Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
File: IaqfF_jMpH37krSQLSwrMgPb7aY.mft (raw, json)
Hash identifier: sulyvl5WJfOi79GfBTNNghBY5yTniz+7kthO7JTwxA8=
Subject key identifier: D2:E8:3F:27:14:C6:DF:87:83:92:2D:FC:19:5A:B6:9C:C4:95:00:3C
Authority key identifier: 21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
Certificate issuer: /CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Certificate serial: 019752352A37600BB44E74E810FD83A20AE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
Manifest number: 061D
Signing time: Mon 09 Jun 2025 01:01:45 +0000
Manifest this update: Mon 09 Jun 2025 01:01:45 +0000
Manifest next update: Tue 10 Jun 2025 01:01:45 +0000
Files and hashes: 1: IaqfF_jMpH37krSQLSwrMgPb7aY.crl (hash: shNTNgGr90qW+bX9jJRlh7Q3kdvv+c3sikWEcu+G0KM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 01:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:35:2a:37:60:0b:b4:4e:74:e8:10:fd:83:a2:0a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Validity
Not Before: Jun 9 01:01:45 2025 GMT
Not After : Jun 10 01:01:45 2025 GMT
Subject: CN=d2e83f2714c6df8783922dfc195ab69cc495003c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c9:ee:22:ad:09:d1:8e:1f:4d:87:41:c8:0b:
10:e5:86:2a:40:1b:ce:67:28:fc:9c:3f:cc:21:1f:
79:fd:56:7c:ae:28:7b:ed:e5:d2:33:75:58:59:ab:
27:e5:92:70:6a:3a:3d:d9:26:8b:0e:38:44:4e:dc:
04:e1:64:b3:76:11:5a:70:48:bf:06:d8:95:ec:7b:
24:b3:70:ed:43:1b:4b:b9:52:8a:dc:d0:f0:39:41:
a2:d7:f4:91:9c:f4:40:ad:c0:40:b6:09:3a:b0:ab:
e1:e8:79:7d:27:3f:27:29:70:b7:89:7e:3f:55:18:
5e:f4:dc:ab:8f:f2:32:04:c8:12:ce:48:0d:c7:3e:
23:22:51:51:61:97:3e:e9:d6:f1:fe:7e:35:5d:db:
6a:67:c1:02:e7:be:84:5b:c5:d0:c6:ff:13:7a:72:
3b:bc:fe:67:97:14:40:f7:b6:3f:bb:df:5a:ff:9f:
88:46:ce:26:50:79:55:8f:5f:1d:f6:51:3f:d7:f4:
4b:28:a0:32:cb:b8:73:2e:a6:a4:31:60:a3:7c:80:
d4:84:17:99:ed:8e:82:01:50:2b:c0:04:82:2f:0e:
43:02:89:db:89:2f:08:7d:29:10:10:a8:6a:81:60:
6d:a6:89:ea:e8:12:0a:2b:8c:d6:f3:d8:e9:a0:8f:
15:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E8:3F:27:14:C6:DF:87:83:92:2D:FC:19:5A:B6:9C:C4:95:00:3C
X509v3 Authority Key Identifier:
keyid:21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:ed:d4:a2:95:37:8e:64:22:10:0c:a7:0a:8e:54:5c:db:2e:
55:09:34:61:cf:7a:f2:66:ef:11:73:94:54:85:03:1a:2e:14:
f8:db:df:3b:0e:e6:27:c0:b1:bc:13:ca:6c:c5:a6:33:28:18:
27:3e:34:03:cb:27:0f:27:e3:b1:12:e2:5f:47:a4:f1:02:13:
d0:e8:f2:a6:75:74:ff:6a:6c:a5:01:83:2f:7a:13:97:bb:19:
34:5b:ee:f3:09:b2:7c:14:b7:40:73:05:99:65:a1:54:f4:89:
2f:a1:bb:e0:53:98:37:3e:fa:b8:a9:1f:cd:e7:a6:1c:d8:86:
b5:8c:03:79:cc:4b:8e:85:24:6a:0c:96:00:03:58:0e:15:43:
a0:25:84:f4:cf:71:3b:69:cd:01:09:5c:0b:35:52:d8:e0:c6:
16:9d:c5:02:98:e6:41:cc:92:e3:e8:ea:6d:6a:09:10:61:e3:
f8:45:2a:38:df:6c:39:67:5b:52:96:37:8f:ab:ec:d3:5d:34:
d4:2e:fd:86:36:6f:f0:ff:b2:8c:ab:4a:b8:c1:79:88:f0:aa:
cb:e9:fe:42:19:30:79:f4:50:87:d9:ab:96:a1:94:04:fc:6c:
60:b6:70:8d:af:fa:ac:1e:79:30:f6:83:4b:c0:fc:48:d3:1f:
11:a7:7b:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 08:59:46 2025 by rpki-client