Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
File: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json)
Hash identifier: oiWXUyqaTGpeNLftrWTRybe4Wtf8g+dHFH/dvG6CGJ8=
Subject key identifier: 1A:5F:43:DA:E4:53:F7:32:F9:E2:3F:E9:3D:97:4A:2C:CA:BE:CC:26
Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
Certificate issuer: /CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Certificate serial: 0197718841E2DAFF7E88E259C70F100C80EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
Manifest number: 0D01
Signing time: Sun 15 Jun 2025 03:00:44 +0000
Manifest this update: Sun 15 Jun 2025 03:00:44 +0000
Manifest next update: Mon 16 Jun 2025 03:00:44 +0000
Files and hashes: 1: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: FYP7YCQFy0zdqBUjhwEycRzvramRsEp3aLbGa2+It9g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:41:e2:da:ff:7e:88:e2:59:c7:0f:10:0c:80:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Validity
Not Before: Jun 15 03:00:44 2025 GMT
Not After : Jun 16 03:00:44 2025 GMT
Subject: CN=1a5f43dae453f732f9e23fe93d974a2ccabecc26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bd:50:ab:89:62:cb:19:77:43:95:a2:c2:47:
ab:15:d1:74:14:84:ef:89:03:67:44:03:b0:bf:4d:
91:44:ea:05:9c:d5:d2:f5:47:06:5a:63:5c:d2:8c:
91:64:7f:d6:64:75:bd:91:73:18:93:17:1b:d0:c4:
f3:8d:46:44:4c:5f:fe:04:7d:e9:ea:38:70:2d:db:
28:ae:99:75:43:27:73:07:82:17:51:50:b7:61:05:
fc:55:35:f4:ba:fa:df:f4:27:c5:bf:81:a5:a3:8c:
19:95:e2:fb:88:92:d2:c6:94:04:45:f7:c0:e0:56:
6c:46:8d:b0:00:3a:a2:ea:05:1b:bf:a6:4a:33:9d:
ea:80:45:20:d5:1a:d4:0d:f5:32:8a:7c:4e:e0:e2:
c0:c0:1d:3e:59:38:03:ea:e3:7f:42:da:4f:9e:68:
15:f7:db:3d:47:2b:98:fe:1d:87:43:66:26:a3:0e:
ae:f5:64:ba:1e:08:31:7a:f8:5e:9a:1e:77:b3:85:
20:27:98:6b:3e:71:49:f3:9c:91:e1:84:47:3b:4c:
03:d7:cc:e7:70:f8:ce:19:ec:c4:b7:0b:45:53:df:
b6:74:9e:fa:f2:f9:2a:39:ba:68:19:70:06:7d:d3:
66:7b:cf:2f:e1:21:85:70:fc:0b:22:0a:e7:94:70:
d7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5F:43:DA:E4:53:F7:32:F9:E2:3F:E9:3D:97:4A:2C:CA:BE:CC:26
X509v3 Authority Key Identifier:
keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:e6:f5:52:fe:3f:aa:9a:ec:9d:0e:4e:40:85:e7:cb:74:7f:
e8:1f:cf:73:ae:e9:0a:30:5b:1d:16:c6:d4:fc:e3:ea:51:74:
b5:c0:77:81:5c:c7:02:0c:46:14:62:21:95:f7:5f:8d:67:d4:
46:3e:c5:4c:69:fa:6a:dd:81:98:4a:50:bb:af:e6:66:e6:29:
ec:7b:dd:88:4c:f3:c1:18:34:73:1d:96:35:90:cc:c7:16:df:
b7:4b:76:3a:20:98:69:f5:c3:a2:e0:9d:93:72:15:a7:63:45:
6f:fe:1b:e1:53:64:79:45:f4:99:7f:9e:ee:c1:97:55:ca:a1:
db:ee:a2:f3:80:a9:62:11:4b:a3:d7:36:e0:5a:0f:26:20:ff:
b0:1d:d1:d6:4b:71:f2:ac:fa:35:1f:45:22:ca:38:3a:ee:68:
9d:3d:17:9e:c9:92:0b:37:84:76:33:4a:6b:5c:1b:4a:89:0d:
32:86:e4:86:ef:f6:26:b0:89:04:07:a9:ad:a6:36:ec:59:2c:
93:c8:6f:0e:79:b2:89:8e:cd:fd:24:4e:2c:56:43:ab:82:e8:
b9:2d:a6:49:8b:c9:5a:c5:60:40:7d:61:1a:96:63:98:77:ee:
d8:1e:40:84:04:25:21:4d:24:ed:56:18:6e:b5:c8:a7:0d:66:
d6:e5:1c:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:01:01 2025 by rpki-client