Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
File: avL7pFrWUxpj0XNQFPaZgH9H-9w.mft (raw, json)
Hash identifier: DvRaLnEBbPQw/Tu8LSEbAuK9LkOCh5SfXaks4eUcw+A=
Subject key identifier: 36:70:36:B7:C3:6E:B8:11:27:ED:F0:95:4F:95:A8:C6:B5:E3:7B:FA
Authority key identifier: 6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
Certificate issuer: /CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Certificate serial: 019779AFD5E83D26A7F5963FFC852106566D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
Manifest number: 05BF
Signing time: Mon 16 Jun 2025 17:00:56 +0000
Manifest this update: Mon 16 Jun 2025 17:00:56 +0000
Manifest next update: Tue 17 Jun 2025 17:00:56 +0000
Files and hashes: 1: avL7pFrWUxpj0XNQFPaZgH9H-9w.crl (hash: XoE+27GuveJIUtRaRPaDWXOCapHeQY4sKC9DOiiFg+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 14:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:af:d5:e8:3d:26:a7:f5:96:3f:fc:85:21:06:56:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6af2fba45ad6531a63d1735014f699807f47fbdc
Validity
Not Before: Jun 16 17:00:56 2025 GMT
Not After : Jun 17 17:00:56 2025 GMT
Subject: CN=367036b7c36eb81127edf0954f95a8c6b5e37bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:61:97:b4:b6:ea:72:9a:0a:36:a9:38:c1:a5:
de:3c:4d:fe:50:b0:c9:78:ea:cf:fc:99:45:b0:12:
7a:cb:be:69:4b:73:3e:d3:e3:f9:f1:94:59:42:96:
e5:1e:da:69:9b:67:ae:e8:61:a5:05:be:c4:2e:e6:
fe:a0:65:79:9b:26:5e:40:58:8d:ed:37:f4:44:e9:
67:5f:cf:bd:a6:0b:9b:75:b9:ea:5d:2b:0d:b6:ad:
fe:64:a5:d4:39:50:fc:ce:c5:61:9f:89:38:67:3f:
42:af:02:04:05:91:d6:de:1f:8d:f4:29:86:5a:99:
2a:6f:76:12:bb:6f:84:fe:5a:6d:2e:85:b9:9b:bb:
27:55:0f:b0:ac:3f:03:98:c7:d9:96:f8:ec:14:e7:
6e:b5:74:25:0a:9d:47:49:ab:a2:f4:70:09:91:d7:
d8:9f:b7:4f:4d:c8:89:c5:de:d2:5a:4e:ac:5e:45:
a3:ae:b5:01:66:21:e1:ad:ba:5f:68:4e:a5:36:d9:
d2:ca:be:dc:4e:34:76:bd:9f:d6:d7:50:25:15:ce:
9f:ae:08:3f:6a:ea:78:1f:94:b9:76:21:a6:6f:94:
f1:d2:6b:ca:fd:dc:88:4b:ef:6e:7d:3b:55:be:b9:
a7:01:ac:e8:07:1e:17:92:8b:fa:f3:c7:c6:fd:2f:
eb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:70:36:B7:C3:6E:B8:11:27:ED:F0:95:4F:95:A8:C6:B5:E3:7B:FA
X509v3 Authority Key Identifier:
keyid:6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:4a:e6:0a:a0:52:17:6f:ed:a3:ae:54:30:e7:2d:d1:1f:e9:
b8:97:2e:60:c2:99:d0:37:18:d8:ac:7f:da:9c:0d:db:64:61:
6a:ec:7d:9a:3b:ee:b1:59:cc:8a:d9:6e:cf:31:c0:48:07:90:
36:53:5f:5f:b9:5e:70:93:d8:b2:dd:ea:1f:48:bc:9e:9b:8e:
6b:4f:36:77:16:cf:a6:da:e6:86:71:87:81:e6:50:ac:ce:26:
69:22:66:0d:a9:42:6b:fe:81:e7:1b:c8:3a:f6:ca:39:a4:f6:
e8:ab:b7:ca:51:0f:a6:37:94:5f:93:0a:ae:66:f1:ed:48:44:
fb:9d:3d:59:c3:04:87:cc:c6:cd:68:db:f4:6d:5c:67:da:3b:
e4:a3:80:cb:22:bb:85:fc:c4:0f:5f:22:44:12:50:4f:58:b3:
80:e0:f2:e6:66:44:59:ef:e7:65:a3:8d:3b:ff:f6:33:a5:22:
12:bd:10:e8:cf:c4:45:f7:9d:93:0c:64:c9:b6:af:d2:61:29:
1e:45:93:75:50:1f:4d:84:3b:3d:0a:90:e5:aa:6f:4b:a9:30:
97:3c:c1:6d:1d:2e:49:7a:17:89:97:45:4e:92:fa:af:d1:7b:
fd:2e:9e:98:32:43:8d:d0:21:52:b7:9d:5c:8d:22:37:32:af:
67:fb:f5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 22:07:08 2025 by rpki-client