Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.mft
File: tQ7fyW0rYXiGiVMxQpaeZVZlEqo.mft (raw, json)
Hash identifier: 22pEBoFAg7YA0d/yNCvTH48nH8DUC8hEwWm8gEFmWjo=
Subject key identifier: 35:08:C1:90:DC:C5:9A:CA:66:50:C2:3A:EE:60:7F:97:AF:73:D4:26
Authority key identifier: B5:0E:DF:C9:6D:2B:61:78:86:89:53:31:42:96:9E:65:56:65:12:AA
Certificate issuer: /CN=b50edfc96d2b61788689533142969e65566512aa
Certificate serial: 019749311AC03438D58330891A7038884718
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.mft
Manifest number: 14FA
Signing time: Sat 07 Jun 2025 07:00:44 +0000
Manifest this update: Sat 07 Jun 2025 07:00:44 +0000
Manifest next update: Sun 08 Jun 2025 07:00:44 +0000
Files and hashes: 1: tQ7fyW0rYXiGiVMxQpaeZVZlEqo.crl (hash: Bbt1pBbHcPY5ZuqUrUwvaLe8m59Z++ASp47Enrz+ak8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:1a:c0:34:38:d5:83:30:89:1a:70:38:88:47:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b50edfc96d2b61788689533142969e65566512aa
Validity
Not Before: Jun 7 07:00:44 2025 GMT
Not After : Jun 8 07:00:44 2025 GMT
Subject: CN=3508c190dcc59aca6650c23aee607f97af73d426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:15:e6:49:47:98:69:3d:37:5f:e4:18:a9:6b:
6f:de:f9:11:e5:eb:9e:49:db:c6:64:75:b7:53:b8:
e1:41:24:a8:cd:5f:13:17:60:92:0d:f8:fc:95:d6:
5d:c0:07:82:b2:47:57:1f:a7:d1:99:fd:3d:38:3c:
97:64:4d:8d:e5:e0:fe:24:c0:46:9d:fc:c7:d1:2f:
73:df:62:d5:f0:7a:a5:80:57:88:f5:f8:c2:04:7e:
14:0f:74:ec:90:23:20:c7:90:35:c1:24:6d:60:3e:
f0:70:c1:7e:74:d6:6c:ba:81:2c:4a:20:ab:0b:3b:
46:ff:58:9f:85:91:ee:0c:16:2b:08:37:b2:23:c3:
a2:e6:b7:73:cc:05:9f:db:8b:c5:62:05:29:23:77:
de:85:c3:cb:b5:da:d7:50:23:55:18:bd:25:db:ec:
68:7e:aa:b0:6e:07:97:31:06:bf:55:d3:30:3d:89:
41:52:ac:c8:bb:ea:93:00:69:a7:93:90:eb:e2:fc:
2f:67:f3:f7:5b:e5:d6:1e:a0:7b:22:67:4a:c1:47:
87:b5:d4:6a:b4:b9:2f:29:7c:c2:78:d4:4c:bb:55:
e0:16:1e:ee:34:4f:05:c1:b4:79:bc:be:cb:c8:e1:
b7:28:e6:44:19:d8:03:40:04:58:34:6d:67:22:18:
73:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:08:C1:90:DC:C5:9A:CA:66:50:C2:3A:EE:60:7F:97:AF:73:D4:26
X509v3 Authority Key Identifier:
keyid:B5:0E:DF:C9:6D:2B:61:78:86:89:53:31:42:96:9E:65:56:65:12:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/dc09cf-770c-4172-a6ee-b61384ff0ec2/1/tQ7fyW0rYXiGiVMxQpaeZVZlEqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:4a:37:9b:8b:d2:78:1d:46:26:40:05:ff:c4:26:6a:4d:27:
12:2b:44:5d:aa:e2:20:6c:b7:9a:9e:f1:84:13:a9:3b:f5:85:
0d:82:ff:e6:30:13:74:36:fc:fc:24:d6:29:f9:f5:b5:af:37:
e4:34:e6:32:3f:95:9b:c6:0a:1c:99:d9:6a:f9:ba:47:9f:6c:
f5:9d:58:56:aa:dc:20:cc:91:cf:21:82:f6:59:39:fa:2f:41:
d8:4e:49:37:a7:0f:a0:9f:e3:59:fc:52:8a:9b:2e:10:32:1c:
51:6c:7d:16:9d:47:a1:72:ac:8a:97:9c:91:81:e9:0b:dc:82:
c3:92:9f:8d:ed:ce:14:f1:90:df:89:22:a0:00:1b:c5:fc:15:
54:60:94:13:ee:fb:51:5c:12:24:12:9a:00:cc:29:5f:16:09:
f8:81:e8:6b:0d:6d:a5:4f:32:f9:69:33:9f:1c:1f:16:e2:d7:
c9:7e:dd:0c:8b:ba:03:46:0a:1c:64:83:9e:76:28:af:8c:a2:
ec:6e:da:b3:65:c4:91:00:90:1f:8e:03:f7:be:34:2f:fd:47:
7d:e0:ba:5c:64:43:0d:5d:64:c0:a1:f5:7f:71:70:d0:95:ca:
9c:14:a4:02:4c:e4:05:7b:e4:c8:8d:01:04:b8:c0:bc:bf:10:
6a:88:dc:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:48:11 2025 by rpki-client