Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
File: L1OI95ZqevrAc2x57WA7K3iGVsQ.mft (raw, json)
Hash identifier: v7XF98F8VdOO4SZH04T7vwo6anP6/YtGy95MKQ5bxWI=
Subject key identifier: BB:5A:32:46:93:97:5D:8D:AF:D7:6E:0C:D0:82:9C:86:2D:3C:BE:BD
Authority key identifier: 2F:53:88:F7:96:6A:7A:FA:C0:73:6C:79:ED:60:3B:2B:78:86:56:C4
Certificate issuer: /CN=2f5388f7966a7afac0736c79ed603b2b788656c4
Certificate serial: 0197C8A7076709E0D3607CD8AA830917AD3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
Manifest number: 35
Signing time: Wed 02 Jul 2025 01:01:18 +0000
Manifest this update: Wed 02 Jul 2025 01:01:18 +0000
Manifest next update: Thu 03 Jul 2025 01:01:18 +0000
Files and hashes: 1: L1OI95ZqevrAc2x57WA7K3iGVsQ.crl (hash: YrxvFtXPqCGD+azTTBRrVFrHnnmXKtqJCInQRFVFtgs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 01:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c8:a7:07:67:09:e0:d3:60:7c:d8:aa:83:09:17:ad:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f5388f7966a7afac0736c79ed603b2b788656c4
Validity
Not Before: Jul 2 01:01:18 2025 GMT
Not After : Jul 3 01:01:18 2025 GMT
Subject: CN=bb5a324693975d8dafd76e0cd0829c862d3cbebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f6:be:1c:fb:70:4f:c7:0c:35:99:9f:57:dc:
f0:a0:9a:3a:76:5a:78:69:2f:22:9d:d8:9b:6f:ce:
50:b4:f8:a3:e3:3d:b7:ba:2f:c6:af:92:f5:e1:4d:
33:08:a1:29:f3:f1:83:a2:99:3d:fe:2b:6f:91:04:
7b:12:45:31:3d:75:d1:e3:37:73:3a:15:41:5e:cf:
3b:71:d3:be:66:78:06:cb:81:37:53:14:ef:51:7f:
b7:b7:76:ad:8c:c9:10:04:01:92:00:59:22:82:86:
53:f4:0d:08:8e:39:8e:46:4c:43:f9:3b:df:38:0d:
22:fc:d7:e4:de:8a:b6:f4:a0:30:58:e3:df:8c:5c:
38:63:27:0c:ec:8e:8d:c5:23:5f:b1:fd:03:51:6d:
9d:5f:61:05:53:d9:cb:0e:23:48:e6:f2:30:f0:bd:
7c:73:99:e2:f9:65:8d:7b:e2:0f:79:99:5a:96:08:
76:33:3a:28:ba:e6:b1:fc:ef:ff:2d:a2:14:8a:b5:
f0:fb:e8:8e:fb:eb:ec:db:d6:94:c9:db:02:b8:cd:
7f:69:39:3a:8a:41:7d:29:ac:cc:45:3a:5b:f7:dc:
71:0f:d5:cf:a8:18:2d:49:be:4d:21:a1:eb:c0:ba:
2c:ef:d8:42:20:84:33:c4:67:d3:a8:46:bb:25:f1:
48:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:5A:32:46:93:97:5D:8D:AF:D7:6E:0C:D0:82:9C:86:2D:3C:BE:BD
X509v3 Authority Key Identifier:
keyid:2F:53:88:F7:96:6A:7A:FA:C0:73:6C:79:ED:60:3B:2B:78:86:56:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1OI95ZqevrAc2x57WA7K3iGVsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/225f46-c456-4f65-a3db-4190b18460a7/1/L1OI95ZqevrAc2x57WA7K3iGVsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:53:10:6f:d1:9d:48:1e:42:66:dc:50:20:b6:6f:c3:3a:be:
52:0a:7f:32:47:1c:6f:7b:39:f0:51:6f:26:c0:87:50:44:d1:
f2:5a:de:d8:7d:2a:bb:83:e3:6e:b7:a4:45:35:68:3b:52:41:
a3:92:ec:9a:f7:ef:ac:28:86:f1:36:96:7d:e4:83:d4:78:7e:
98:a8:34:1a:da:5d:b4:fe:40:af:db:80:07:bf:f4:ef:e9:17:
22:a7:55:a1:b0:39:8b:f9:80:29:8e:5c:0e:0d:5e:80:86:49:
c9:cb:ae:cd:db:98:dd:04:7c:5a:0a:65:25:16:77:27:dd:f7:
10:14:0a:f3:70:ef:b5:da:17:c5:49:f4:d2:29:67:84:54:30:
18:8b:95:28:55:a9:36:db:00:cb:9d:96:fb:32:36:49:3e:93:
9e:aa:64:8b:36:d5:dc:5b:96:5a:3d:ac:14:4b:ee:fa:74:c7:
25:16:1e:1e:be:61:c2:05:d0:54:b7:f1:f3:bd:da:11:07:47:
fc:c2:67:20:47:5f:62:86:23:d0:eb:34:7a:6f:05:e0:07:55:
26:75:df:f5:d2:e3:0f:78:e4:ce:c9:b2:95:9a:d7:cb:8d:3e:
04:a3:91:ac:16:33:3b:dc:bd:17:15:4a:18:7f:23:ec:4a:d8:
58:17:90:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 10:49:35 2025 by rpki-client