Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft
File: l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft (raw, json)
Hash identifier: IAYmPEkJUXvy4FkPk1J8HGduFhASuEteNAnV/JFxcro=
Subject key identifier: A9:FA:99:46:5E:DA:B3:07:54:CA:88:BA:8A:F8:A7:D2:F9:99:9C:3F
Authority key identifier: 97:B6:CB:48:84:1C:E5:19:B2:83:59:CA:F1:BC:E3:40:E3:36:81:EF
Certificate issuer: /CN=97b6cb48841ce519b28359caf1bce340e33681ef
Certificate serial: 0197458B5567F70C9A541C61AE5C69C73DF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft
Manifest number: 0725
Signing time: Fri 06 Jun 2025 14:00:48 +0000
Manifest this update: Fri 06 Jun 2025 14:00:48 +0000
Manifest next update: Sat 07 Jun 2025 14:00:48 +0000
Files and hashes: 1: l7bLSIQc5Rmyg1nK8bzjQOM2ge8.crl (hash: CVm51pT4z/AD6riB8CU3FSf5B73lBHBP97Rs5JTvSiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft
rsync://rpki.ripe.net/repository/DEFAULT/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 14:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:8b:55:67:f7:0c:9a:54:1c:61:ae:5c:69:c7:3d:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97b6cb48841ce519b28359caf1bce340e33681ef
Validity
Not Before: Jun 6 14:00:48 2025 GMT
Not After : Jun 7 14:00:48 2025 GMT
Subject: CN=a9fa99465edab30754ca88ba8af8a7d2f9999c3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ad:72:52:49:29:74:bc:8d:ee:59:e2:8b:4f:
67:05:ad:19:25:46:b9:f2:8b:9a:b2:8f:ba:75:c1:
78:b7:f6:be:26:d0:f5:d4:6e:92:a7:d1:e9:39:04:
fe:bf:cb:27:e0:d5:14:a2:66:cd:84:ba:14:9c:da:
da:26:66:fa:9a:22:80:61:87:c6:15:26:e4:1f:3a:
2f:55:22:ab:75:23:ec:7f:50:12:f7:d4:84:e6:0f:
3f:fa:52:d9:01:6c:d6:38:fc:d1:f5:a5:30:da:66:
88:f7:b0:48:55:c7:9d:5b:1f:d5:e4:09:1a:9a:22:
47:74:65:0a:87:d5:40:ea:4f:d0:53:db:81:f1:d3:
f8:2c:73:01:5d:7f:4d:06:76:fc:b5:6e:89:b4:00:
50:40:da:81:fc:2c:59:6d:e8:67:2c:3b:f2:49:60:
d3:22:cb:e7:f0:16:60:6e:c7:5f:57:6a:39:a7:0e:
ab:cd:8a:41:fb:fc:0e:c6:73:1b:46:66:0a:e6:fc:
14:69:a5:04:bd:56:10:6e:76:df:7d:92:7c:6d:5f:
16:40:53:08:ad:a8:86:9f:68:1f:e5:fb:b4:31:1e:
5a:bf:84:09:f9:94:7a:f8:01:44:ff:6f:dc:95:9b:
9b:a0:d1:8c:ef:d9:05:61:e5:ed:a9:4c:6d:2a:8d:
da:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:FA:99:46:5E:DA:B3:07:54:CA:88:BA:8A:F8:A7:D2:F9:99:9C:3F
X509v3 Authority Key Identifier:
keyid:97:B6:CB:48:84:1C:E5:19:B2:83:59:CA:F1:BC:E3:40:E3:36:81:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bdd92e-3b11-416f-ae93-46ea656bf389/1/l7bLSIQc5Rmyg1nK8bzjQOM2ge8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:68:44:76:4d:5b:cd:f1:e6:c6:f8:5b:d1:77:88:c5:aa:18:
a3:46:d6:84:9a:db:d1:c6:a0:69:fa:d3:c1:89:b0:33:1f:12:
97:81:fb:c5:b1:4a:d6:d6:18:37:6e:88:89:07:e8:c2:64:bb:
1c:18:92:4f:29:25:d7:2a:07:a2:de:13:d5:01:c7:0b:a9:16:
c5:a3:b0:11:a2:0b:e3:38:be:3e:42:b8:cc:97:2d:bd:e9:21:
d5:ac:97:16:83:7c:4b:2f:ac:1d:5a:16:41:4b:81:b8:55:af:
96:ad:35:79:b3:4f:c3:99:6b:11:5e:85:59:35:37:c6:6c:92:
52:11:f4:43:12:90:10:bc:cf:2c:45:18:ba:fc:82:a2:0c:cd:
1d:f8:a2:70:de:32:53:3c:13:5b:9c:2f:48:89:db:f1:d2:b4:
aa:6c:5f:1c:2e:30:55:92:ec:eb:33:b8:3e:b7:ee:d4:fe:b6:
d8:be:11:82:ea:55:d5:30:b7:0b:2d:fd:21:1c:a9:b5:a9:99:
d4:c9:ec:0a:30:fa:5d:9a:db:0f:c1:c9:6d:a2:12:20:80:28:
b8:95:b8:d0:a9:56:bf:8d:04:18:98:fd:bb:bb:2d:f2:a4:21:
a3:ef:08:d3:58:4c:ee:58:2a:30:b2:d0:df:70:07:bd:91:dd:
b0:66:5b:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:29:31 2025 by rpki-client