Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
File: ofM7gYxgo6zGnzmgsuDuqrttk-A.mft (raw, json)
Hash identifier: UknK9XC2zCa2kNSPxXKwzTKMHgZ7RGs4EYZ1LPY52KA=
Subject key identifier: C8:0D:43:A5:28:03:3D:18:7C:0A:92:49:55:E4:64:9F:10:34:31:68
Authority key identifier: A1:F3:3B:81:8C:60:A3:AC:C6:9F:39:A0:B2:E0:EE:AA:BB:6D:93:E0
Certificate issuer: /CN=a1f33b818c60a3acc69f39a0b2e0eeaabb6d93e0
Certificate serial: 01974FA0BC2AA7A4BC8B1A3FDC9566366D80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
Manifest number: 11C6
Signing time: Sun 08 Jun 2025 13:00:23 +0000
Manifest this update: Sun 08 Jun 2025 13:00:23 +0000
Manifest next update: Mon 09 Jun 2025 13:00:23 +0000
Files and hashes: 1: ofM7gYxgo6zGnzmgsuDuqrttk-A.crl (hash: ntDLLk1X8EGQpxFdk4lb+2kYYGsDkW53DzwvX0fFTHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 13:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:a0:bc:2a:a7:a4:bc:8b:1a:3f:dc:95:66:36:6d:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1f33b818c60a3acc69f39a0b2e0eeaabb6d93e0
Validity
Not Before: Jun 8 13:00:23 2025 GMT
Not After : Jun 9 13:00:23 2025 GMT
Subject: CN=c80d43a528033d187c0a924955e4649f10343168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9c:14:7b:ee:47:7d:07:d8:44:fa:62:87:b8:
07:e0:61:f8:69:46:5e:54:be:0d:b0:37:7e:d9:72:
82:97:68:b0:6a:d2:84:5e:dc:c6:a9:82:aa:61:c6:
86:c2:fb:05:f6:10:d7:88:b9:8c:a0:32:7e:33:95:
75:7b:62:6f:f6:74:5b:1a:8d:a3:23:4d:ba:a8:42:
61:a0:a1:1f:47:39:6e:81:98:75:89:d6:33:23:ea:
e0:7d:5d:f1:33:07:29:43:b7:20:29:bc:52:b5:01:
f5:cc:1c:31:9d:b0:b0:6e:3f:48:85:5b:a5:03:92:
0a:7b:21:b7:27:34:68:93:70:d8:ee:f5:ef:40:66:
d8:86:19:d2:09:cf:e7:cd:fb:50:bb:fb:a1:ce:5b:
0d:1e:f3:c5:25:e3:47:5e:47:cd:b9:36:84:3a:b6:
07:83:9e:85:a8:ba:c7:cb:bc:60:ed:bb:d9:f5:12:
87:57:5e:3a:bd:c2:a5:b1:81:75:ff:06:e9:ab:38:
2e:24:69:83:d8:e4:fc:11:12:ad:78:6c:1c:1c:ca:
85:70:5c:22:00:73:bc:2c:cf:55:14:3d:87:d9:44:
41:5f:d7:96:f4:3f:6c:f1:16:cb:f9:d9:ca:00:b2:
ce:c4:98:5a:08:3f:54:b3:61:d1:f9:5a:bf:55:78:
10:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:0D:43:A5:28:03:3D:18:7C:0A:92:49:55:E4:64:9F:10:34:31:68
X509v3 Authority Key Identifier:
keyid:A1:F3:3B:81:8C:60:A3:AC:C6:9F:39:A0:B2:E0:EE:AA:BB:6D:93:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:ac:67:de:1d:6b:bb:ea:8b:d3:37:b1:93:35:90:e9:62:19:
1b:bd:f0:e8:ed:1b:bc:20:c5:ae:c3:24:f1:f9:02:0b:2b:b7:
59:30:47:b3:2c:9b:76:12:9e:6f:ff:b6:a7:2d:50:d6:99:6e:
f2:c3:0d:80:3e:4c:06:c2:70:3f:cd:03:2e:a4:1b:75:e4:02:
ff:e6:1b:a7:a6:33:45:1a:cd:7a:56:a5:dc:5f:9d:64:da:a3:
6b:08:64:d2:00:0e:f5:1b:59:0f:4f:b5:b9:d9:14:cc:85:50:
75:26:b4:af:5c:99:63:ff:49:6d:2d:45:71:39:6f:13:8a:20:
0b:4d:5e:ee:17:da:f4:64:e3:db:5c:89:55:83:fa:0e:df:bc:
67:4a:1a:21:79:c2:1c:c3:98:f0:a4:ca:18:68:d0:ad:37:69:
7d:3e:34:61:fb:1e:c9:58:87:f7:af:b5:0e:89:87:34:11:d0:
a2:a5:66:e3:25:a5:8b:b0:7a:ce:f0:ff:c0:8d:e6:9f:7d:65:
86:3c:6d:31:c5:a1:84:6e:55:59:24:6b:10:74:35:c6:8b:57:
3e:7b:4a:d8:77:b6:19:f8:98:66:4f:e1:8b:5c:c0:e8:3c:59:
bd:0a:38:c0:c1:96:98:cd:cb:30:3a:c5:b4:bf:16:1a:ad:98:
76:a8:60:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:29:40 2025 by rpki-client