Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft
File: rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft (raw, json)
Hash identifier: Ot5etu59nLeIFAxkj7ZDQ+H2VryT1z39PvEE2x5Lt60=
Subject key identifier: 9C:6A:C3:C4:7D:88:B4:C1:A1:7A:AE:68:C3:B5:02:B5:63:A4:E1:08
Authority key identifier: AE:50:EC:35:2E:8D:BB:0C:DF:6E:08:C5:7C:71:CA:A1:1A:44:50:03
Certificate issuer: /CN=ae50ec352e8dbb0cdf6e08c57c71caa11a445003
Certificate serial: 01974A7B15F9B42085CCA760CBD1F312DAFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlDsNS6NuwzfbgjFfHHKoRpEUAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft
Manifest number: 157A
Signing time: Sat 07 Jun 2025 13:01:09 +0000
Manifest this update: Sat 07 Jun 2025 13:01:09 +0000
Manifest next update: Sun 08 Jun 2025 13:01:09 +0000
Files and hashes: 1: rlDsNS6NuwzfbgjFfHHKoRpEUAM.crl (hash: SPoxciLvQ2POuBL+yWCe9Gp+cGuOsEraFgCue09v6bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/rlDsNS6NuwzfbgjFfHHKoRpEUAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:15:f9:b4:20:85:cc:a7:60:cb:d1:f3:12:da:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae50ec352e8dbb0cdf6e08c57c71caa11a445003
Validity
Not Before: Jun 7 13:01:09 2025 GMT
Not After : Jun 8 13:01:09 2025 GMT
Subject: CN=9c6ac3c47d88b4c1a17aae68c3b502b563a4e108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:58:10:d1:84:07:f1:85:ea:13:34:c9:17:a7:
0c:6f:24:ac:f8:c0:f9:43:ba:db:25:d4:08:e2:e6:
b4:c9:34:f0:c1:b9:d8:3b:e1:f5:17:a6:b7:ed:1d:
82:31:da:7a:18:13:87:d0:e9:30:66:06:71:ae:1f:
3c:17:58:f6:ab:35:e3:47:57:48:a5:20:4a:81:35:
d3:b3:03:b3:e9:97:0c:39:08:5f:63:14:db:4d:cc:
45:e6:71:4e:76:55:4a:b4:29:f2:5b:2d:7a:64:1f:
d5:cd:65:45:24:8d:ac:6d:6d:f6:cb:91:54:5f:a9:
46:ad:4b:23:d8:c5:0a:b0:97:ac:d1:8e:a2:b1:0d:
af:a3:6f:c9:5f:38:94:2d:75:e9:cc:1c:57:97:8b:
62:03:cc:ba:12:6f:c7:64:36:eb:80:ad:a4:9d:85:
7d:27:44:53:20:64:1c:37:04:ef:e9:56:9f:67:81:
a1:ad:55:a6:21:76:77:1b:ef:00:81:21:fc:00:a0:
07:8f:9e:fe:e8:76:fb:c5:95:fe:f3:ea:98:9a:8f:
22:02:97:76:0c:0d:90:c3:d2:dc:d2:e8:5b:14:74:
b8:b2:d2:b9:5b:34:7b:6b:79:7e:5f:c5:46:af:d3:
6d:64:df:cf:4b:3a:e7:e3:4d:bd:99:ee:d1:b9:07:
7a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:6A:C3:C4:7D:88:B4:C1:A1:7A:AE:68:C3:B5:02:B5:63:A4:E1:08
X509v3 Authority Key Identifier:
keyid:AE:50:EC:35:2E:8D:BB:0C:DF:6E:08:C5:7C:71:CA:A1:1A:44:50:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlDsNS6NuwzfbgjFfHHKoRpEUAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:99:14:6d:fb:50:3f:01:d2:0f:b7:e2:4d:f2:d0:e5:61:61:
ca:18:18:3c:34:76:0b:db:9e:ea:dc:9e:c3:78:7a:de:d4:2f:
63:fb:f8:c0:13:c1:4a:ab:a6:f7:c9:98:c7:6b:eb:cf:15:ac:
0d:cc:db:22:9e:21:2d:f1:1f:c3:f9:ca:69:86:92:46:ac:41:
65:d5:a7:cd:a0:e8:34:7b:7e:e5:d1:c9:da:63:ef:4c:26:c1:
75:dd:7b:38:70:91:d1:e6:77:86:a9:39:c7:95:68:de:20:92:
b0:bf:99:6a:b9:46:0b:85:b5:61:d7:7a:58:15:8b:69:45:2b:
8b:a4:b7:ea:db:4d:49:37:ba:c6:4f:f1:59:2c:80:ec:9a:79:
e8:9d:d0:20:63:7b:16:b7:86:88:d0:b3:ec:61:ce:1e:f8:90:
7c:00:32:bf:7a:8d:f0:8e:64:5e:f1:3b:21:a2:71:1e:6e:51:
7b:1b:87:53:8d:e6:d8:da:72:a4:a0:59:ce:db:47:0d:f5:98:
7a:69:fa:18:e1:ed:f2:ab:bf:2c:6f:29:1f:c1:77:93:e7:a1:
bc:68:35:3c:9c:8e:09:23:b5:e4:b4:65:19:98:67:86:aa:96:
43:65:82:af:82:e1:fb:79:e2:e4:1c:72:75:4a:b8:8d:8f:de:
a4:c5:57:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:06:46 2025 by rpki-client