Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
File: 1MiI65YKABkAwnleiq-iaPYC2EI.mft (raw, json)
Hash identifier: 1kia2upo2TxCTzS1r60vVxlqF87TxeQk9fYhGERoeFE=
Subject key identifier: 5A:C9:7A:72:09:43:E0:62:18:04:DD:27:EC:F2:F0:E3:55:10:54:13
Authority key identifier: D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
Certificate issuer: /CN=d4c888eb960a001900c2795e8aafa268f602d842
Certificate serial: 0197488CCD182A799BBF764CC592BE4C793A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
Manifest number: 0A88
Signing time: Sat 07 Jun 2025 04:01:16 +0000
Manifest this update: Sat 07 Jun 2025 04:01:16 +0000
Manifest next update: Sun 08 Jun 2025 04:01:16 +0000
Files and hashes: 1: 1MiI65YKABkAwnleiq-iaPYC2EI.crl (hash: DUHSHEsskkXESKCMDvnMeQWBURRACRt+d6/tc0UBPI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:cd:18:2a:79:9b:bf:76:4c:c5:92:be:4c:79:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c888eb960a001900c2795e8aafa268f602d842
Validity
Not Before: Jun 7 04:01:16 2025 GMT
Not After : Jun 8 04:01:16 2025 GMT
Subject: CN=5ac97a720943e0621804dd27ecf2f0e355105413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:47:5b:2e:ca:6a:d4:6e:a4:44:60:e9:87:41:
5d:02:ee:15:5c:99:76:ae:55:c3:e9:3b:ad:4c:63:
75:b0:82:5e:49:ed:3d:28:d0:4e:e7:22:1a:f9:a6:
b6:10:10:20:01:fb:cf:62:c3:ad:fc:d7:82:27:fe:
1f:8d:24:ed:13:a8:e6:7b:c8:64:c0:4e:d1:1a:31:
ca:ae:6a:90:e2:1d:0c:4a:ef:26:a2:55:26:5b:f6:
06:a1:cc:14:f4:ea:8d:d6:0e:7e:aa:57:c5:92:3e:
de:d7:61:14:3b:94:ec:0d:18:71:2c:65:57:74:bc:
13:d7:23:c1:0a:64:2b:33:bf:8d:67:a6:b8:65:6f:
49:4a:75:80:06:d7:d3:15:7e:b5:2e:05:9c:ec:7c:
aa:e2:6d:eb:75:4c:ba:b3:66:f3:e7:25:df:e2:9a:
dd:68:b3:e9:f7:da:31:79:c8:ef:ab:45:60:ee:71:
d7:db:b4:1c:ad:44:66:b4:4a:70:08:c2:b6:38:6c:
00:9d:a4:31:72:4b:79:bb:5d:04:13:fd:fb:95:be:
b3:97:39:e3:cf:27:6b:bd:ff:82:67:1a:89:0d:0a:
c7:7f:c9:91:2c:d5:75:43:ac:a7:81:62:05:db:a3:
7a:9e:a3:0a:c2:49:f2:f7:83:a9:91:7d:27:92:10:
02:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C9:7A:72:09:43:E0:62:18:04:DD:27:EC:F2:F0:E3:55:10:54:13
X509v3 Authority Key Identifier:
keyid:D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:87:5c:49:2a:f3:ae:be:fe:a8:91:b6:b0:2a:18:03:c5:82:
1e:2d:86:78:97:18:a8:1a:a4:85:af:44:cf:8b:09:57:cb:20:
63:3e:80:0c:81:e8:d5:7f:a8:f4:a5:8e:6c:9a:0a:37:a6:23:
8d:8e:31:de:3e:77:cb:7a:c5:3f:7f:a8:ae:a0:aa:94:c8:94:
00:c6:31:cf:73:71:cd:35:e2:ef:54:63:4f:fe:d5:92:4b:85:
66:82:5d:e5:6c:b8:d5:04:cf:d6:cd:85:a5:fe:26:2e:a5:05:
84:61:8e:81:3f:52:7a:38:aa:53:d2:56:3f:a6:65:d3:da:fe:
24:cd:0b:b7:97:0d:e9:34:36:12:99:5a:b0:54:98:6d:39:aa:
57:07:c3:23:1a:a9:9d:b6:c9:de:ca:a8:4f:bb:7a:ce:13:bb:
96:ad:d5:0f:1c:69:d9:fb:a8:2a:b2:af:05:0e:47:7b:6c:be:
f6:92:02:34:7e:12:1c:22:e1:37:ee:72:d0:88:49:af:ae:e5:
b1:af:dc:a6:18:7b:01:79:41:6b:1e:98:8a:15:28:4b:6b:4d:
9a:7c:a8:a6:57:45:5f:55:7c:db:e3:c1:70:a9:fe:27:0a:b7:
c7:4d:48:da:93:c3:44:4a:e5:32:21:3f:96:20:05:e7:67:54:
fd:c3:bc:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:19:14 2025 by rpki-client