Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
File: 1K5pV43Ol3ozqindV8oZD6aHd_o.mft (raw, json)
Hash identifier: xecK3voR+2oMUgT8BG+L0sWhonwGXnPWRKoQkoy1vmo=
Subject key identifier: 03:A3:E7:90:87:59:1A:C9:AD:CE:3D:C2:79:94:40:85:B9:B3:A5:BB
Authority key identifier: D4:AE:69:57:8D:CE:97:7A:33:AA:29:DD:57:CA:19:0F:A6:87:77:FA
Certificate issuer: /CN=d4ae69578dce977a33aa29dd57ca190fa68777fa
Certificate serial: 01974A7B541388D3B92675AA192CD9B6F8AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
Manifest number: 0BF3
Signing time: Sat 07 Jun 2025 13:01:25 +0000
Manifest this update: Sat 07 Jun 2025 13:01:25 +0000
Manifest next update: Sun 08 Jun 2025 13:01:25 +0000
Files and hashes: 1: 1K5pV43Ol3ozqindV8oZD6aHd_o.crl (hash: hk1qcUcH55Bt/FMqHTZrStj9ThfskC7b+wCVlkWC4Xw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:54:13:88:d3:b9:26:75:aa:19:2c:d9:b6:f8:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ae69578dce977a33aa29dd57ca190fa68777fa
Validity
Not Before: Jun 7 13:01:25 2025 GMT
Not After : Jun 8 13:01:25 2025 GMT
Subject: CN=03a3e79087591ac9adce3dc279944085b9b3a5bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:17:c3:09:fa:61:a8:9d:a3:38:7e:6f:54:4c:
c3:00:ee:4d:e0:de:e5:38:63:b6:41:dc:1b:55:8c:
b0:e9:bf:12:c6:29:4b:f4:ca:c2:c0:89:5b:fa:1b:
43:9c:f8:d2:9f:93:0d:00:92:4a:44:57:5e:40:33:
54:56:18:ec:4b:04:c6:0f:8f:52:cf:fa:fb:da:24:
58:0e:f6:b0:58:a7:5c:5c:62:ea:f2:c9:9f:6c:04:
49:a3:d3:b0:4b:ed:5f:92:7e:12:17:ed:25:e0:b2:
e1:9f:28:0a:dd:3d:4a:8f:0a:69:63:ec:84:4a:a5:
09:05:8f:97:df:e6:0b:a7:22:ad:51:0e:42:32:ba:
7c:1d:c1:73:90:1b:d5:80:15:8d:5d:2c:9e:c0:2f:
81:9f:f7:36:42:ac:16:77:c8:eb:46:1e:ee:dd:06:
7c:33:c4:37:9d:16:cc:ba:5d:b2:5e:23:f2:43:fc:
ed:2c:fd:45:74:4a:20:08:17:45:13:7f:75:4d:52:
b9:5d:22:18:8b:ff:e3:d7:51:27:fb:6f:32:42:ba:
16:9c:77:85:d6:1d:0c:21:ba:a8:a7:c7:81:81:d0:
9f:5d:c6:a9:e8:e8:bd:9f:0a:f8:81:98:d4:e1:4d:
4e:95:9c:4d:0b:40:b6:cd:e5:10:ad:d3:0c:dc:8a:
41:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A3:E7:90:87:59:1A:C9:AD:CE:3D:C2:79:94:40:85:B9:B3:A5:BB
X509v3 Authority Key Identifier:
keyid:D4:AE:69:57:8D:CE:97:7A:33:AA:29:DD:57:CA:19:0F:A6:87:77:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1K5pV43Ol3ozqindV8oZD6aHd_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bd8900-ec95-475b-89b7-b4f2977d196b/1/1K5pV43Ol3ozqindV8oZD6aHd_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:3f:56:11:c5:8f:89:9a:7f:fd:16:41:8e:48:ee:10:a9:b8:
7a:ef:99:5c:10:be:39:a7:3e:2c:cb:90:33:eb:38:1a:f9:e3:
12:8b:7c:54:64:8e:ff:cf:d9:bf:7a:d1:ab:a2:8a:36:04:30:
88:72:e2:f6:15:48:59:49:48:d1:1c:b6:e4:3c:28:85:af:77:
75:42:62:7e:ea:e9:26:50:93:5f:49:9e:7c:33:6d:3b:40:c3:
a4:ae:d3:71:fc:87:65:e8:da:6c:a2:41:31:47:48:d6:b1:e2:
02:e7:82:34:14:cb:92:ff:7b:8c:c2:86:61:40:42:71:04:b3:
4f:ba:5a:ba:29:0a:0c:f2:bf:a8:50:30:4b:71:f8:3d:73:0b:
5a:e6:47:a3:32:f6:e3:75:8b:b5:24:19:0c:f0:bc:f7:29:f8:
bc:6a:8d:38:bf:01:a4:b6:b3:46:57:2b:3e:21:ac:bc:c1:9a:
da:c3:fa:4e:7e:35:6d:d5:6b:18:8c:bc:f1:82:61:ed:fd:72:
7e:f4:46:4f:d9:98:ba:4e:76:8a:b5:7f:ad:66:d3:43:c7:ab:
2f:e6:78:73:8b:07:db:17:ec:4d:8d:9c:c0:c5:cc:d6:87:2d:
55:b2:db:94:c5:5e:90:a7:1b:89:f3:58:49:ad:05:e6:4b:59:
81:d0:d4:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 17:44:33 2025 by rpki-client