Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft
File: _D39VAG24EhxYrQuBDdnosKTGnc.mft (raw, json)
Hash identifier: xpsgTTDhwPJN2lRIymQZE1QPVQZEOnrNPnu7Ks1Ei4U=
Subject key identifier: E9:19:EA:DC:26:F9:34:41:36:8B:A6:6E:9C:A1:C8:BC:B1:6C:26:71
Authority key identifier: FC:3D:FD:54:01:B6:E0:48:71:62:B4:2E:04:37:67:A2:C2:93:1A:77
Certificate issuer: /CN=fc3dfd5401b6e0487162b42e043767a2c2931a77
Certificate serial: 0197488C14875A513DEF36E6D78AE8085E92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_D39VAG24EhxYrQuBDdnosKTGnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft
Manifest number: 08FE
Signing time: Sat 07 Jun 2025 04:00:29 +0000
Manifest this update: Sat 07 Jun 2025 04:00:29 +0000
Manifest next update: Sun 08 Jun 2025 04:00:29 +0000
Files and hashes: 1: _D39VAG24EhxYrQuBDdnosKTGnc.crl (hash: F+qs7r/qxZk21/F6nCiK3bD2sHv6gt3ohvHDYZlLcgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/_D39VAG24EhxYrQuBDdnosKTGnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:14:87:5a:51:3d:ef:36:e6:d7:8a:e8:08:5e:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc3dfd5401b6e0487162b42e043767a2c2931a77
Validity
Not Before: Jun 7 04:00:29 2025 GMT
Not After : Jun 8 04:00:29 2025 GMT
Subject: CN=e919eadc26f93441368ba66e9ca1c8bcb16c2671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:52:12:11:00:6d:f0:54:9e:85:61:71:66:bc:
ef:5a:d8:15:ac:22:f1:5d:8c:95:30:8f:b4:a7:19:
f5:1e:1b:48:e1:1f:fb:b6:85:d4:57:42:bf:de:fa:
79:50:ba:d0:4c:e0:ed:97:e2:d7:fa:1a:f4:79:62:
8b:58:b9:51:f4:53:88:e5:8e:96:54:e0:fd:d9:25:
4b:8f:dc:d7:13:b9:0e:a1:3b:4d:aa:eb:75:62:18:
f1:69:b0:1d:aa:46:28:ad:3f:df:b9:ac:af:4a:3e:
4d:09:a8:6c:e7:f0:1d:c4:95:d1:61:71:c9:ad:2e:
b4:23:9e:bd:5a:98:0a:53:be:d8:00:a9:f7:95:7a:
f5:fe:64:2f:77:67:ac:f6:b3:e6:98:40:ee:7c:0d:
53:ee:90:d6:ec:b2:e3:e8:eb:29:25:61:b7:2b:d5:
72:0f:18:02:7a:13:db:f6:6a:2c:be:7a:12:65:cf:
42:51:6d:5e:b0:38:50:7e:58:fa:2c:f3:70:ae:90:
bd:e3:2f:9b:14:52:2b:a1:34:db:9a:75:a6:ef:68:
a7:23:49:df:50:d8:1c:35:e7:f9:bd:6d:a1:8b:ae:
e6:c6:7e:24:c6:55:da:57:65:bc:20:b2:94:2f:e4:
11:58:fc:78:31:5b:1f:d7:17:67:af:85:87:b0:3d:
5a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:19:EA:DC:26:F9:34:41:36:8B:A6:6E:9C:A1:C8:BC:B1:6C:26:71
X509v3 Authority Key Identifier:
keyid:FC:3D:FD:54:01:B6:E0:48:71:62:B4:2E:04:37:67:A2:C2:93:1A:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_D39VAG24EhxYrQuBDdnosKTGnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/335e98-8b36-4017-928a-ddade3d341c7/1/_D39VAG24EhxYrQuBDdnosKTGnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:aa:50:d1:0a:b8:7d:cb:36:8f:df:e1:1d:b5:45:1e:3a:b2:
1d:4b:47:c4:15:1c:41:35:3c:78:07:cd:d1:13:c3:2c:ce:17:
1a:ee:62:52:9d:a6:b0:d3:ae:50:f5:8d:8e:f5:c2:3e:2f:6e:
d7:f2:fb:6f:63:77:0b:17:e0:35:c8:1f:a3:b1:84:7f:a7:ed:
7a:34:b6:0a:74:dd:fc:f7:98:26:42:10:d7:91:c3:b9:01:e1:
e3:90:fd:13:61:29:67:20:d4:2d:7d:20:c4:be:4b:58:fc:74:
55:bf:a0:07:46:17:9c:ff:80:ad:62:39:27:44:a0:f2:88:cd:
93:ee:6d:31:05:9b:8b:6c:f3:a5:4b:05:1e:a2:8f:0b:13:71:
51:a5:c4:cc:87:93:24:80:dc:e3:32:9e:e9:b4:dd:98:54:2b:
c6:1b:2e:ff:9b:8e:92:59:d9:5a:0f:bd:db:67:59:14:6e:49:
3d:5b:24:6c:cf:3d:b8:c3:09:00:f9:9d:de:ca:7b:83:be:a0:
b2:37:5c:e0:c2:6c:91:76:48:3d:b8:eb:a6:ac:b5:07:70:7d:
73:ea:0f:f6:a5:16:f5:42:d4:c1:d1:c5:46:00:86:df:53:a1:
e0:f7:41:09:79:22:8b:25:f7:af:5a:d2:4a:5e:24:1e:1b:37:
ed:ce:ba:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:20:53 2025 by rpki-client