Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
File: h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft (raw, json)
Hash identifier: JS+Kcmmo2do7xeLK1o26TlNCJmF7SPtxQQcnFkmn2Ms=
Subject key identifier: F6:BA:67:59:C9:A2:F5:70:F5:63:9E:25:00:36:3F:10:5E:4E:F8:15
Authority key identifier: 87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4
Certificate issuer: /CN=87c0a7b43d42924917a590598b44325e4cc92ee4
Certificate serial: 01974F3397D8C73B4CE9A7F2EAF5DF2D5CAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
Manifest number: 0953
Signing time: Sun 08 Jun 2025 11:01:10 +0000
Manifest this update: Sun 08 Jun 2025 11:01:10 +0000
Manifest next update: Mon 09 Jun 2025 11:01:10 +0000
Files and hashes: 1: h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl (hash: H8j5WmhPkzHgbK4M+uN2Z5O+B2w/xPQa8prXInt2QKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:33:97:d8:c7:3b:4c:e9:a7:f2:ea:f5:df:2d:5c:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87c0a7b43d42924917a590598b44325e4cc92ee4
Validity
Not Before: Jun 8 11:01:10 2025 GMT
Not After : Jun 9 11:01:10 2025 GMT
Subject: CN=f6ba6759c9a2f570f5639e2500363f105e4ef815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fd:cc:4e:93:11:dd:bd:36:7b:0d:cc:77:be:
e9:c0:d0:f8:3e:7d:49:5c:38:0c:a0:18:a7:be:dc:
0e:62:c8:64:63:25:8d:39:15:de:90:ce:1a:b3:3a:
b3:5e:81:4b:60:d5:e4:d5:a1:aa:b8:8f:b9:3a:d8:
8f:cb:99:71:9e:c1:b1:bc:9c:96:e5:3f:17:95:a2:
46:0b:9a:3e:91:7c:88:7a:68:5d:c3:a7:67:e4:16:
49:5b:1a:6f:6a:00:bc:99:a5:c4:bf:70:8a:ea:ca:
a6:99:12:f9:65:f7:89:c2:8d:f6:7f:d0:be:d7:8b:
cc:dd:44:c0:b2:36:63:44:d6:7c:d4:6a:11:d4:d3:
1e:8b:ad:1b:d0:19:b0:19:33:c4:d8:92:9d:85:8f:
4a:09:18:fa:8e:60:7d:d7:48:e2:b8:f0:59:17:1e:
3e:58:52:1e:0e:c7:ef:eb:8f:de:57:f9:c8:c8:91:
d9:a7:32:70:12:4c:3d:84:f3:d5:4e:ba:fc:cc:ec:
16:ae:3d:48:60:cd:17:ae:57:1a:d9:cc:36:d3:11:
89:2a:8c:11:75:a8:06:13:7c:1b:e5:0e:d4:90:61:
1d:02:75:b9:56:62:34:55:52:7e:f7:30:11:52:ee:
f6:df:f4:b2:9a:b8:1d:07:9c:06:7b:55:3f:98:31:
f6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:BA:67:59:C9:A2:F5:70:F5:63:9E:25:00:36:3F:10:5E:4E:F8:15
X509v3 Authority Key Identifier:
keyid:87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:f0:bc:1c:79:e3:08:86:51:f0:35:b4:aa:27:e0:90:40:2e:
66:0b:56:b5:dc:71:fa:6c:fb:a0:c6:3e:e5:d3:c0:4d:4e:1f:
26:f0:12:32:23:3f:6b:2c:2c:25:9d:c5:6e:e8:be:06:c4:b8:
86:0a:f6:4d:4e:45:d2:d6:cb:f6:06:3f:4a:c0:90:64:8b:08:
2d:97:1b:b7:58:dc:15:c5:e2:c7:7b:9b:50:fb:13:af:8c:ca:
f7:35:79:6a:41:3c:4d:88:71:07:1f:01:a9:6a:9c:e7:13:3e:
c0:cd:22:91:28:d3:9f:97:ba:34:6f:5d:4f:3f:64:40:7d:ad:
36:8d:de:71:2c:0d:ba:e8:e7:7c:0a:27:02:af:04:60:9b:b8:
b0:b1:6a:bd:6a:dd:69:1d:f7:47:8d:1b:d2:f6:a6:5a:4f:2b:
2b:0c:7d:b2:4b:33:67:86:3e:bd:58:e1:af:15:a7:76:70:4b:
b5:81:f1:3d:87:f1:ca:60:32:66:cc:f5:cf:83:8b:7d:72:2b:
37:98:e8:15:f5:02:70:83:3e:df:59:f5:43:f8:1c:ed:65:2d:
af:59:b0:89:79:45:a2:70:5a:7f:54:ce:a4:96:c8:45:e7:09:
99:27:fe:d2:81:26:2e:96:38:7c:4d:ae:66:12:84:39:d0:66:
dd:9d:92:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 20:02:32 2025 by rpki-client