Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
File: gSdW6ySj41K9bonR9aoISIlhpnQ.mft (raw, json)
Hash identifier: dRhiKFqXJ7AwzpnlNW6SWOAJzuMljBlGGsuSyOOfoxk=
Subject key identifier: 33:26:FF:9C:D5:D9:FB:0C:43:0B:2E:B5:E9:6E:15:1F:CC:2F:FB:A6
Authority key identifier: 81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
Certificate issuer: /CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Certificate serial: 0197488CAF1D8BCEB7C9172B0F9F012EB6FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
Manifest number: 0893
Signing time: Sat 07 Jun 2025 04:01:08 +0000
Manifest this update: Sat 07 Jun 2025 04:01:08 +0000
Manifest next update: Sun 08 Jun 2025 04:01:08 +0000
Files and hashes: 1: gSdW6ySj41K9bonR9aoISIlhpnQ.crl (hash: AZPIDN08UhyCDcOhycBdXasfGqGkRLth49cUJMg6KA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:af:1d:8b:ce:b7:c9:17:2b:0f:9f:01:2e:b6:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Validity
Not Before: Jun 7 04:01:08 2025 GMT
Not After : Jun 8 04:01:08 2025 GMT
Subject: CN=3326ff9cd5d9fb0c430b2eb5e96e151fcc2ffba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:79:a6:12:3d:ac:20:bf:d2:73:ec:f3:ac:3f:
a7:57:25:2e:f0:4c:46:52:fa:9a:9e:84:3c:80:57:
a3:49:11:72:f5:db:7d:06:5f:c2:07:7f:10:7e:af:
b3:95:38:44:c5:56:20:27:78:7a:83:0d:b1:9c:d8:
5e:81:97:30:62:ff:0f:18:b8:13:6b:53:ce:3a:49:
dd:21:cb:11:6d:3f:8f:1d:a0:be:6e:71:5e:50:29:
bf:ff:63:57:69:df:4e:08:1e:07:b5:37:c3:85:7a:
dd:0f:94:ca:b2:9d:1f:73:26:2a:8e:4d:bc:07:06:
2d:fa:0b:71:21:ba:ae:aa:72:63:1e:3d:b1:84:b3:
cb:3f:4a:bb:d5:b9:6b:15:0c:d3:01:8f:6d:fa:f2:
1a:74:09:4c:9a:fc:a7:6e:93:73:d5:4b:3f:bd:3b:
05:dd:ee:4b:22:50:29:51:f9:a4:61:d6:08:5a:05:
c2:77:7c:43:d1:2b:7b:86:1d:74:27:2b:7b:02:7a:
d2:27:15:37:54:bb:b6:47:83:7d:6c:fd:50:f9:1a:
5d:1a:17:bc:ff:3e:ca:2b:f5:5f:c8:7e:14:63:37:
dd:58:ec:b7:24:38:f0:4b:a1:1a:04:66:bf:b2:97:
49:d3:c3:15:bf:93:39:e2:bd:ea:bc:83:5b:39:03:
7a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:26:FF:9C:D5:D9:FB:0C:43:0B:2E:B5:E9:6E:15:1F:CC:2F:FB:A6
X509v3 Authority Key Identifier:
keyid:81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:86:09:a0:6b:73:36:c7:02:1d:57:3a:d6:9d:f1:11:02:de:
a1:f5:50:34:de:3c:66:e5:53:1f:ac:f9:d1:ce:e5:85:e9:7e:
c0:f2:ec:59:1a:6e:e4:f7:5c:2f:7b:a0:36:e2:81:38:d6:e3:
9a:6d:eb:18:8d:0a:df:dc:ea:1c:0d:97:6b:85:cc:f7:63:e5:
9b:9e:1b:48:95:69:87:cb:93:56:78:6b:e3:9a:91:b4:1a:13:
4c:5e:52:22:66:b2:c4:7d:d5:77:65:95:bd:6f:68:fb:f6:bb:
86:f7:9d:27:22:2f:77:84:04:5b:f7:28:f1:18:13:36:b2:fa:
58:de:d0:b0:0c:47:1d:61:89:01:16:cc:40:49:f5:99:06:58:
cb:79:4a:0e:69:a7:f4:e4:8b:e7:72:33:8f:be:fa:65:52:3f:
b9:17:a1:ac:03:b5:4b:30:ad:1b:1c:70:8f:d8:6f:87:25:f9:
24:ec:64:69:78:ca:5d:b0:3c:8c:34:6b:24:84:18:cf:41:39:
b7:e4:92:e3:4b:d5:f8:06:27:f8:52:ee:a4:59:d8:8d:88:e9:
90:5a:dc:39:9a:6a:cc:e5:fc:da:65:62:af:c3:79:fd:2e:d0:
b6:30:be:59:5f:61:f5:3d:ab:bd:3f:38:67:71:ff:03:ed:63:
4d:36:9d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:52:04 2025 by rpki-client