Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
File: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft (raw, json)
Hash identifier: CvIy6ZWga0vhFvuegTHhz6FPk2BCSC+LA+gCfLYGWfo=
Subject key identifier: 8E:F3:2C:C5:B7:02:16:AE:4D:DB:B0:70:E6:A5:6E:83:A6:E8:5F:0F
Authority key identifier: D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC
Certificate issuer: /CN=d271e4ed8425383f6c81c21a4894a43763675efc
Certificate serial: 0197518F93A0BD7C86C1A10B625C5DBCECA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
Manifest number: 88
Signing time: Sun 08 Jun 2025 22:00:53 +0000
Manifest this update: Sun 08 Jun 2025 22:00:53 +0000
Manifest next update: Mon 09 Jun 2025 22:00:53 +0000
Files and hashes: 1: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl (hash: 1HD7B74HkX2bvLoDHnNWBMw1ApfEHIhvGKeDvzVB27o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:8f:93:a0:bd:7c:86:c1:a1:0b:62:5c:5d:bc:ec:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d271e4ed8425383f6c81c21a4894a43763675efc
Validity
Not Before: Jun 8 22:00:53 2025 GMT
Not After : Jun 9 22:00:53 2025 GMT
Subject: CN=8ef32cc5b70216ae4ddbb070e6a56e83a6e85f0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a5:33:09:f2:55:64:60:58:45:a5:ca:42:3f:
e1:42:8b:79:fb:6d:e9:7e:db:82:e7:2b:0b:23:33:
39:ab:47:d3:99:7b:56:76:90:68:b5:a1:36:3c:1d:
73:04:63:9e:45:9d:ba:16:38:e1:41:cd:6c:01:7f:
b4:54:2b:ac:88:79:76:e9:8b:b1:4a:1a:2c:b0:e6:
e1:6c:58:de:8d:c6:3b:7f:87:f7:b2:3c:cf:da:c4:
eb:04:22:cf:04:57:1f:d4:7b:c1:b6:f8:ad:9f:e5:
84:da:d5:45:02:6e:12:35:16:09:21:f9:96:22:a7:
10:b5:a7:94:54:62:bd:af:b6:77:e1:29:f7:24:72:
72:3a:ef:74:d7:b3:e2:66:03:cc:1a:4d:18:b0:d1:
7c:a1:a6:77:10:b4:3c:af:b9:2a:8b:fd:bb:8d:8b:
a8:ed:13:96:c2:1e:95:fb:60:da:99:cd:09:b7:8f:
83:6b:c2:65:2c:0d:ce:07:fe:01:12:dd:6b:ce:1c:
c0:a8:c8:8f:33:95:54:56:c7:0d:e5:20:d0:d0:a3:
47:46:91:27:0d:27:a9:56:ad:bc:5e:8d:7a:a6:d6:
9a:1b:7e:d1:af:23:56:89:93:29:a7:ae:85:bf:10:
d2:bd:e1:11:70:32:6d:f0:b0:5a:24:6a:eb:ba:5e:
80:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F3:2C:C5:B7:02:16:AE:4D:DB:B0:70:E6:A5:6E:83:A6:E8:5F:0F
X509v3 Authority Key Identifier:
keyid:D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:20:62:75:5e:03:60:c7:6b:30:74:bb:e9:1f:4d:eb:d3:19:
b4:a3:7d:07:f1:17:d0:66:d7:88:02:02:ea:08:e7:24:80:ba:
2b:1a:9b:43:99:b3:48:43:e6:d5:9f:1f:fd:55:9b:ef:36:fa:
c5:ec:53:06:7a:74:9b:52:a4:f2:94:2a:3f:16:62:94:be:db:
7e:37:1f:36:42:0e:f5:d6:5d:aa:a3:ff:fc:0e:e1:da:12:bc:
65:8d:72:0c:5f:97:59:f6:74:05:83:a4:9e:30:c5:8e:40:cb:
18:50:9e:59:00:e0:6e:da:03:ed:86:e1:39:78:9c:75:e9:e8:
66:34:cf:6c:df:0b:b6:93:44:18:eb:b6:fc:62:1c:81:63:de:
2d:8a:41:bb:b2:af:aa:7a:a7:86:b3:1c:0a:9f:87:53:7f:74:
6d:75:4d:76:f1:97:aa:50:e8:55:51:a4:a5:92:c3:7d:fe:98:
28:92:6b:16:5d:1b:49:63:0f:bd:81:d6:b8:b2:a6:29:09:ed:
86:07:47:24:4a:a0:2e:0b:8f:79:11:da:1f:b9:a6:5c:70:80:
7a:49:b4:41:52:0a:d1:e2:0a:00:ae:d3:72:96:60:e0:61:d3:
b7:87:be:7b:8a:c6:8e:36:f0:83:e5:bc:e4:b6:63:15:b6:1f:
af:de:ea:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:56:56 2025 by rpki-client