Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
File: xIzPWOSy4trdSoSDPAZ87iuXRek.mft (raw, json)
Hash identifier: GIU8MhvScd7hg/60EPkExiU9+O+nQM7Xa7G1meF/JmM=
Subject key identifier: 03:CE:64:F3:AA:82:2D:18:2A:0E:C4:49:97:1C:57:2E:38:54:DF:16
Authority key identifier: C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
Certificate issuer: /CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Certificate serial: 019749D5A2DE0ABB0DA49941BDD1CDAF8E6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
Manifest number: 07AC
Signing time: Sat 07 Jun 2025 10:00:26 +0000
Manifest this update: Sat 07 Jun 2025 10:00:26 +0000
Manifest next update: Sun 08 Jun 2025 10:00:26 +0000
Files and hashes: 1: xIzPWOSy4trdSoSDPAZ87iuXRek.crl (hash: rV9SK/VoVP44YbewMOgXe9JpAqHdonXjAmTi/jdQF8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:a2:de:0a:bb:0d:a4:99:41:bd:d1:cd:af:8e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Validity
Not Before: Jun 7 10:00:26 2025 GMT
Not After : Jun 8 10:00:26 2025 GMT
Subject: CN=03ce64f3aa822d182a0ec449971c572e3854df16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:24:5c:e8:77:b8:7b:8a:39:fb:da:b3:fa:c2:
46:43:72:51:81:36:1e:09:ba:8f:32:48:8d:5d:6a:
f5:64:91:97:0c:ca:e2:fc:2c:30:af:8e:08:9b:a3:
15:77:b1:8d:ef:65:27:f6:c0:f8:13:6d:cd:97:a4:
70:6f:4f:e5:6c:59:36:8a:e6:a5:2f:c8:ec:57:b6:
76:42:4c:68:3d:4d:5a:2d:46:51:d7:84:54:8b:ca:
74:c7:72:9d:7d:21:e9:d3:58:c2:84:aa:8e:08:9e:
27:db:27:7c:69:87:74:09:22:ca:68:8b:41:5e:e9:
35:63:f2:e8:36:13:02:16:98:af:f8:0f:50:dc:fd:
d6:dd:ce:00:99:d6:e9:8a:40:7a:4a:12:50:de:64:
ac:aa:07:98:74:cf:e1:35:38:27:ea:14:30:58:74:
54:ce:0b:3b:35:14:05:a6:cb:2a:4c:8f:fc:4a:c9:
2b:0b:f5:92:9f:17:b4:3e:f7:a8:da:14:69:8a:75:
df:36:96:d4:20:88:d4:bc:3a:c3:d9:5a:ef:35:17:
5d:28:4c:66:7c:c6:71:68:16:f0:10:c8:74:f8:90:
07:c3:bd:ca:b4:65:21:44:5c:eb:2c:ef:ea:f8:12:
ab:d4:52:57:d0:3e:3f:87:62:93:9c:6c:76:cc:e8:
85:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CE:64:F3:AA:82:2D:18:2A:0E:C4:49:97:1C:57:2E:38:54:DF:16
X509v3 Authority Key Identifier:
keyid:C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:9e:08:b5:2b:21:51:48:6f:de:40:3c:bc:06:44:27:49:07:
68:2f:1a:f8:11:9b:a8:05:93:9f:94:08:54:87:c5:30:96:9e:
0b:5a:02:33:33:13:48:23:6a:4d:76:54:c1:65:be:bb:6f:6c:
1f:63:77:56:c7:27:29:6c:74:57:7f:ae:06:93:22:49:cc:38:
e2:6f:d0:a9:50:50:3e:7e:6e:0e:41:79:18:47:71:56:be:1c:
f0:2d:c2:7a:ac:b6:be:1e:ac:23:66:0a:2f:41:95:5d:12:70:
41:9a:c4:0e:5c:32:6e:6a:38:d9:65:f6:48:dc:ea:7c:32:84:
1b:e9:f6:31:1f:cf:75:1e:50:bf:5b:d0:26:d3:e1:43:50:96:
57:e0:b8:26:1a:a0:06:42:11:eb:29:be:cb:06:ed:31:d2:ff:
8e:ee:1a:7a:cc:67:81:e2:ba:0e:f5:21:ed:70:59:52:46:32:
fa:0d:c9:b7:90:e6:f2:eb:ba:2e:83:ff:db:d4:97:a3:e1:d0:
f3:dd:5d:fc:09:d4:9b:83:cc:51:a9:ed:e6:29:17:b6:af:75:
55:fc:e5:24:61:20:1c:fb:01:96:15:90:b0:33:fa:1f:b8:88:
8a:c0:bd:c1:54:4c:e5:8a:f6:c5:85:81:51:69:a1:9b:2e:4a:
8c:65:ce:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:37:20 2025 by rpki-client