
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: Gyys0so2Tr5jr6IUFy0o4ZBFn3+EnrABt5pwXudyrv4=
Subject key identifier: 33:28:FD:66:83:0C:44:3C:0C:1D:05:DA:66:B8:DC:63:20:FF:96:35
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 01975B6E8A64950E54DB0D5E1A7AEA93F095
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 1587
Signing time: Tue 10 Jun 2025 20:01:00 +0000
Manifest this update: Tue 10 Jun 2025 20:01:00 +0000
Manifest next update: Wed 11 Jun 2025 20:01:00 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: 2kWylrv30JWesVudupZ/F3Fmaca4niYKRsQ0R4NqBXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:6e:8a:64:95:0e:54:db:0d:5e:1a:7a:ea:93:f0:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Jun 10 20:01:00 2025 GMT
Not After : Jun 11 20:01:00 2025 GMT
Subject: CN=3328fd66830c443c0c1d05da66b8dc6320ff9635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:85:b0:00:79:7f:68:75:87:75:41:21:0c:7b:
c6:f3:24:21:17:ad:ec:6e:ac:36:6f:b0:94:52:86:
20:41:15:47:cd:0a:41:43:2a:07:4a:e0:34:63:72:
b7:69:f4:72:9c:9d:18:68:56:72:ff:11:82:4e:f4:
99:1d:c6:ec:ef:cb:ba:18:b2:93:92:1a:29:10:32:
ab:db:c9:dc:c9:af:0c:38:93:a6:f4:dc:a7:08:c6:
43:fc:b4:0d:ea:25:e9:bc:64:a2:06:c5:20:39:5a:
e4:cd:53:54:ad:94:7d:c0:59:31:83:d6:ef:8c:5d:
1c:ce:52:6e:1f:6e:ef:0f:72:a6:18:5d:53:de:ba:
ee:d8:17:9e:8d:2e:a6:bc:97:97:1b:52:33:c7:ae:
fc:7a:df:d4:4c:0a:9e:6b:ae:61:91:31:61:eb:9d:
dd:23:c7:10:4f:e6:96:e7:d1:64:66:83:c0:63:d4:
86:d3:93:89:37:f3:dc:5c:2d:1d:87:30:d1:af:31:
c5:c3:cd:73:ee:03:f0:f7:d9:e9:48:eb:5f:63:58:
51:8a:78:5f:72:7f:fd:3c:eb:38:10:fd:02:de:21:
64:74:37:6c:56:2f:3e:9f:8d:0a:d4:ca:78:3f:35:
9f:f2:3c:2f:e4:c1:8e:83:a6:9f:12:0d:66:ae:e3:
45:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:28:FD:66:83:0C:44:3C:0C:1D:05:DA:66:B8:DC:63:20:FF:96:35
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:da:93:75:1c:9e:e5:63:b1:b3:39:ee:58:31:55:c1:f9:10:
31:c8:a4:0b:57:cf:7d:c6:f4:a1:c7:54:d8:b2:2a:9b:b7:17:
19:2b:da:9f:b7:98:a6:93:49:53:2a:f6:e7:e9:bc:29:80:7a:
75:53:e2:29:43:37:c6:c8:c8:af:b8:97:f9:3e:b6:66:09:9b:
eb:16:5e:50:11:73:48:b3:4f:91:1f:73:9d:67:83:08:7d:96:
85:48:7d:05:81:06:f5:77:2b:b3:10:87:33:4b:16:12:27:62:
1f:c9:6c:46:32:7c:8a:85:da:d4:f8:4c:b3:f2:90:18:b7:07:
ed:01:7b:9d:cb:75:8f:a1:fd:76:98:13:5d:3b:37:1d:2c:5d:
d2:e9:66:87:b1:ce:58:ba:d8:7b:c1:3b:79:d9:bb:d1:f9:2f:
ac:88:5c:69:e6:e1:70:56:ac:99:38:55:37:81:fd:dd:66:b6:
e8:48:75:a6:45:99:0e:66:2a:a9:cc:63:c5:ad:f3:17:47:5e:
66:a8:c4:f1:23:ab:4b:63:c5:96:09:4b:24:d2:04:f8:b0:c2:
48:90:b4:30:58:af:7c:93:92:bf:d8:74:5e:cd:1f:b3:62:a7:
e5:b2:2a:39:3d:84:54:85:d6:77:34:80:82:b5:c0:dd:5f:61:
d1:db:8e:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 06:14:05 2025 by rpki-client