Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
File: 7N0ioeDFuwAoDxkz7uz4HNig5rI.mft (raw, json)
Hash identifier: D1di21USnOid7YnJXX13OS3KJNnopUtxLYCFPTUi98M=
Subject key identifier: 95:C4:D4:4B:27:5A:77:E9:5E:51:2A:74:F7:21:9A:44:80:F3:AF:EF
Authority key identifier: EC:DD:22:A1:E0:C5:BB:00:28:0F:19:33:EE:EC:F8:1C:D8:A0:E6:B2
Certificate issuer: /CN=ecdd22a1e0c5bb00280f1933eeecf81cd8a0e6b2
Certificate serial: 01976F2BCC5AF48E270C14EA46EF7C5A10BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
Manifest number: 1520
Signing time: Sat 14 Jun 2025 16:00:30 +0000
Manifest this update: Sat 14 Jun 2025 16:00:30 +0000
Manifest next update: Sun 15 Jun 2025 16:00:30 +0000
Files and hashes: 1: 7N0ioeDFuwAoDxkz7uz4HNig5rI.crl (hash: 2O+Cu8HiWfIGFs6TCc3/PRbWFUAOWW+d8wqIeRCxpuw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2b:cc:5a:f4:8e:27:0c:14:ea:46:ef:7c:5a:10:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecdd22a1e0c5bb00280f1933eeecf81cd8a0e6b2
Validity
Not Before: Jun 14 16:00:30 2025 GMT
Not After : Jun 15 16:00:30 2025 GMT
Subject: CN=95c4d44b275a77e95e512a74f7219a4480f3afef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6b:22:22:08:f1:57:ef:dc:3d:79:43:e1:4e:
d6:eb:e1:33:5a:f9:9a:a8:b5:42:3e:97:42:58:39:
70:ba:ec:2b:76:f8:f6:c0:f6:63:c4:6f:59:e0:ed:
19:78:6a:f1:c4:76:ba:56:83:0c:4c:b7:c8:f7:bf:
58:cc:7f:f3:8a:f7:c3:da:a7:16:70:f4:19:9f:4b:
9b:99:3a:97:0e:bf:b1:a9:e6:43:42:0e:19:26:a3:
fd:34:e1:4e:2b:6d:91:d1:99:79:05:f7:4c:fd:5e:
02:3a:2a:a0:a5:eb:0a:06:f6:1c:e8:71:14:16:08:
80:6c:f1:66:9f:ab:7a:34:10:0e:39:c3:22:76:f9:
eb:40:83:ad:49:b8:5d:1d:d6:39:48:88:ce:6b:a2:
2e:da:59:e1:ba:73:4b:32:fc:d3:43:54:43:bb:ed:
ab:25:76:9b:8c:df:a9:9a:dd:4a:8a:69:82:1b:88:
9c:87:a6:28:0b:a7:6a:cc:ba:8d:38:7c:4d:b6:bc:
18:0a:ef:df:5a:a5:cc:85:50:ab:8a:84:20:ee:8a:
f2:da:1d:72:a0:74:2c:cb:d2:1e:e8:da:39:96:9a:
a3:86:26:29:3d:9d:f7:02:f3:97:36:9b:c2:af:68:
2d:7f:8f:96:7e:a5:1d:c0:da:c9:f5:d0:5b:87:56:
28:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:C4:D4:4B:27:5A:77:E9:5E:51:2A:74:F7:21:9A:44:80:F3:AF:EF
X509v3 Authority Key Identifier:
keyid:EC:DD:22:A1:E0:C5:BB:00:28:0F:19:33:EE:EC:F8:1C:D8:A0:E6:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:e0:a2:7b:53:a3:b6:e3:26:5e:fc:46:cc:1e:f7:74:f8:ef:
1b:4d:e6:b1:b9:05:2c:a7:2a:5e:ae:47:30:58:f5:2a:e1:8a:
06:e3:eb:95:44:f0:19:6e:37:f0:8e:da:46:6c:40:54:51:87:
32:7f:6a:11:ea:5b:7a:9e:51:9e:89:e5:6a:86:eb:28:82:35:
ee:16:28:93:36:41:7b:b1:62:55:93:d3:e7:2a:c5:df:db:7a:
12:98:d5:71:a6:8d:45:79:23:d8:f6:79:b0:84:89:a9:99:72:
cf:13:69:de:7a:56:ad:46:ab:47:61:8d:18:85:3f:11:e8:c5:
0b:80:0a:3e:b8:ba:c8:76:4e:b9:37:6c:bb:bb:fc:97:6d:de:
cf:5d:b1:74:21:b3:fa:55:44:10:90:1f:d4:6f:55:62:a0:fd:
44:8b:be:cf:ce:0b:d2:89:30:a0:05:00:5f:43:bd:03:46:84:
cf:81:20:b2:af:f6:86:fb:86:ba:57:1f:d0:f4:4b:7d:b9:2d:
00:f3:41:bb:96:cd:5a:9c:20:d4:45:bd:0b:a4:66:90:3e:f0:
c0:e7:07:59:65:7b:67:60:1e:f6:07:f8:61:c5:7d:4f:a3:00:
c1:a7:b2:62:1e:ce:42:ea:be:3f:9b:32:81:90:8b:7d:57:89:
40:7a:d0:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:39:00 2025 by rpki-client