Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft
File: a-5EwhI0JTYYsNeza5Djy1xA3tE.mft (raw, json)
Hash identifier: yw9DgbvCB7VR5M1R5qtlJ5V+oqo6ioEaGm1ZRlSSSc8=
Subject key identifier: D4:D6:CD:B4:E0:BF:92:CB:C0:36:FA:C2:66:14:60:62:B5:93:F1:C8
Authority key identifier: 6B:EE:44:C2:12:34:25:36:18:B0:D7:B3:6B:90:E3:CB:5C:40:DE:D1
Certificate issuer: /CN=6bee44c21234253618b0d7b36b90e3cb5c40ded1
Certificate serial: 019748C3545D9FFC0184756DD8F6B673024D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-5EwhI0JTYYsNeza5Djy1xA3tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft
Manifest number: 1579
Signing time: Sat 07 Jun 2025 05:00:49 +0000
Manifest this update: Sat 07 Jun 2025 05:00:49 +0000
Manifest next update: Sun 08 Jun 2025 05:00:49 +0000
Files and hashes: 1: a-5EwhI0JTYYsNeza5Djy1xA3tE.crl (hash: ohTHb+36kA80zI9wXb/9lI9MaLQSzI/N5ORqiP80+bs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/a-5EwhI0JTYYsNeza5Djy1xA3tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:54:5d:9f:fc:01:84:75:6d:d8:f6:b6:73:02:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bee44c21234253618b0d7b36b90e3cb5c40ded1
Validity
Not Before: Jun 7 05:00:49 2025 GMT
Not After : Jun 8 05:00:49 2025 GMT
Subject: CN=d4d6cdb4e0bf92cbc036fac266146062b593f1c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:83:39:e7:c5:f0:97:0d:00:31:8d:bc:a0:22:
b6:2c:0f:1f:5e:31:9e:1e:6a:6f:3f:e8:ff:01:02:
60:f8:61:a5:3b:5e:e8:1b:8a:80:d4:df:90:3f:63:
39:f3:ea:6a:74:a8:66:4a:13:62:d4:b7:cf:d4:2b:
fd:e9:04:ea:ca:76:b9:35:0d:7e:a0:bd:2f:4f:d1:
64:45:74:72:9b:de:d8:aa:fd:6e:03:58:cb:9c:6f:
3f:7b:69:54:da:ea:73:55:ea:6e:d7:d7:a2:07:37:
4c:25:49:e9:40:13:f8:a1:41:fb:80:13:c9:63:f3:
db:c9:5e:55:59:b1:dc:66:77:e3:4a:11:0e:e7:4e:
2c:15:83:1c:61:fe:01:a9:a8:4d:ab:83:c1:bf:0c:
93:23:87:bf:b0:22:f4:ca:53:08:ad:c1:86:b0:18:
50:22:75:ba:20:76:5d:ac:98:6f:a7:37:a4:df:29:
8c:35:43:36:f2:e8:fe:63:f4:f6:fb:fe:9a:8e:c6:
8c:6f:0f:09:c8:e9:80:69:07:98:9f:78:53:7b:26:
89:78:81:ab:37:d9:98:74:6c:da:7a:db:6f:6c:5b:
95:0a:3d:2d:af:9e:8d:03:ea:5b:ef:ef:97:a9:b4:
70:4f:68:05:8b:2e:f8:74:5b:c6:f4:0a:83:a7:0b:
1e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:D6:CD:B4:E0:BF:92:CB:C0:36:FA:C2:66:14:60:62:B5:93:F1:C8
X509v3 Authority Key Identifier:
keyid:6B:EE:44:C2:12:34:25:36:18:B0:D7:B3:6B:90:E3:CB:5C:40:DE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-5EwhI0JTYYsNeza5Djy1xA3tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:b2:b1:a1:59:32:70:4f:85:69:48:e2:bc:0a:87:a1:ee:76:
f9:7e:6b:ff:44:73:e3:89:8c:4e:d7:35:61:33:e1:fe:bc:87:
2a:27:12:15:97:e4:3c:1c:85:aa:dd:73:45:61:2b:9b:80:f0:
0b:e9:60:12:1c:3d:e2:c6:9f:67:ca:5e:60:17:e9:fd:1b:dd:
51:43:d4:15:36:83:90:55:4f:9c:e8:08:eb:7d:43:3f:ba:d4:
2d:f7:d0:22:ec:78:a0:ea:0f:a4:d1:b3:06:70:25:be:4e:35:
3a:fc:1d:c4:09:08:fb:66:3c:3e:9a:66:b7:47:52:9b:68:69:
21:35:bb:d0:ed:07:1b:68:1e:cc:05:97:be:83:d5:22:1b:1b:
33:aa:91:42:73:cc:2c:b4:cc:a5:eb:1b:2a:37:95:5d:a0:aa:
13:15:73:bd:58:df:b9:5d:a6:26:54:9b:6e:60:04:71:42:68:
f4:bd:b6:1b:06:63:eb:83:d2:3c:cf:f4:0e:fd:ca:9b:55:3d:
db:a5:19:dd:c7:94:1f:e5:b0:e3:78:f1:f1:7d:70:30:90:49:
08:f1:cf:96:51:e3:e1:30:e4:f3:86:6c:b1:00:fc:ec:b6:54:
1a:f3:12:c4:a7:5a:96:92:a6:a5:03:1e:dc:12:5c:2d:88:84:
3b:98:b8:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:53:30 2025 by rpki-client