Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
File: bSsrfHiimiI-pZxnydqj3H7bHnQ.mft (raw, json)
Hash identifier: cbJBjc+KQHMwTj31RVWx3CeFb/TuLW/fkg08QI6YP5I=
Subject key identifier: 62:CF:36:F0:94:68:24:E3:A2:85:C5:0D:C2:60:D4:B7:AF:CF:73:6A
Authority key identifier: 6D:2B:2B:7C:78:A2:9A:22:3E:A5:9C:67:C9:DA:A3:DC:7E:DB:1E:74
Certificate issuer: /CN=6d2b2b7c78a29a223ea59c67c9daa3dc7edb1e74
Certificate serial: 0197CA954DD10C1F043FBBEC09B368DF8D0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
Manifest number: 0189
Signing time: Wed 02 Jul 2025 10:01:11 +0000
Manifest this update: Wed 02 Jul 2025 10:01:11 +0000
Manifest next update: Thu 03 Jul 2025 10:01:11 +0000
Files and hashes: 1: bSsrfHiimiI-pZxnydqj3H7bHnQ.crl (hash: cb4IcqdcZRH8qPSgtfMiNFI9pqsa641Cl2/mPKYmpiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 10:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:95:4d:d1:0c:1f:04:3f:bb:ec:09:b3:68:df:8d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2b2b7c78a29a223ea59c67c9daa3dc7edb1e74
Validity
Not Before: Jul 2 10:01:11 2025 GMT
Not After : Jul 3 10:01:11 2025 GMT
Subject: CN=62cf36f0946824e3a285c50dc260d4b7afcf736a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cc:a7:39:b3:da:ae:e9:a5:ab:f9:5a:98:10:
98:41:0e:42:ca:f2:51:2e:25:68:35:df:78:36:33:
1c:7a:b5:af:73:9f:31:76:47:ae:b3:a7:01:6a:48:
4b:cc:03:f5:db:c6:df:1d:fb:6f:1b:49:d0:51:8e:
52:88:e6:26:a8:41:57:57:4a:d9:ec:0b:86:a2:48:
41:52:18:c5:53:29:73:57:31:58:e5:32:f5:fd:2b:
e6:f4:ff:3a:e6:ce:51:76:5a:24:9a:04:1a:e1:a0:
82:7d:c9:74:03:9f:bf:2a:88:04:7c:6e:c6:8b:d0:
b5:c6:2f:79:9b:3d:c1:2f:ec:4b:ed:46:a1:bc:bb:
e3:17:db:f7:4f:7c:ff:f1:ef:98:a7:ee:20:a2:dd:
af:35:c2:2c:ae:ce:50:19:c9:64:7e:0b:b7:23:e6:
74:97:eb:50:9d:64:d0:bf:1d:07:b6:9a:1b:1e:74:
d6:38:43:b9:d1:53:ec:6b:ce:a9:83:e3:52:71:af:
37:51:ef:81:34:41:51:51:69:88:df:e7:33:7b:2b:
ae:71:46:67:99:c3:70:07:58:3a:30:6a:e6:8e:43:
f2:a0:2c:b5:96:09:49:bf:4b:84:7e:b6:49:f3:42:
c2:86:96:3e:fb:be:82:e5:bd:30:a0:f5:b2:ad:45:
30:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:CF:36:F0:94:68:24:E3:A2:85:C5:0D:C2:60:D4:B7:AF:CF:73:6A
X509v3 Authority Key Identifier:
keyid:6D:2B:2B:7C:78:A2:9A:22:3E:A5:9C:67:C9:DA:A3:DC:7E:DB:1E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:81:5a:72:87:24:43:84:be:ef:e7:a9:81:56:5b:42:11:47:
d0:1b:8c:24:53:73:0f:e4:3d:3a:4f:e2:fc:08:82:b1:69:1c:
44:6f:a6:75:c1:03:cf:7f:de:13:ba:d4:06:eb:5b:11:ee:b7:
e7:81:80:35:73:dd:1a:3c:23:0d:b3:c1:34:87:f9:7b:e3:b2:
5f:f9:b5:4b:44:ac:a2:01:2d:cc:49:e3:76:66:ee:8d:4e:4a:
57:51:2b:c0:ae:7f:6f:93:ba:a3:c5:6f:38:ec:44:b0:da:be:
42:20:25:dd:c0:06:83:eb:65:62:45:22:53:fd:6f:82:88:3c:
8b:8e:fd:09:a4:bd:64:e6:c3:ff:4d:53:0b:95:76:ec:a6:84:
62:52:7a:7a:5f:f9:ab:e5:16:9a:7a:d8:95:81:40:90:bd:58:
2b:47:23:06:3c:67:18:f5:6b:79:11:22:45:16:f0:0c:76:2a:
20:bf:d7:3e:4c:d1:b0:ad:17:33:37:ea:3d:84:98:ca:48:e9:
21:8d:72:b7:cd:2b:6b:63:e2:c8:3a:9c:e1:a1:ac:78:69:fb:
3c:3c:49:0e:df:79:2c:2f:e3:c5:37:3a:63:81:80:f8:64:d9:
c3:eb:f5:e7:e7:93:31:62:cc:c1:c5:42:55:7f:1b:4a:f1:f5:
06:e9:47:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 19:46:43 2025 by rpki-client