Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
File: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft (raw, json)
Hash identifier: txBqmd7NLNY/waaHi+NlnxlNTIc/stuptZBwPhUOMWE=
Subject key identifier: EF:41:A9:DE:D4:22:A0:02:86:B8:B2:70:52:6E:49:74:E0:2B:93:5B
Authority key identifier: 98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
Certificate issuer: /CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Certificate serial: 0197518F6F9FF04235376A255E8D5CBA4761
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
Manifest number: 0CB5
Signing time: Sun 08 Jun 2025 22:00:44 +0000
Manifest this update: Sun 08 Jun 2025 22:00:44 +0000
Manifest next update: Mon 09 Jun 2025 22:00:44 +0000
Files and hashes: 1: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl (hash: loZJy+SDUdabQtogLBMRvJt4iprSTkUwdc7mCR6cIbM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:8f:6f:9f:f0:42:35:37:6a:25:5e:8d:5c:ba:47:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Validity
Not Before: Jun 8 22:00:44 2025 GMT
Not After : Jun 9 22:00:44 2025 GMT
Subject: CN=ef41a9ded422a00286b8b270526e4974e02b935b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cc:ab:f3:34:d5:9e:19:a7:c2:92:67:c7:9c:
9e:83:6c:6d:8b:54:96:cd:ac:f5:8d:df:ea:22:15:
87:76:f0:c8:cf:2d:5f:7b:8e:a1:36:58:d7:4e:9e:
dd:f5:8d:33:3b:ed:ad:24:00:cf:9e:d2:9e:2b:a4:
0f:10:a8:79:78:ee:a5:5c:60:55:d7:f7:10:0a:79:
49:e0:72:e5:65:2c:66:e3:07:dd:cd:1c:56:d8:19:
0b:ab:25:b4:37:09:a2:e3:c4:09:ca:ba:80:b4:d7:
5d:b5:90:a4:56:6a:c7:ec:dd:53:c1:d5:91:17:69:
6d:1f:d0:72:b6:54:b8:cc:4f:e7:84:fe:9b:04:c2:
95:ac:94:b7:10:05:e0:5f:13:46:5e:26:13:cd:9f:
6d:1e:98:6e:3f:10:38:b2:d0:f2:ea:31:1e:78:a6:
05:98:c0:4a:fb:e4:56:6f:63:78:a2:94:41:c7:d1:
38:a8:0f:3f:44:f2:dd:98:c0:cd:cd:86:ab:be:03:
09:c3:03:c6:71:48:9a:76:b6:41:a9:3e:c3:78:5b:
c4:d6:90:40:d3:97:2b:0f:fa:44:83:e4:ab:12:cd:
22:af:e1:67:38:89:a7:7a:53:86:5c:8d:bd:90:89:
a6:1f:c4:a6:91:da:2b:7f:50:9a:50:7b:c1:7d:1d:
f2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:41:A9:DE:D4:22:A0:02:86:B8:B2:70:52:6E:49:74:E0:2B:93:5B
X509v3 Authority Key Identifier:
keyid:98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:4c:18:de:5b:14:a7:f0:c1:f6:3d:3b:26:60:a9:62:b5:9c:
2f:38:36:08:62:fd:39:83:3c:51:c5:75:d1:42:70:12:73:d2:
ca:c6:27:19:23:54:06:5b:7e:8d:23:c3:66:51:f2:45:10:99:
7a:40:f7:f6:85:ff:0e:a9:64:a9:d4:79:03:8d:a6:88:4a:27:
47:ea:44:55:53:02:a6:5a:c1:9f:4c:71:55:94:7c:62:eb:97:
1d:4e:63:2d:23:66:ab:a6:76:f2:51:77:0f:a6:02:1a:ae:61:
9d:6c:cf:82:3e:5d:f4:e7:e1:7a:70:03:9c:07:e1:65:ba:51:
2d:2a:ac:a7:f3:54:95:de:a0:09:4a:c9:5d:9a:9c:01:6c:49:
4b:71:0d:dd:21:16:20:7f:aa:f6:66:78:0a:81:b5:1a:eb:81:
a5:d1:c1:4b:be:56:2e:3d:60:7f:5f:9b:44:c7:1d:c3:f2:89:
22:f6:40:68:d6:67:7f:f1:6c:f0:50:f9:b7:9d:a5:29:b7:57:
51:e9:d6:8c:f3:ac:a6:8c:0e:21:70:a5:8f:cd:68:27:61:c1:
05:50:77:5c:83:98:ea:2a:21:2a:32:49:12:38:e9:33:88:ab:
32:f5:d1:ec:d4:a5:13:3e:fc:35:16:00:95:01:71:84:2f:31:
9d:51:6b:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 06:20:25 2025 by rpki-client