Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File: iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier: +ns0+RHaD9GKiHv+pRm14KDyGEjnevAhluHxymKW54E=
Subject key identifier: AF:15:93:9A:0F:1B:B9:A3:1D:5C:4B:1D:89:61:32:98:74:90:B2:56
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer: /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial: 0197481E314203FD0019A27854F3C6C6F2D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number: 043D
Signing time: Sat 07 Jun 2025 02:00:27 +0000
Manifest this update: Sat 07 Jun 2025 02:00:27 +0000
Manifest next update: Sun 08 Jun 2025 02:00:27 +0000
Files and hashes: 1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: kG2Vna87JW9Hod6PXlHTzLIBRynW2OfZN2wSZ++R+Rc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:31:42:03:fd:00:19:a2:78:54:f3:c6:c6:f2:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Validity
Not Before: Jun 7 02:00:27 2025 GMT
Not After : Jun 8 02:00:27 2025 GMT
Subject: CN=af15939a0f1bb9a31d5c4b1d896132987490b256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b7:bb:87:bf:0c:81:2e:ea:35:05:be:6e:4d:
b8:81:b8:43:14:e8:fb:ca:54:1d:30:ef:fc:83:3b:
99:ed:b1:6d:b6:66:d1:73:d2:ec:11:9c:d6:bd:f8:
a9:a1:1d:a4:9e:66:59:f2:26:83:0c:64:41:36:10:
f6:67:41:03:6d:2f:1e:ba:a9:4d:73:39:51:f3:dd:
ee:af:5d:6f:14:ed:98:f3:8d:9b:94:35:1b:d2:6b:
b8:e0:cd:92:bf:90:2f:e3:b4:7b:e2:54:1a:87:22:
8d:35:0a:8d:8c:65:fb:05:6c:d0:70:10:0e:1c:d6:
37:6a:f1:d4:84:91:80:99:0b:27:9d:25:25:5d:4f:
3e:15:0c:5f:7b:8d:c8:77:2f:a1:be:c3:97:48:38:
8d:f0:16:f6:51:3b:1e:09:8e:a6:26:3a:dc:c4:8a:
86:c0:62:ab:23:b3:45:12:48:52:44:3d:fc:2d:10:
b8:a3:60:53:f2:ae:40:26:7f:78:f6:24:a5:1c:af:
1e:1d:41:62:48:6e:99:a6:d1:39:b5:f4:fd:64:c7:
fc:c4:00:33:44:aa:d7:03:c5:43:94:0a:3e:3a:41:
8c:2f:16:5a:4a:c6:58:2f:b3:87:a0:44:8c:50:d6:
e8:e9:9f:c6:ec:63:80:56:e9:21:c2:45:65:cc:2e:
37:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:15:93:9A:0F:1B:B9:A3:1D:5C:4B:1D:89:61:32:98:74:90:B2:56
X509v3 Authority Key Identifier:
keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:3b:7f:ff:c1:66:1f:ad:73:4d:f6:c3:e9:0b:88:cf:0c:39:
e3:ac:55:23:25:b6:a9:39:72:56:e1:89:2f:bc:98:6a:3a:e5:
3d:9d:99:de:44:8f:0f:99:35:9d:b7:ac:07:13:52:de:55:c4:
a4:1a:23:da:b6:70:7f:e2:83:df:eb:16:8d:97:9d:6d:52:3f:
d3:9e:0b:e0:77:ed:1c:fd:12:51:d9:80:f0:55:d9:57:12:e1:
f6:f4:69:7a:23:67:a4:19:ee:dc:a0:cb:f9:6b:a5:c8:83:26:
d2:53:4f:72:2d:28:0d:d7:ae:7a:4c:d3:ac:b5:be:ad:f5:94:
f4:23:83:0c:ba:78:e7:9c:c3:6a:87:05:f7:d2:88:cc:4b:cf:
6c:e4:b0:5e:5c:bf:da:fa:e6:5f:fc:ad:d6:8c:93:9c:28:05:
4b:99:0f:e9:42:2b:35:60:b4:7b:3a:b1:02:7f:50:c3:50:9b:
e4:59:77:e3:f2:fc:88:ef:05:ee:6d:97:7e:39:8d:99:b0:bf:
53:76:92:ad:8b:cd:4e:04:29:62:11:5e:23:9b:80:93:29:98:
f9:d1:fd:2b:53:0e:6d:bf:9e:78:7b:66:66:8a:34:00:27:13:
9a:04:77:91:bf:38:51:05:b1:6a:b0:cf:89:fc:ee:1a:ba:35:
d6:86:e7:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:14:44 2025 by rpki-client