Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft
File: dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft (raw, json)
Hash identifier: EFG3NcpihR/uxN+kXAfdm8jCSAZyq9zKk7uAumOT+4s=
Subject key identifier: 33:BB:F7:8E:2A:9D:4C:CE:44:C6:8B:9C:EC:8D:26:70:A7:FE:50:10
Authority key identifier: 75:92:3E:C5:46:DF:37:1D:09:E6:8C:6B:06:02:5E:A3:12:61:23:4A
Certificate issuer: /CN=75923ec546df371d09e68c6b06025ea31261234a
Certificate serial: 01976961519F6799820D2DE5C78F8E92448C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZI-xUbfNx0J5oxrBgJeoxJhI0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft
Manifest number: 158A
Signing time: Fri 13 Jun 2025 13:01:14 +0000
Manifest this update: Fri 13 Jun 2025 13:01:14 +0000
Manifest next update: Sat 14 Jun 2025 13:01:14 +0000
Files and hashes: 1: dZI-xUbfNx0J5oxrBgJeoxJhI0o.crl (hash: pQ1jUkowfoiaTCYkCEJU1VCGzLBYyxfk0bXEVW80Fw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/dZI-xUbfNx0J5oxrBgJeoxJhI0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:51:9f:67:99:82:0d:2d:e5:c7:8f:8e:92:44:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75923ec546df371d09e68c6b06025ea31261234a
Validity
Not Before: Jun 13 13:01:14 2025 GMT
Not After : Jun 14 13:01:14 2025 GMT
Subject: CN=33bbf78e2a9d4cce44c68b9cec8d2670a7fe5010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ce:69:41:da:ce:fd:e9:6f:06:00:52:5d:b0:
14:77:e2:9b:7b:f1:48:01:22:5f:a7:06:e9:09:f6:
da:01:77:f3:de:4d:4e:7b:70:2d:99:05:8e:5a:55:
c5:cd:7e:4a:02:dc:d8:2e:bc:d9:20:cb:d5:8f:15:
f9:6f:fe:02:27:12:1b:f2:50:48:3c:70:62:79:46:
71:ef:41:01:ab:fa:55:4b:ba:e4:71:07:0f:19:2d:
c9:71:a3:bd:1a:44:4b:81:f9:61:44:21:e1:3d:32:
a1:65:af:57:a8:4d:5b:d6:f9:7c:a8:fc:0b:62:ab:
ba:f6:db:e8:ac:bc:5d:da:8e:fd:a4:f9:2b:73:4a:
fb:74:b0:cf:50:7c:fc:29:76:b1:5c:1c:c7:10:ce:
cb:8b:a1:e1:1a:64:06:8b:9f:3c:d5:d3:9c:09:52:
ef:0f:8e:d1:9d:80:a2:24:cb:46:e2:af:8e:33:4e:
2d:af:9c:4a:00:f6:36:fb:f2:09:19:03:b1:67:a7:
b0:91:4c:f9:63:3a:c0:7c:a3:7b:fe:6b:11:9d:b0:
8d:e1:eb:8d:c4:38:83:5c:6a:33:e4:9d:19:bf:a6:
af:23:fc:0a:44:99:3f:17:74:7a:13:90:80:f1:3a:
11:8b:56:dd:f9:5e:99:08:b2:60:1e:3b:87:df:17:
a4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:BB:F7:8E:2A:9D:4C:CE:44:C6:8B:9C:EC:8D:26:70:A7:FE:50:10
X509v3 Authority Key Identifier:
keyid:75:92:3E:C5:46:DF:37:1D:09:E6:8C:6B:06:02:5E:A3:12:61:23:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZI-xUbfNx0J5oxrBgJeoxJhI0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:75:88:1c:fe:cb:5b:37:51:0c:11:ed:2c:f7:10:ab:9a:cd:
b6:0d:33:e4:9c:53:49:1e:13:5c:0c:0b:23:26:3e:60:ec:dd:
df:f0:19:93:af:b6:74:41:da:a6:e7:4c:09:ed:14:04:c9:84:
5e:27:be:4b:44:c5:e9:a3:72:9e:9a:2c:a7:38:30:cd:be:7f:
51:fe:ce:46:0f:b5:51:1a:1a:06:cd:59:1d:c1:86:a5:dd:d4:
ac:e6:89:24:6a:4f:79:65:f6:af:68:7f:10:ce:1e:91:75:93:
dd:66:23:40:ac:d0:37:1a:84:e9:ed:e3:50:b7:ed:44:ec:7e:
09:d0:2a:cc:ea:31:d6:0a:52:37:61:50:88:37:58:81:b4:13:
44:bc:d7:15:55:6f:43:26:45:18:a3:11:58:2a:ab:d8:e2:f8:
8d:ab:72:ac:23:80:5a:38:76:c6:a4:9c:20:4b:49:6c:c9:1d:
c1:d3:05:64:c6:18:70:71:e2:91:ed:2f:96:1f:7e:90:63:db:
df:e6:83:2a:60:7e:55:07:82:99:48:a8:ae:8b:e4:a5:ad:a8:
82:a3:a6:20:bf:4d:39:81:58:43:1e:f0:e2:54:27:28:26:21:
bf:e4:e5:5f:82:8b:d1:b3:e2:a7:e5:b2:e9:02:3f:a8:0c:6c:
d8:82:fb:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 22:06:30 2025 by rpki-client