time: Sat 07 Jun 2025 06:00:21 +0000
Manifest this update: Sat 07 Jun 2025 06:00:21 +0000
Manifest next update: Sun 08 Jun 2025 06:00:21 +0000
Files and hashes: 1: clOCbDGl92CXvNwqL2UZiKE2flM.crl (hash: W9XbUCeUXCcBIW4HAdcgbCEaTwMgpmz/mLI5YxGpnyA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft
rsync://rpki.ripe.net/repository/DEFAULT/clOCbDGl92CXvNwqL2UZiKE2flM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:f9:d2:e7:04:8c:d0:4b:5d:32:b6:4b:e3:24:09:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7253826c31a5f76097bcdc2a2f651988a1367e53
Validity
Not Before: Jun 7 06:00:21 2025 GMT
Not After : Jun 8 06:00:21 2025 GMT
Subject: CN=14bf61b072d8c8eb51a929ed62fc6f8acaea0d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6e:4b:4a:ac:94:4e:e7:e9:0e:d3:aa:7a:fc:
15:30:a2:44:c2:b1:12:37:54:91:89:21:e9:23:7c:
b6:d0:e5:04:8c:66:95:29:70:4b:31:5c:12:8c:6e:
d8:12:a4:4b:3a:59:51:8a:f8:87:44:74:2e:97:7f:
9d:27:0b:28:95:6c:66:28:0d:3d:3c:d8:52:39:0d:
d1:e3:81:cb:e7:e6:6d:22:d7:ca:3e:fb:41:07:d1:
a1:0c:df:8a:f4:51:45:08:8c:ad:78:bf:3d:0e:a0:
90:65:2a:ed:cb:a5:77:61:20:98:1b:9b:11:af:b2:
c7:eb:f5:d1:3b:7b:81:2d:30:da:73:5b:0a:7c:9b:
3d:c3:ed:79:d4:05:e2:49:bc:8f:c8:f2:42:b1:09:
a0:3e:fe:f2:23:1d:06:ea:d4:8a:c8:95:c6:20:fa:
22:b2:12:79:02:f9:ed:5b:54:e9:ce:f8:6a:9a:ef:
e3:72:a4:34:8e:c8:d2:99:1f:85:a5:16:1a:1e:08:
c7:4f:ee:ad:59:86:3e:46:60:d5:a8:f2:3c:05:fc:
cd:04:9a:9e:20:31:c0:a6:e6:c5:02:70:41:4c:25:
ab:72:98:9f:2d:c7:d5:31:23:22:61:34:46:ec:3b:
9b:d2:4d:3d:0a:c7:a4:77:55:15:d8:34:55:96:24:
45:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:BF:61:B0:72:D8:C8:EB:51:A9:29:ED:62:FC:6F:8A:CA:EA:0D:81
X509v3 Authority Key Identifier:
keyid:72:53:82:6C:31:A5:F7:60:97:BC:DC:2A:2F:65:19:88:A1:36:7E:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/clOCbDGl92CXvNwqL2UZiKE2flM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/7a4a42-7dc5-40c0-804b-f3f51c1070b9/1/clOCbDGl92CXvNwqL2UZiKE2flM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:fd:0a:2b:4a:5d:83:14:cc:ed:be:59:2f:a7:6f:c6:0a:a6:
29:80:fc:9a:57:0f:33:f3:28:90:57:99:c3:73:ec:e8:50:e9:
80:82:59:95:f3:d8:e6:6a:49:a1:a1:af:57:ae:4b:5f:80:dd:
1b:a8:06:0e:10:9f:7a:e0:03:bb:4d:03:7a:8f:ae:46:f1:81:
f0:dc:4f:dd:c3:96:ab:10:bf:11:5c:9c:cc:0d:18:4f:ba:04:
5f:1d:a4:65:68:17:0e:db:27:b1:84:87:01:ae:30:5d:12:6a:
24:07:fa:e7:f4:35:55:93:85:0f:a6:7b:a5:cc:d3:47:93:04:
79:20:f4:3e:56:c7:e8:2e:16:38:5b:ac:92:11:da:86:23:f3:
ba:a4:d3:05:b8:69:98:98:b9:8f:7b:af:de:c8:8a:36:7b:6c:
d4:be:32:23:3a:60:65:52:59:d8:2d:bb:d3:64:2c:23:80:91:
43:8e:c4:f3:16:96:34:43:43:26:02:5e:e1:21:95:7a:9b:d3:
40:90:aa:69:4b:80:4f:50:3f:0b:76:ad:3d:0a:05:a7:fa:1d:
b4:f7:33:77:76:1a:22:4a:54:c9:f0:22:1a:4e:98:ec:1d:34:
cf:67:02:2e:c3:2c:a7:2f:55:5f:c7:70:98:ac:b9:bb:f8:bb:
c8:ff:00:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:49:22 2025 by rpki-client