Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
File: r5aNFt0rQdNStf0zxJs-xP2tQlg.mft (raw, json)
Hash identifier: 6vrR6lp4J/r8dacci7tl9L9sl7De3uMB2eOLvyAizuQ=
Subject key identifier: 7E:6D:6A:AF:DC:4B:D4:BC:DB:8C:1E:C5:57:06:57:C3:03:E9:03:84
Authority key identifier: AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
Certificate issuer: /CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Certificate serial: 019747E79B6757909D6EF15955A06D5C4E86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
Manifest number: 0E8C
Signing time: Sat 07 Jun 2025 01:00:50 +0000
Manifest this update: Sat 07 Jun 2025 01:00:50 +0000
Manifest next update: Sun 08 Jun 2025 01:00:50 +0000
Files and hashes: 1: r5aNFt0rQdNStf0zxJs-xP2tQlg.crl (hash: 9ujSAkyxx9FmZDymaaIq2drcPJGG58tUJCWKKGxDcSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:9b:67:57:90:9d:6e:f1:59:55:a0:6d:5c:4e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Validity
Not Before: Jun 7 01:00:50 2025 GMT
Not After : Jun 8 01:00:50 2025 GMT
Subject: CN=7e6d6aafdc4bd4bcdb8c1ec5570657c303e90384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ca:85:ae:74:3f:9c:a0:1c:e2:39:41:36:f6:
af:9a:d3:58:ae:13:3b:13:a7:a9:8e:83:16:f7:59:
07:ee:fd:f4:c5:34:be:fd:73:d0:ae:78:07:3c:fd:
bd:6e:af:a6:08:2f:21:57:f1:5a:dc:1e:88:94:fe:
32:37:a3:e3:42:c7:c7:f4:40:74:a9:9b:dc:ed:89:
db:3c:d2:9e:7f:af:c5:bb:a6:fc:bd:8d:dd:2c:a5:
64:97:49:4d:0a:1c:4a:50:15:5d:c9:e5:32:b2:b1:
49:80:48:6d:6f:90:a8:97:52:59:80:75:94:fc:24:
cc:ac:a2:ae:c5:a9:07:9c:a1:a3:a6:03:e1:cf:59:
01:fa:47:02:4d:98:df:9a:45:d1:ad:8a:f9:75:40:
d7:a8:24:cd:8e:86:3a:25:35:e3:13:9f:92:69:e2:
47:b8:7b:74:83:3b:d5:8e:07:b2:a4:b3:2b:90:45:
b5:1f:2e:34:a7:07:4c:55:65:34:70:19:83:75:2b:
25:a5:d3:39:74:eb:af:ab:25:7b:10:e6:62:3a:b5:
e9:1d:ff:a2:8b:cd:47:e6:54:d8:4b:27:78:aa:25:
76:97:74:fe:68:5c:7c:1e:44:bd:5d:b6:6a:7c:23:
43:79:6e:06:b9:3e:b1:9f:23:dd:24:d6:47:e9:a4:
3e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6D:6A:AF:DC:4B:D4:BC:DB:8C:1E:C5:57:06:57:C3:03:E9:03:84
X509v3 Authority Key Identifier:
keyid:AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:83:0d:90:59:d2:b1:34:67:5f:57:1f:81:24:51:ac:a1:06:
00:8e:4d:54:14:b1:70:b1:9d:67:33:76:dc:a5:11:98:90:d2:
98:e7:b9:d9:21:f7:40:c1:30:23:2e:91:7e:03:88:bb:a8:ba:
ea:8d:ac:1c:d5:ad:25:1d:bf:e6:75:c8:e2:b7:72:db:c3:0c:
0a:e6:65:3f:9e:f1:54:ff:cc:51:9c:f9:12:61:df:6c:ce:21:
f8:69:c5:76:21:76:10:c5:56:44:d0:2c:99:46:6c:e8:0c:e4:
f5:ac:f8:17:a3:72:be:00:bc:03:81:70:63:67:9f:d4:74:72:
ae:f8:ac:67:99:5d:10:14:4c:49:86:58:0d:7c:c9:55:7d:65:
66:3a:91:0e:54:87:d2:d3:c5:02:9b:74:1b:f6:83:a7:26:08:
e8:53:f1:59:57:50:b7:64:05:13:4f:bd:ed:03:40:84:0c:ca:
74:bf:ee:f8:30:d2:7d:a0:eb:6a:16:b5:d8:51:c8:f0:ad:42:
63:e3:7d:5b:a4:1b:5e:ee:16:3d:74:3b:dd:92:d7:7b:b9:f9:
9d:7e:23:a3:9d:5c:e5:65:40:3e:44:7c:48:e4:ec:4a:62:9e:
02:17:bc:db:60:66:bb:c7:c3:73:70:32:06:6c:ab:ba:12:45:
1d:03:41:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:04:28 2025 by rpki-client