Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
File: xDzur3eV-33zSLBLIn5QpJoaG3w.mft (raw, json)
Hash identifier: ZyBE6ohQ2U+qs9P/MWJxj9H3phxwY5fxxX8xpvBaDSY=
Subject key identifier: E8:82:E1:39:24:E6:1A:DB:D2:7A:3E:62:71:83:E9:08:0B:B0:09:3A
Authority key identifier: C4:3C:EE:AF:77:95:FB:7D:F3:48:B0:4B:22:7E:50:A4:9A:1A:1B:7C
Certificate issuer: /CN=c43ceeaf7795fb7df348b04b227e50a49a1a1b7c
Certificate serial: 0197477968D3D1F9470338DD7ABF80A40FED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
Manifest number: 12B5
Signing time: Fri 06 Jun 2025 23:00:28 +0000
Manifest this update: Fri 06 Jun 2025 23:00:28 +0000
Manifest next update: Sat 07 Jun 2025 23:00:28 +0000
Files and hashes: 1: xDzur3eV-33zSLBLIn5QpJoaG3w.crl (hash: ge8sHP2kIiIXafgNDb8VpzZHuIvUUVdpm7VLdEDqMAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:68:d3:d1:f9:47:03:38:dd:7a:bf:80:a4:0f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43ceeaf7795fb7df348b04b227e50a49a1a1b7c
Validity
Not Before: Jun 6 23:00:28 2025 GMT
Not After : Jun 7 23:00:28 2025 GMT
Subject: CN=e882e13924e61adbd27a3e627183e9080bb0093a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:70:99:2c:4f:ad:56:a2:03:2e:0a:54:0b:33:
f7:83:36:bd:fd:3b:a0:98:c9:76:b9:cc:e3:ff:73:
50:9f:c2:ba:a6:43:5e:32:1e:83:7f:f9:9d:e7:81:
84:74:43:e1:b2:92:21:99:07:b6:8f:21:e6:dc:bc:
ae:c5:f3:b2:65:92:93:03:1c:d7:43:92:71:ab:d4:
20:e5:f0:f5:4c:fd:a8:fb:81:fc:72:11:ff:e7:89:
cf:ec:90:49:73:73:9e:34:82:06:2c:94:de:bc:3a:
b2:18:c8:5d:e2:b2:79:77:6a:fa:fc:cc:4f:2b:81:
66:50:24:79:8f:5f:5d:70:ff:0f:87:46:11:4b:6a:
1b:d2:5b:b0:b1:7f:58:4b:f8:81:14:72:c9:c0:7c:
f6:b2:ba:62:d6:c5:c3:da:26:5a:89:5b:c3:82:1b:
52:eb:e2:d1:e1:d5:09:34:1f:df:6e:3c:f5:b7:8c:
7e:70:ca:d6:2a:81:b9:3c:91:90:85:84:b6:52:8a:
e9:7e:ba:ef:e6:a0:e1:76:67:26:f7:7c:14:26:39:
b6:e2:66:95:f0:71:3c:2f:c9:60:7e:30:8c:68:40:
88:8c:4a:4c:f0:dd:19:fc:ca:d9:90:09:65:da:1f:
54:cf:22:d7:50:31:95:2d:95:ee:ad:7e:15:5b:5e:
e7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:82:E1:39:24:E6:1A:DB:D2:7A:3E:62:71:83:E9:08:0B:B0:09:3A
X509v3 Authority Key Identifier:
keyid:C4:3C:EE:AF:77:95:FB:7D:F3:48:B0:4B:22:7E:50:A4:9A:1A:1B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:2d:ac:ba:35:0d:20:82:a8:a5:11:5a:bd:4b:ce:3b:34:8e:
53:03:de:3e:d4:06:26:39:0a:5c:ac:e3:96:bb:d6:9a:80:17:
27:b2:fa:ff:5c:d2:ed:da:34:6d:9f:8c:fb:3b:9d:14:84:f7:
c4:4a:9f:8f:89:18:c6:83:1d:67:35:1b:28:9e:56:9a:21:62:
96:8e:25:b7:20:f7:f4:0b:9e:3c:02:c6:85:a2:d8:7f:e8:ef:
f3:42:e0:da:0d:2c:1f:e9:d0:60:59:f2:53:45:3f:66:bb:9b:
22:3a:b7:42:29:f1:30:c5:f7:5e:d2:af:41:01:cf:55:e8:1b:
49:87:50:b1:92:57:6a:d1:2d:ec:11:a9:b8:3d:9b:39:f0:81:
8d:9f:cc:3a:07:58:59:6e:08:d3:f8:dc:d1:9b:61:3b:8e:b7:
12:89:38:b8:91:75:27:11:6b:d2:51:e9:01:d8:9f:cf:cc:bf:
20:94:13:db:63:78:e9:c5:fa:92:cf:4c:8e:91:89:d5:2c:bf:
b0:fc:2d:3f:fa:16:51:a2:20:36:2a:8b:f5:9e:d5:ed:d6:0c:
7b:79:cb:83:08:0e:13:24:9e:db:a4:fe:46:38:e6:07:65:2b:
d2:b9:82:a7:b5:88:49:fb:16:5f:08:98:f0:e0:6a:0f:1a:08:
ad:e2:e2:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:16:27 2025 by rpki-client