Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
File: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft (raw, json)
Hash identifier: qD6yO+/vUvrY+BRbkQf/axakkDN27Rn/lTjBEVKVzaI=
Subject key identifier: E2:3F:44:B3:D9:DC:4E:4E:4F:84:CA:66:34:7B:E9:3B:71:E0:8B:AB
Authority key identifier: D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
Certificate issuer: /CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Certificate serial: 01974AE88564F1CE383468D4656639439E76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
Manifest number: 0295
Signing time: Sat 07 Jun 2025 15:00:41 +0000
Manifest this update: Sat 07 Jun 2025 15:00:41 +0000
Manifest next update: Sun 08 Jun 2025 15:00:41 +0000
Files and hashes: 1: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl (hash: aEVaOUHc619dzJZovb8fVUQL/waDCX6ALsEQQMtyxQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 15:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:85:64:f1:ce:38:34:68:d4:65:66:39:43:9e:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Validity
Not Before: Jun 7 15:00:41 2025 GMT
Not After : Jun 8 15:00:41 2025 GMT
Subject: CN=e23f44b3d9dc4e4e4f84ca66347be93b71e08bab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4d:1e:ed:94:9e:4a:a6:8a:3e:87:ea:79:2c:
ca:16:ba:f9:51:3d:52:80:90:f8:94:ed:e5:ca:28:
bc:3c:eb:d0:75:26:8f:9f:cc:a5:81:e7:90:5f:a9:
a5:77:9b:3e:38:76:d3:26:b9:6b:66:9f:85:89:47:
70:ca:af:0f:fe:2c:fd:57:b2:5e:83:00:f0:f7:d3:
73:b3:4a:e5:9c:22:01:99:ed:d4:b3:ca:33:92:8f:
5e:32:d1:98:e7:22:14:61:5d:8f:b3:91:59:bb:3e:
f7:77:5a:bb:44:5a:b4:12:09:96:0e:98:47:02:68:
df:1d:52:24:c5:5c:ac:9f:11:ab:02:f2:26:20:31:
60:01:e7:cf:09:fb:11:18:d1:49:4a:a1:6d:78:21:
2b:b1:52:dc:bd:53:1c:55:3a:18:43:aa:a4:ad:61:
cb:53:94:0a:d5:a8:88:c1:c7:42:69:cc:c3:88:40:
00:bb:b7:50:d7:2e:bf:e7:66:ce:8a:b2:30:b0:71:
f3:64:96:73:5d:4c:da:92:df:15:4e:6f:f6:dc:a3:
37:f7:a6:5d:8c:77:b1:b6:ec:ef:56:01:27:74:2e:
74:e3:1a:94:88:65:9d:36:d2:ca:82:f0:59:13:14:
03:01:e5:a9:26:00:53:0d:76:74:d1:83:61:23:93:
cb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:3F:44:B3:D9:DC:4E:4E:4F:84:CA:66:34:7B:E9:3B:71:E0:8B:AB
X509v3 Authority Key Identifier:
keyid:D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:28:f4:35:55:28:fe:47:e0:a1:92:fe:2c:ec:39:1d:1a:62:
eb:82:b4:fe:8a:6c:18:b4:f0:54:df:16:9e:f3:33:a1:0c:ce:
95:0f:08:8f:ac:1a:ca:07:c9:b6:04:b7:f2:1b:79:b9:2c:00:
2f:64:92:11:fd:54:25:b3:2f:06:c5:df:3e:d4:62:42:11:3d:
3d:6d:d4:0e:39:ab:6a:5d:dd:b2:ce:8f:ae:ba:58:10:22:10:
30:ee:35:4b:ba:bc:7d:e3:f7:89:b4:5e:0e:84:2e:3a:87:b0:
fb:3d:36:7a:ad:6d:15:ae:48:fe:2e:71:59:81:ea:26:c4:1d:
6d:32:e1:cf:52:b1:5a:73:d3:9b:99:42:70:a3:cf:0f:a9:2c:
1d:0d:06:e5:2c:e4:1c:ed:73:55:65:e4:c3:4e:6a:2b:b6:96:
c6:66:04:4a:91:f7:35:9c:fc:44:0f:2c:2f:07:42:a2:cd:63:
27:54:b7:82:4d:2e:08:62:b3:68:8d:e6:7f:3d:99:c1:79:77:
59:ee:33:cf:1a:c3:ab:ce:c2:59:f9:ae:20:5e:12:ef:d2:ef:
a0:49:84:e9:81:83:89:ba:7f:9c:9f:6d:55:61:d7:05:4d:89:
64:5c:57:7b:61:c7:c1:2c:b5:41:a4:b6:a8:11:fa:26:35:3a:
6e:32:d0:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:27:32 2025 by rpki-client