Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
File: rKcX8QfgYizkyz71KwFU-n-baS0.mft (raw, json)
Hash identifier: e662KM+gDq1kttuAFlyLlEBmWAzr4wQk3zIOpDacuw4=
Subject key identifier: 1E:77:20:83:2D:0C:34:AB:41:11:75:74:9E:AA:5D:49:48:1C:CF:42
Authority key identifier: AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
Certificate issuer: /CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Certificate serial: 01974E57AEE9C4BF2E78E9B803695C7C18BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
Manifest number: 10FD
Signing time: Sun 08 Jun 2025 07:00:58 +0000
Manifest this update: Sun 08 Jun 2025 07:00:58 +0000
Manifest next update: Mon 09 Jun 2025 07:00:58 +0000
Files and hashes: 1: rKcX8QfgYizkyz71KwFU-n-baS0.crl (hash: BDOnHEdGUohXA4piB8u03zFHlywSib97wlneky+wQPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:ae:e9:c4:bf:2e:78:e9:b8:03:69:5c:7c:18:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Validity
Not Before: Jun 8 07:00:58 2025 GMT
Not After : Jun 9 07:00:58 2025 GMT
Subject: CN=1e7720832d0c34ab411175749eaa5d49481ccf42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:03:7a:49:40:9a:a6:f8:41:66:6c:3f:7c:2c:
3e:dc:61:7d:6d:57:30:4c:fa:8a:9c:5a:dd:5f:04:
94:5e:90:cb:c9:6a:00:ca:e8:48:92:89:1c:4e:cf:
8f:00:09:74:e0:0b:b1:55:1b:af:e3:c1:52:1e:c0:
60:2b:27:a9:b0:1d:b6:15:47:83:6c:e7:1a:d4:17:
7d:ee:6a:05:5c:ec:91:10:eb:db:b7:96:d3:0c:8f:
88:a6:5a:6f:91:86:d3:45:a0:da:cc:46:cb:a4:79:
a2:e0:4f:c9:49:47:f7:1a:32:a9:df:e3:36:43:94:
e9:88:e1:2f:93:6f:1a:1a:a9:f6:49:51:5f:e1:82:
59:6f:7b:ed:d4:dc:01:29:29:c4:ef:73:0f:94:db:
68:74:38:c7:ab:e6:91:f4:00:d4:23:d3:55:cc:60:
36:1c:61:eb:39:eb:d6:36:e6:36:2a:27:35:6c:24:
2f:a5:d8:a3:96:9b:2d:60:6c:08:a0:95:6b:f6:7a:
6c:ca:1d:45:56:87:76:f8:4d:97:5f:3f:bb:c4:e8:
c1:84:0f:e8:2f:ab:08:11:2d:71:a2:d1:c3:cc:69:
4a:0c:72:ef:13:8d:7a:3d:9a:06:7a:a3:9d:60:77:
df:74:56:95:c4:36:cd:0c:60:9e:51:ed:a3:4a:fc:
c7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:77:20:83:2D:0C:34:AB:41:11:75:74:9E:AA:5D:49:48:1C:CF:42
X509v3 Authority Key Identifier:
keyid:AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:66:2b:7f:f4:c3:0b:f2:dd:80:cd:33:5d:c9:9d:48:38:c9:
21:47:8d:55:ee:02:69:5f:56:77:c8:68:dd:78:14:54:bb:5e:
eb:f0:1e:b1:f6:06:51:ea:62:eb:55:9b:75:bf:1c:c9:a2:cd:
cf:e5:8a:a1:55:b2:8e:6e:b7:27:c4:5a:36:2f:07:50:14:3d:
70:91:ed:ef:a9:a7:1e:ff:39:0f:e6:35:a2:32:0e:1f:96:e4:
ae:db:37:7e:41:17:63:76:3d:3b:7a:09:c1:93:5c:4d:e8:16:
dc:4c:a8:77:a4:82:43:63:e0:b9:08:88:c6:2f:36:34:9f:02:
cc:0e:ba:c5:63:d7:4f:8c:9c:f7:69:f4:0b:6b:e8:d8:41:e5:
e3:7f:c7:f1:7a:c6:77:18:fd:20:f5:16:ce:33:81:69:f6:7f:
9b:02:84:d0:4b:61:3c:bd:09:04:2b:b6:be:f2:65:29:75:f3:
fd:d7:45:ca:82:33:74:63:42:93:22:94:94:87:09:0a:56:38:
9a:4e:31:fd:e0:e0:31:fe:aa:d7:87:39:a5:d7:d7:f1:55:16:
21:42:ea:be:8a:7e:ea:1e:20:61:5d:24:6e:73:73:95:de:bd:
a1:a0:76:b4:40:de:27:1d:31:ca:ef:04:eb:b9:32:35:d3:e3:
6c:cf:c0:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 12:53:42 2025 by rpki-client