Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: 06y1r3FMFCLt8TTZG812eh3kxK+/YK3T1pBZrqipKt0=
Subject key identifier: CA:2D:C5:96:CB:AA:9E:1A:4A:E6:48:BC:FD:5E:14:7A:1B:85:74:7C
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 01974A7B9B940C5D670EED6263C009676996
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0BD1
Signing time: Sat 07 Jun 2025 13:01:44 +0000
Manifest this update: Sat 07 Jun 2025 13:01:44 +0000
Manifest next update: Sun 08 Jun 2025 13:01:44 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: OU0UaOBPZZiMwLq1W2PHsTgCJyVYErABjgB2p3HQfdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:9b:94:0c:5d:67:0e:ed:62:63:c0:09:67:69:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: Jun 7 13:01:44 2025 GMT
Not After : Jun 8 13:01:44 2025 GMT
Subject: CN=ca2dc596cbaa9e1a4ae648bcfd5e147a1b85747c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:16:68:42:cf:ce:0e:50:75:8e:c4:1d:5a:11:
ae:27:32:55:13:64:e0:46:ef:c8:3f:4a:76:7d:62:
a8:7c:6b:66:fa:78:d1:97:4e:dd:8c:13:84:28:50:
02:5a:99:d3:d0:f2:d0:5f:ad:02:22:8e:18:2d:14:
72:16:d7:bc:76:0c:98:25:02:d4:3e:0d:ff:40:e3:
ae:61:78:cb:16:2b:5f:30:69:37:f3:17:ac:be:3a:
77:0b:cf:2f:26:8c:68:23:20:94:e4:1e:86:aa:be:
ab:25:5f:01:98:a5:c9:41:84:95:10:c7:b3:7e:05:
57:4c:c1:f3:25:cc:01:2a:67:25:1b:c1:a9:88:b1:
09:90:10:cc:66:e3:f6:85:1e:87:d1:d0:33:20:90:
03:5d:e1:b8:60:f9:7b:5b:4e:3a:3f:5e:6c:cd:4d:
b7:2a:b7:de:4d:2e:3c:34:b7:7d:e4:e0:b0:6a:05:
6b:6b:57:d1:55:b2:c9:7a:5f:60:39:fd:74:2e:be:
87:51:cb:ff:74:d0:34:4b:d1:28:e5:9d:2b:b0:a3:
00:07:50:21:bd:54:af:0c:49:b6:03:92:94:9e:35:
87:d5:16:6a:c3:5a:09:63:45:39:69:b6:09:fe:37:
89:46:9e:d9:17:8f:0e:d8:33:d1:00:ac:01:d6:18:
a6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:2D:C5:96:CB:AA:9E:1A:4A:E6:48:BC:FD:5E:14:7A:1B:85:74:7C
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:c6:7a:3e:f9:58:c6:0d:04:38:8f:27:7f:82:d6:ef:57:f6:
86:86:80:52:7c:9a:47:52:1c:d4:e8:24:30:d0:8e:58:ce:8c:
0a:99:87:18:0d:39:a4:90:3f:ab:d2:e5:60:01:c0:4d:76:29:
0a:52:61:8f:f4:c6:1e:fa:cc:54:d2:48:48:8c:81:b5:d0:4f:
c3:f8:8a:1d:13:42:ad:08:43:ae:c9:59:2f:b2:56:43:b1:13:
8b:a5:95:3a:4b:f1:b0:8f:6b:31:15:73:19:4f:c6:a0:ae:b9:
65:22:cb:67:be:95:08:01:49:73:a4:ce:86:bd:fd:ee:ee:c5:
ec:cb:84:20:0d:07:f1:b4:ef:01:50:50:0d:35:de:5e:f6:0c:
7e:8a:22:cc:af:c9:51:5b:f5:32:21:3a:d1:ba:9c:1f:1d:ca:
b7:75:1e:22:2a:af:b2:11:63:cb:e6:16:a0:b8:4d:53:f9:4d:
70:01:b5:d2:cf:ca:e9:45:66:8d:d8:09:5f:eb:42:b2:e9:68:
fc:a6:ab:4f:8a:46:34:fa:d0:0c:91:b4:5d:34:99:62:eb:f1:
cd:e5:43:24:ac:48:97:68:3a:27:78:5e:59:92:c4:a1:82:24:
85:dd:9c:c2:32:5f:48:ee:5b:fb:09:35:3c:e8:e4:c4:ab:e3:
44:fd:c0:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:47:47 2025 by rpki-client