Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft
File: cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft (raw, json)
Hash identifier: y6hNrq5IImcGcku4ndaMHMBiSRkqgv/VBSqHS+P9Ayo=
Subject key identifier: 96:22:2B:64:79:5D:C0:61:94:19:73:16:47:DC:59:32:E1:25:B6:80
Authority key identifier: 70:9A:8E:FA:FA:78:54:01:01:2C:45:90:DA:63:44:0A:34:56:D0:CE
Certificate issuer: /CN=709a8efafa785401012c4590da63440a3456d0ce
Certificate serial: 01975D5CF640265C6049AA84BC721F08819F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cJqO-vp4VAEBLEWQ2mNECjRW0M4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft
Manifest number: 033F
Signing time: Wed 11 Jun 2025 05:01:02 +0000
Manifest this update: Wed 11 Jun 2025 05:01:02 +0000
Manifest next update: Thu 12 Jun 2025 05:01:02 +0000
Files and hashes: 1: cJqO-vp4VAEBLEWQ2mNECjRW0M4.crl (hash: ZboyHxVgazcCncElOBIWIBMTIr8t6esbebbuIgOlrsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cJqO-vp4VAEBLEWQ2mNECjRW0M4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 05:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:5c:f6:40:26:5c:60:49:aa:84:bc:72:1f:08:81:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=709a8efafa785401012c4590da63440a3456d0ce
Validity
Not Before: Jun 11 05:01:02 2025 GMT
Not After : Jun 12 05:01:02 2025 GMT
Subject: CN=96222b64795dc0619419731647dc5932e125b680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:53:3d:2d:a0:06:b5:9a:bd:fd:48:86:af:bf:
1e:ff:72:b3:19:0e:f6:bf:52:de:e0:80:25:41:0e:
cd:d6:5d:ee:01:81:2a:b8:8d:8b:9c:69:07:81:86:
00:8b:3e:04:75:7e:97:c8:c4:c7:20:93:8e:5b:1b:
1b:24:73:1a:b3:79:5b:5b:2e:99:57:2d:bf:67:0c:
91:8f:4f:ab:b1:a6:fa:b5:ca:0c:53:66:e5:a3:e9:
60:1c:1d:f7:c1:b4:fd:7c:c0:a0:46:ca:d4:92:39:
53:64:30:14:5c:cf:dc:83:6f:7b:d4:83:9e:1f:2f:
32:c0:16:0c:eb:a2:37:e5:7c:d4:2a:4d:86:10:13:
85:3c:4f:73:e7:05:6a:fa:22:51:51:68:4a:1b:2d:
b3:bf:a0:f4:35:01:c8:24:91:b1:09:56:5c:51:f4:
9d:a2:cd:22:a0:af:ad:13:94:a1:14:44:77:d3:84:
fa:68:25:d4:7b:49:df:95:de:60:22:82:cb:88:c2:
01:e0:90:8f:cf:98:58:0e:30:70:f9:ee:58:62:5c:
9c:5f:14:be:e0:e6:92:c8:46:d1:24:b9:05:10:e9:
76:9f:f6:5f:c9:06:1c:79:07:da:18:01:6e:a1:05:
f7:93:1b:52:3a:4d:02:31:39:f5:82:fc:57:7d:b0:
5f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:22:2B:64:79:5D:C0:61:94:19:73:16:47:DC:59:32:E1:25:B6:80
X509v3 Authority Key Identifier:
keyid:70:9A:8E:FA:FA:78:54:01:01:2C:45:90:DA:63:44:0A:34:56:D0:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cJqO-vp4VAEBLEWQ2mNECjRW0M4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/fb5a4f-198b-4711-9a73-c02945b483ee/1/cJqO-vp4VAEBLEWQ2mNECjRW0M4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:2b:36:0a:5a:89:e6:a6:60:29:d5:95:bb:8e:bd:b2:82:6f:
e8:1b:cf:53:b1:fd:09:7d:b3:4e:31:6c:fe:bf:bc:9f:67:fd:
9d:8a:f3:e0:4f:08:14:1e:c6:f5:ff:15:cb:43:b1:34:29:cd:
0d:7d:d6:b6:78:d2:c9:01:6a:e9:30:82:bd:ae:3d:0f:17:53:
4c:ec:23:5a:88:1d:20:97:9f:9a:d9:91:4b:e7:30:9d:21:74:
b8:44:12:14:32:18:b5:ef:48:f9:11:d3:7a:6e:00:d9:9e:42:
2c:c0:d8:c6:40:4c:09:da:bb:a6:c4:ba:18:bc:10:07:7a:39:
6e:e7:25:3b:b0:af:26:c9:5d:04:60:09:3e:6b:a3:f4:8e:4b:
1b:28:be:9f:34:90:de:6b:9b:a5:68:04:ee:6f:ee:42:46:51:
bd:68:89:f4:8d:09:78:bf:f2:0c:c7:0e:b0:f7:0d:b6:d2:81:
09:d7:2c:17:45:03:22:25:1c:ab:ef:c5:9c:d4:b4:0b:17:cf:
8e:fe:1c:61:bb:d9:81:e3:6f:8c:01:98:85:10:79:db:32:a3:
f4:f4:59:1e:f5:c3:5d:79:6b:75:a1:e9:47:97:27:d3:dd:c9:
77:4a:2f:06:39:e3:1a:04:c3:63:7b:ec:65:05:79:28:3c:63:
b6:ff:a5:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 12:35:32 2025 by rpki-client