Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.mft
File: bDg245a8UGRDYGuf1zN6kg5x3tE.mft (raw, json)
Hash identifier: t+coaERS708OcWjVbCEloDCrZAL9gwcfOTXSJXD03y8=
Subject key identifier: 90:FA:2D:6D:CE:93:5E:DA:E7:81:6E:B1:FE:00:BC:C8:3F:A6:17:AD
Authority key identifier: 6C:38:36:E3:96:BC:50:64:43:60:6B:9F:D7:33:7A:92:0E:71:DE:D1
Certificate issuer: /CN=6c3836e396bc506443606b9fd7337a920e71ded1
Certificate serial: 01974B1F5A9E55C9D75A6CB1E53DF7A3DF62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bDg245a8UGRDYGuf1zN6kg5x3tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.mft
Manifest number: 13FF
Signing time: Sat 07 Jun 2025 16:00:35 +0000
Manifest this update: Sat 07 Jun 2025 16:00:35 +0000
Manifest next update: Sun 08 Jun 2025 16:00:35 +0000
Files and hashes: 1: bDg245a8UGRDYGuf1zN6kg5x3tE.crl (hash: 3rSNaRSFnoC3RFDLexgwMLkIjkZPEbjsD+mIUHSHwxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bDg245a8UGRDYGuf1zN6kg5x3tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:5a:9e:55:c9:d7:5a:6c:b1:e5:3d:f7:a3:df:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c3836e396bc506443606b9fd7337a920e71ded1
Validity
Not Before: Jun 7 16:00:35 2025 GMT
Not After : Jun 8 16:00:35 2025 GMT
Subject: CN=90fa2d6dce935edae7816eb1fe00bcc83fa617ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:c3:0b:e0:71:79:3a:52:ef:64:2c:93:1e:fe:
a5:82:8b:63:48:97:ab:80:a1:ef:a1:7e:ec:b5:39:
28:36:dd:e7:1a:7c:4f:fd:5a:c4:53:af:ef:40:dc:
3a:24:a6:a4:36:3d:3c:5f:29:2d:a0:46:19:da:b3:
86:a0:a3:76:15:fc:71:22:f4:a3:ad:6a:30:59:1e:
01:0f:25:2d:99:a5:fc:f5:bc:7a:22:ed:3b:87:9f:
61:bb:42:2c:85:2e:81:43:e5:3e:d0:71:32:d9:e6:
b4:b9:b2:9d:64:2f:bf:04:30:a6:1f:99:98:cc:37:
7b:97:1b:78:fe:db:e6:aa:c4:ca:c7:aa:42:a3:fc:
ab:2e:45:ad:48:9d:9d:88:71:45:a9:c7:97:06:52:
c3:23:d4:0d:03:4d:5a:9c:84:61:97:6e:1a:79:34:
b2:d6:ad:98:af:b8:2e:2d:6e:2e:6a:da:ec:75:26:
75:56:49:b0:1e:46:d7:48:3e:ac:6c:35:50:cc:52:
d1:0d:61:69:69:8a:28:05:19:8e:56:5f:50:83:83:
d1:80:a1:b0:02:06:dc:e5:b3:34:18:c3:6f:ae:29:
7e:1e:13:06:af:31:95:b2:9f:c4:72:10:52:fa:16:
cd:b0:a1:c2:67:6e:e0:71:36:0f:28:d7:7a:20:ce:
0b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:FA:2D:6D:CE:93:5E:DA:E7:81:6E:B1:FE:00:BC:C8:3F:A6:17:AD
X509v3 Authority Key Identifier:
keyid:6C:38:36:E3:96:BC:50:64:43:60:6B:9F:D7:33:7A:92:0E:71:DE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bDg245a8UGRDYGuf1zN6kg5x3tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/f3994e-0b10-4383-b34c-eb6b13c5e268/1/bDg245a8UGRDYGuf1zN6kg5x3tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:85:bb:a1:b9:e8:21:cd:f4:d1:e7:1c:18:08:06:bb:55:f8:
b9:13:78:37:6e:3b:4b:f1:61:75:9c:1e:e1:f3:1e:f3:12:19:
7f:08:ab:06:d2:85:8c:7d:06:a5:77:f5:0a:50:9a:c4:90:22:
ec:9e:17:bb:ef:96:aa:0d:c3:1d:05:d4:af:c7:a1:4f:1c:2e:
a3:de:ae:96:8c:a4:d9:72:50:57:25:25:62:63:cd:9c:12:31:
91:0e:32:38:35:4e:fe:35:3c:16:6f:24:ca:bd:13:14:8f:60:
09:99:35:54:1c:84:f3:5c:48:5b:16:bd:7e:49:86:4c:24:9c:
e4:ed:95:b2:9d:10:1e:00:fd:59:d3:61:b6:4b:69:92:bb:2e:
7d:16:ac:ec:73:8a:cc:e4:aa:bb:db:96:05:dd:45:66:41:f2:
ff:65:4c:5e:d8:a0:07:bb:88:7e:a5:0c:55:5d:43:a1:9a:06:
c7:41:c9:dc:87:8a:b2:08:5e:2c:92:38:0a:6d:24:66:18:58:
07:08:e2:82:77:07:28:e1:5c:1d:d8:5e:9d:76:93:3c:10:93:
66:ca:14:36:a3:0a:59:22:2a:4b:ae:a3:2c:e0:ca:29:de:d8:
47:43:e6:8b:ea:e3:72:82:32:0a:6b:0b:ec:b9:ca:54:d0:05:
0c:4b:75:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:58:31 2025 by rpki-client