Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.mft
File: mHq6b3RFXE-jq-I6qCMGfs_DPEg.mft (raw, json)
Hash identifier: XVGhhsjY99jCJRqV/hCqVxcsQPKArvTbw58A5uvjK7w=
Subject key identifier: A1:8F:CA:9A:B9:79:D5:A2:CB:68:5A:28:A7:7F:E9:F2:CA:67:4C:6F
Authority key identifier: 98:7A:BA:6F:74:45:5C:4F:A3:AB:E2:3A:A8:23:06:7E:CF:C3:3C:48
Certificate issuer: /CN=987aba6f74455c4fa3abe23aa823067ecfc33c48
Certificate serial: 019771BF6492EBD2DE11A1304B05E825D096
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHq6b3RFXE-jq-I6qCMGfs_DPEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.mft
Manifest number: 0142
Signing time: Sun 15 Jun 2025 04:00:57 +0000
Manifest this update: Sun 15 Jun 2025 04:00:57 +0000
Manifest next update: Mon 16 Jun 2025 04:00:57 +0000
Files and hashes: 1: mHq6b3RFXE-jq-I6qCMGfs_DPEg.crl (hash: zQp1A4ZQkGz7UxUm9aWAUDW42SBa6Ttzf6IfWMf7sgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/mHq6b3RFXE-jq-I6qCMGfs_DPEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:bf:64:92:eb:d2:de:11:a1:30:4b:05:e8:25:d0:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=987aba6f74455c4fa3abe23aa823067ecfc33c48
Validity
Not Before: Jun 15 04:00:57 2025 GMT
Not After : Jun 16 04:00:57 2025 GMT
Subject: CN=a18fca9ab979d5a2cb685a28a77fe9f2ca674c6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c7:8e:42:e7:08:26:37:72:41:2c:47:bd:62:
28:91:99:b9:61:c5:a4:9f:fa:e3:99:f7:7c:26:96:
ac:a5:d3:40:3b:6c:43:2f:db:e0:fb:31:76:29:e7:
9d:48:da:7f:a2:33:ec:2e:99:22:af:e2:e1:3e:67:
51:09:25:b4:8a:ec:19:c7:31:f3:f4:96:b6:45:3f:
3c:56:57:c5:d8:d0:aa:86:e5:0e:11:ff:48:ef:44:
bc:5d:e5:78:73:03:ae:7c:fb:09:8f:04:11:68:5a:
13:21:52:78:e6:4b:53:27:88:86:57:01:0e:cd:67:
ca:1b:f5:33:cb:ad:5f:a3:6c:26:4d:69:c6:da:7e:
7c:42:3f:5c:10:2c:06:80:d0:68:c2:ef:d0:02:71:
43:33:65:2a:6d:9e:5f:40:4d:d1:86:1b:9c:3b:45:
55:e6:1e:0f:71:34:c2:31:c7:17:59:eb:ba:e0:5f:
d7:fb:31:88:d7:91:08:af:c5:0e:b9:5f:97:00:dc:
a0:d0:4a:c5:c6:64:32:42:e9:76:f1:87:2b:00:e8:
3e:ea:97:0b:34:a2:ed:db:fd:69:15:13:5f:a8:9c:
58:a7:63:bb:af:fd:0a:08:b6:de:9d:45:91:a2:38:
ef:d0:e0:5d:13:b1:ea:01:6b:dd:47:5e:d2:36:e9:
88:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:8F:CA:9A:B9:79:D5:A2:CB:68:5A:28:A7:7F:E9:F2:CA:67:4C:6F
X509v3 Authority Key Identifier:
keyid:98:7A:BA:6F:74:45:5C:4F:A3:AB:E2:3A:A8:23:06:7E:CF:C3:3C:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHq6b3RFXE-jq-I6qCMGfs_DPEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ea59ec-3e58-4437-adf2-6f022a0e5ad9/1/mHq6b3RFXE-jq-I6qCMGfs_DPEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d7:a1:70:52:b8:44:ce:b3:46:fe:28:30:be:6b:af:18:aa:f1:
a8:31:a8:29:18:ea:76:73:ba:26:3c:bd:4d:0e:70:8b:b0:e4:
b3:c2:5c:55:ab:94:e8:3d:4b:44:a8:a8:55:87:c9:a8:4e:4c:
7d:9b:75:d3:c2:82:ee:f8:d4:5e:26:f7:19:c1:ba:15:5f:6f:
ab:f0:94:b2:72:5c:6a:ae:78:c6:2e:6e:f8:ca:8c:ab:6e:26:
5e:ca:3a:6f:fa:e8:bc:d9:71:ca:de:c3:86:e2:7b:ac:31:7d:
74:38:96:10:b1:20:0d:db:8c:ce:39:a6:d0:75:e2:54:f9:05:
7f:0d:cf:3d:df:30:17:bc:8f:62:03:82:1b:e6:3a:12:7c:86:
c6:33:56:fa:c1:aa:7d:56:56:e5:04:85:82:0d:72:cb:1a:63:
b5:25:a4:ce:41:35:2a:f8:4f:e0:83:82:44:3d:b5:56:9d:ec:
b8:ec:10:b6:5c:ea:02:fc:cf:85:2c:fc:c1:c6:27:54:de:35:
cd:5d:54:17:5b:89:9f:a6:db:fa:db:ea:5d:a0:e3:cf:f1:13:
41:2f:04:95:00:aa:1c:6d:29:aa:35:ce:f0:f2:52:3d:6e:c1:
5f:d0:82:4f:bf:56:ab:60:9b:0d:97:9c:45:6d:d9:3c:53:95:
98:dd:0b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:37:08 2025 by rpki-client