Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
File: rDWoN7KvW2-xjKNdFguamhgiBO8.mft (raw, json)
Hash identifier: h2o5Lz9D6LokNMuYrZ5rieeYOUoErSt1rYxrE51WCkM=
Subject key identifier: 1E:A4:4A:D0:43:4C:8D:B2:19:32:84:0A:94:36:90:CC:C4:CD:0C:01
Authority key identifier: AC:35:A8:37:B2:AF:5B:6F:B1:8C:A3:5D:16:0B:9A:9A:18:22:04:EF
Certificate issuer: /CN=ac35a837b2af5b6fb18ca35d160b9a9a182204ef
Certificate serial: 01975045AFE27F6D7A328612B4C8CD09878D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
Manifest number: 1069
Signing time: Sun 08 Jun 2025 16:00:33 +0000
Manifest this update: Sun 08 Jun 2025 16:00:33 +0000
Manifest next update: Mon 09 Jun 2025 16:00:33 +0000
Files and hashes: 1: rDWoN7KvW2-xjKNdFguamhgiBO8.crl (hash: d5qF9BjHx45lVtlaUUU4CMColIhtw8/C+uV4JltUhSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 16:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:45:af:e2:7f:6d:7a:32:86:12:b4:c8:cd:09:87:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac35a837b2af5b6fb18ca35d160b9a9a182204ef
Validity
Not Before: Jun 8 16:00:33 2025 GMT
Not After : Jun 9 16:00:33 2025 GMT
Subject: CN=1ea44ad0434c8db21932840a943690ccc4cd0c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ef:0b:5c:2c:9f:83:85:b8:24:23:ed:d8:99:
44:1c:35:5e:6e:fa:32:24:aa:d2:2c:ce:5e:f6:e9:
9b:85:cf:c7:41:b7:2b:df:37:ff:a4:fe:b1:0a:f5:
35:30:c2:c8:37:c9:92:d9:1c:a5:00:23:c8:15:a8:
0d:1f:f0:b1:72:dd:34:48:2b:12:04:59:69:44:58:
db:b7:23:d8:1a:d1:b6:37:dd:04:7b:6d:42:97:4a:
a5:11:a0:bd:51:31:c9:0a:95:a6:87:a9:a3:af:60:
1b:97:df:03:a9:3d:0e:f9:13:f4:a6:19:f4:95:23:
13:eb:56:4a:68:7e:c3:0e:95:6a:2e:72:9d:20:30:
00:e1:47:2f:02:27:17:80:20:20:3c:a2:98:e4:93:
17:68:ee:88:72:59:5d:92:4a:96:e9:f1:e0:69:6e:
da:0d:8e:f4:e5:36:50:98:7d:0e:bb:fd:2d:37:9f:
df:0d:21:b3:b6:2d:44:42:89:1a:bb:24:e9:97:d3:
77:ef:67:fe:32:c1:09:a6:bd:69:12:16:3a:7a:b8:
16:81:68:34:18:cc:a0:fb:e9:45:0c:6b:13:6c:5c:
33:0c:b9:88:9b:c6:2c:d6:1b:10:24:34:67:7b:b1:
6e:6b:af:b4:65:14:e0:1d:19:65:50:e9:65:14:7b:
48:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A4:4A:D0:43:4C:8D:B2:19:32:84:0A:94:36:90:CC:C4:CD:0C:01
X509v3 Authority Key Identifier:
keyid:AC:35:A8:37:B2:AF:5B:6F:B1:8C:A3:5D:16:0B:9A:9A:18:22:04:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:57:c7:19:06:89:56:3a:3b:19:ee:67:76:94:bc:65:ac:f9:
23:ca:3c:7b:fb:7d:23:e9:85:28:54:a9:6b:6a:89:70:89:1c:
a1:29:5d:78:7a:40:0b:c2:a7:da:33:95:5e:31:35:37:79:b9:
c9:48:e5:14:11:c9:59:ba:13:41:a9:ec:07:ae:94:fe:19:45:
ba:7a:80:1f:7d:0c:d4:8e:09:f0:1d:ff:45:8e:c5:0f:50:4a:
ec:ac:58:e7:6d:57:76:c8:0f:ed:37:d9:02:af:52:23:c4:57:
9a:5f:ea:db:cc:49:70:8d:8c:31:82:66:eb:3f:20:70:c5:fc:
2e:e7:44:e7:87:3a:2d:2c:8c:cd:47:97:8c:e6:f7:84:cd:07:
2e:59:ad:11:b5:07:77:4b:f7:22:f3:8a:57:06:ea:cd:f1:9f:
6e:f0:78:1e:1d:a2:95:e8:50:71:96:37:c5:7f:d3:be:5b:56:
57:d2:64:96:86:92:02:04:9d:a2:7f:b3:30:d4:15:f7:98:db:
86:3b:75:60:ff:0d:7f:e4:a3:39:d4:ad:0c:de:03:88:b4:22:
0c:ca:4d:97:06:2f:4c:e9:10:6f:10:d0:a1:32:a0:1e:a5:2e:
21:20:73:39:12:4d:7b:a0:45:86:00:16:52:5f:2b:88:a5:36:
8d:5e:fb:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 02:40:37 2025 by rpki-client