Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
File: cnOYybFuqY0iKkwpyvey68mE8oI.mft (raw, json)
Hash identifier: lA3n3GfGbVKGyBM1zhbwYdtqSSn9hkgvZZ0YVhh/fN4=
Subject key identifier: 77:87:AD:AA:64:B8:0C:9D:7A:82:75:D6:39:B9:A8:68:E5:E4:F9:D7
Authority key identifier: 72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82
Certificate issuer: /CN=727398c9b16ea98d222a4c29caf7b2ebc984f282
Certificate serial: 01974C325C13576E3DC17073E5B9F922DBCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
Manifest number: 0116
Signing time: Sat 07 Jun 2025 21:00:58 +0000
Manifest this update: Sat 07 Jun 2025 21:00:58 +0000
Manifest next update: Sun 08 Jun 2025 21:00:58 +0000
Files and hashes: 1: cnOYybFuqY0iKkwpyvey68mE8oI.crl (hash: y2Zeemxt568s2fYlpL/tjZlM5wnDRTgwSzbPE3496x4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:5c:13:57:6e:3d:c1:70:73:e5:b9:f9:22:db:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727398c9b16ea98d222a4c29caf7b2ebc984f282
Validity
Not Before: Jun 7 21:00:58 2025 GMT
Not After : Jun 8 21:00:58 2025 GMT
Subject: CN=7787adaa64b80c9d7a8275d639b9a868e5e4f9d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:26:0e:db:6c:dc:ea:fe:34:1e:5d:5e:2f:c0:
41:06:0a:dd:de:1e:3c:32:58:f1:71:5c:aa:78:07:
1f:88:45:cf:e5:4a:60:d2:a0:dc:e1:13:b7:b6:fc:
df:f3:83:ad:7a:f0:54:cb:c7:6a:07:a8:6d:f1:60:
ba:38:8b:1c:ef:84:70:e3:d6:a7:47:0f:75:a4:9d:
f3:b7:37:1b:1d:28:39:7e:6a:82:9e:11:4b:e4:77:
c2:96:32:9e:98:ef:cd:98:0f:25:37:0c:e6:03:76:
68:ef:18:9c:85:a2:01:7c:59:15:fd:fa:d2:c5:97:
52:ae:cd:7b:2c:42:20:ec:3b:90:70:f4:44:7e:65:
0b:d8:24:2a:ac:0a:81:cb:38:50:4c:47:24:d5:49:
06:4b:39:4a:0a:7d:8c:fe:68:39:f7:08:35:70:8c:
19:7f:4a:e6:6e:88:26:8c:61:4a:78:16:96:92:6d:
a8:08:a6:72:c9:58:65:70:c5:21:d1:4d:f6:07:d5:
25:ab:81:6d:12:3a:ed:9b:cf:3d:87:95:6f:1b:3f:
fc:89:43:f2:bc:1e:65:02:44:1d:5a:60:b4:fa:4d:
6e:46:25:5f:2d:55:a2:38:7f:5a:dc:14:4e:58:89:
02:72:1a:a4:dd:bb:85:ed:3d:ff:c8:6d:37:70:51:
13:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:87:AD:AA:64:B8:0C:9D:7A:82:75:D6:39:B9:A8:68:E5:E4:F9:D7
X509v3 Authority Key Identifier:
keyid:72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:a9:0d:1a:db:34:ae:f8:38:30:04:73:62:cf:85:9b:35:d1:
9b:9b:5f:20:6a:2c:a0:35:52:13:c2:1f:c4:87:01:8a:68:8b:
d9:5b:da:78:9e:55:47:4f:a9:a5:55:cd:40:2d:e7:cc:11:c7:
87:82:d6:b6:76:57:a6:29:09:5b:98:60:12:fa:d9:ad:77:51:
40:b7:34:db:3f:d7:80:06:5d:5d:aa:52:c7:71:d3:7f:48:e0:
5f:f4:02:99:b1:e8:09:aa:3d:11:b5:51:08:ab:35:6f:be:a1:
e3:fe:65:e6:d7:99:ae:19:aa:49:95:72:59:d8:6f:23:7f:93:
07:48:58:07:6e:00:a0:d6:70:0b:f2:eb:7d:b3:87:e3:b7:a9:
76:2f:82:0a:a3:24:dd:2b:b3:a9:cb:69:29:4b:ef:09:f9:b0:
bd:73:70:35:d0:55:6d:fd:e8:fc:73:53:a4:00:a0:b6:39:b3:
34:d3:e4:5e:34:ff:e7:9f:e3:ae:cc:84:bf:de:83:93:08:a4:
ea:4b:42:01:69:af:d5:0e:f3:da:49:c6:e4:c5:05:37:30:5e:
54:97:5d:81:79:ba:ea:4a:c1:5d:9d:1b:e8:a0:d2:57:1d:0d:
92:ec:db:d5:75:53:24:7b:bb:f8:d8:42:a9:44:21:a8:02:53:
61:02:74:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:52:29 2025 by rpki-client