Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
File: rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft (raw, json)
Hash identifier: IxVZZycS8XAUVD5fR6jv0s/UWaxMY+VZmhadASDAC+E=
Subject key identifier: 38:96:C5:8C:0C:36:DD:DC:F2:02:5C:74:BF:79:E9:FA:C8:6A:97:DA
Authority key identifier: AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
Certificate issuer: /CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Certificate serial: 01977AC233DB3001107358649D7F27707E4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
Manifest number: 0A93
Signing time: Mon 16 Jun 2025 22:00:36 +0000
Manifest this update: Mon 16 Jun 2025 22:00:36 +0000
Manifest next update: Tue 17 Jun 2025 22:00:36 +0000
Files and hashes: 1: rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl (hash: 2AgMy5epw3isiVIC3oeE2ur9gF0rytzwh+xRLDMrLCk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 14:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:c2:33:db:30:01:10:73:58:64:9d:7f:27:70:7e:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Validity
Not Before: Jun 16 22:00:36 2025 GMT
Not After : Jun 17 22:00:36 2025 GMT
Subject: CN=3896c58c0c36dddcf2025c74bf79e9fac86a97da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a6:c6:dd:f7:8f:fc:6d:3b:43:dd:7c:ec:74:
6d:de:88:ee:39:1a:31:53:f2:c4:4e:3c:1f:e2:dc:
4a:5d:40:af:4a:69:99:e5:8e:ab:73:53:92:aa:f6:
b7:54:ab:cc:88:46:e4:3d:8a:96:dc:69:7e:30:cc:
76:15:01:27:38:75:c7:3f:1f:7a:c6:70:f5:f5:3b:
35:5c:3b:99:26:2d:29:42:39:b1:03:03:db:b2:3a:
1d:9e:a7:c9:48:71:14:2a:74:c1:21:77:93:b3:ce:
27:7a:ff:aa:75:4c:50:26:5e:33:ba:6d:4a:ab:d2:
4b:e8:b8:2a:18:fe:fd:ea:bb:65:df:94:c7:20:77:
e7:11:31:d1:e5:79:17:31:66:05:be:20:0b:b5:b6:
80:21:b4:03:ca:40:83:57:86:65:73:e3:27:f7:24:
3e:ff:6e:d6:01:cc:35:4e:34:79:b7:51:53:15:6a:
ce:5b:53:13:1d:47:5a:76:c7:90:5a:1a:87:f4:83:
08:f5:e3:3f:20:d7:f9:57:6f:d1:f6:c7:fc:c1:a1:
b4:bd:6e:ae:3b:d7:e7:11:d5:60:9a:78:7a:e6:4f:
3a:bd:12:0c:ff:4c:b6:34:d7:14:cd:26:4a:21:3a:
bc:a6:60:30:0c:6b:70:af:4e:8a:88:a3:99:5c:8f:
e2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:96:C5:8C:0C:36:DD:DC:F2:02:5C:74:BF:79:E9:FA:C8:6A:97:DA
X509v3 Authority Key Identifier:
keyid:AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:27:f1:70:90:6e:1a:79:06:96:14:e2:50:f6:b0:43:49:47:
8f:39:fa:e9:c6:81:34:20:2a:24:6d:54:48:ec:89:53:65:14:
95:d0:c6:40:8a:69:e7:5d:b4:39:18:c9:18:0d:5a:ac:40:83:
b0:e8:f5:d6:87:0f:38:b7:6d:2f:a8:78:1a:48:70:7f:8b:35:
b1:e1:15:23:9d:59:03:ce:96:2b:c7:aa:91:50:01:17:9a:cf:
60:9a:05:2c:cd:aa:b9:83:63:f9:8f:0c:b9:78:a8:f9:b6:73:
9e:c0:ab:a0:b0:8f:65:a2:52:75:1f:9f:51:41:48:63:a4:ec:
83:3a:cb:e0:3b:87:82:45:02:51:c3:f6:41:8c:fa:3a:fb:62:
9f:18:9d:f1:67:a3:c0:e2:56:df:df:64:12:03:8e:8f:98:23:
c3:a8:bc:f1:60:6c:b8:86:96:23:92:1c:ce:7f:63:35:48:eb:
be:f8:4e:fe:4d:5b:4d:06:b1:ec:50:fe:1c:d4:5a:fe:77:05:
d6:36:6a:bf:78:9a:0e:11:e5:1e:44:30:3b:2b:ab:ce:a0:fb:
d9:5e:00:a6:17:33:34:3d:77:2c:73:de:f8:a0:41:3e:64:b9:
d0:50:30:48:06:e2:e7:a4:57:f8:dd:04:04:03:fa:e9:da:ee:
8f:22:17:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 00:50:06 2025 by rpki-client