Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
File: r4poziKkwZ8XcA9izPi7bC2vUeE.mft (raw, json)
Hash identifier: GNIgn3eUhpWLNlPdb57912ARsR7YMKXZ5Kf1h/YLgLw=
Subject key identifier: 1C:DE:B4:DF:40:AB:D0:AF:55:DA:24:CE:6D:8E:EB:C7:F2:64:01:F3
Authority key identifier: AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
Certificate issuer: /CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Certificate serial: 01976C2B4A5431F7B66A850C3D8680EE811D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
Manifest number: 0F0A
Signing time: Sat 14 Jun 2025 02:01:05 +0000
Manifest this update: Sat 14 Jun 2025 02:01:05 +0000
Manifest next update: Sun 15 Jun 2025 02:01:05 +0000
Files and hashes: 1: r4poziKkwZ8XcA9izPi7bC2vUeE.crl (hash: mTXsH17Nuc4pNwuapKfYwHaDraQEqI9waO73pv/N748=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:4a:54:31:f7:b6:6a:85:0c:3d:86:80:ee:81:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Validity
Not Before: Jun 14 02:01:05 2025 GMT
Not After : Jun 15 02:01:05 2025 GMT
Subject: CN=1cdeb4df40abd0af55da24ce6d8eebc7f26401f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:68:ed:39:74:d2:cf:49:82:a0:4f:03:17:b1:
d8:84:23:78:73:de:8b:11:05:54:fc:e6:65:fe:f2:
9a:d8:50:88:4a:3e:9b:db:8b:46:95:66:ce:94:f9:
e0:cc:5b:eb:35:ef:4e:a3:06:e1:47:74:8f:a0:cf:
f9:30:9c:de:66:49:c7:33:fe:b9:17:35:dc:04:32:
72:91:a2:20:72:89:f7:0a:fe:c7:8d:d6:5b:33:98:
04:46:e9:20:94:12:e3:51:73:6c:74:33:a7:8d:5f:
85:30:9e:c6:95:9e:94:18:2e:4d:97:67:7c:f7:ea:
53:a9:b7:4c:70:d0:bf:fe:b4:b3:ca:95:a7:10:64:
bc:a8:91:e8:68:c2:c1:be:a4:9d:3f:8a:cf:41:56:
86:d9:b8:84:a2:53:64:91:68:48:98:1c:d2:46:e8:
0e:f0:09:d0:9d:34:28:34:41:30:4c:03:7a:bb:b2:
8e:a3:0b:d2:e1:94:f6:91:d0:4d:ed:0e:ca:2f:eb:
bc:3d:3c:fa:34:9e:a1:65:d7:1e:0d:0c:cb:1e:84:
fc:f9:03:f6:b7:eb:ce:90:4d:f2:3e:31:d3:cf:64:
fa:3c:e5:95:1c:86:9b:be:b4:e8:15:92:fe:a0:b6:
18:9a:aa:5a:b4:cf:93:46:59:92:dd:68:2d:3e:46:
6d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:DE:B4:DF:40:AB:D0:AF:55:DA:24:CE:6D:8E:EB:C7:F2:64:01:F3
X509v3 Authority Key Identifier:
keyid:AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:ff:9b:29:79:c6:c8:05:62:3c:fd:46:c5:b2:e7:b8:05:fb:
23:0f:50:4d:dc:05:1b:07:74:17:35:f0:40:8f:da:4a:33:68:
e3:02:36:ce:3f:03:f8:f3:dd:b8:6a:6e:c7:20:1f:4a:68:29:
80:3b:70:d6:19:83:57:ad:6c:de:8e:19:be:81:e9:b7:12:8d:
7f:00:8a:47:39:85:2a:79:01:e6:ef:00:52:10:0b:76:43:33:
8d:5c:0b:13:d2:66:11:f4:9a:9a:f5:85:dd:3f:8d:d0:16:5a:
9e:09:a6:00:1d:96:a3:33:4e:22:76:f7:9b:23:d9:0a:f7:ff:
40:e8:9e:39:69:96:81:c4:78:0d:3d:f2:7d:b9:f9:3e:bb:0a:
05:e8:e9:4a:79:e7:cd:90:53:70:87:fe:2f:03:73:1b:54:59:
e2:a3:de:cf:08:e5:48:39:04:60:cf:7d:00:b6:69:b4:de:e2:
44:9a:eb:bc:ac:51:8d:46:54:07:10:6e:e8:d8:d9:a0:02:10:
08:ba:f8:f4:17:65:be:f4:26:d0:87:8c:14:b3:4e:c3:28:f8:
ea:31:58:a1:95:3e:01:69:91:a3:f6:21:eb:4a:c8:3a:4e:0a:
c9:e7:58:e3:16:7f:5e:f3:f2:7c:ba:69:7a:8e:04:bc:40:e4:
5b:3f:68:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:13:36 2025 by rpki-client