Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/4eef1b-c30b-4ed7-af2a-01c356b73f0d/1/JQfjIVuSyGWOv0lfa4fOC6anvSc.mft
File: JQfjIVuSyGWOv0lfa4fOC6anvSc.mft (raw, json)
Hash identifier: fjfPAvkz2iT2gIqsXzO3hz0bJKZeOfebbcNDSlHBMR0=
Subject key identifier: C1:2C:A5:2B:D6:C4:1D:87:35:8B:B8:45:20:95:C6:90:42:99:DF:73
Authority key identifier: 25:07:E3:21:5B:92:C8:65:8E:BF:49:5F:6B:87:CE:0B:A6:A7:BD:27
Certificate issuer: /CN=2507e3215b92c8658ebf495f6b87ce0ba6a7bd27
Certificate serial: 01976BF475E7DDB9EC927896FFE0FFD39470
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JQfjIVuSyGWOv0lfa4fOC6anvSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/4eef1b-c30b-4ed7-af2a-01c356b73f0d/1/JQfjIVuSyGWOv0lfa4fOC6anvSc.mft
Manifest number: 072E
Signing time: Sat 14 Jun 2025 01:01:12 +0000
Manifest this update: Sat 14 Jun 2025 01:01:12 +0000
Manifest next update: Sun 15 Jun 2025 01:01:12 +0000
Files and hashes: 1: JQfjIVuSyGWOv0lfa4fOC6anvSc.crl (hash: FnRNOIkeYrww3xnFeoNCVWOi4cAk1hXqx9lldYfA7JM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/4eef1b-c30b-4ed7-af2a-01c356b73f0d/1/JQfjIVuSyGWOv0lfa4fOC6anvSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/4eef1b-c30b-4ed7-af2a-01c356b73f0d/1/JQfjIVuSyGWOv0lfa4fOC6anvSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/JQfjIVuSyGWOv0lfa4fOC6anvSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:75:e7:dd:b9:ec:92:78:96:ff:e0:ff:d3:94:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2507e3215b92c8658ebf495f6b87ce0ba6a7bd27
Validity
Not Before: Jun 14 01:01:12 2025 GMT
Not After : Jun 15 01:01:12 2025 GMT
Subject: CN=c12ca52bd6c41d87358bb8452095c6904299df73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0b:01:74:81:14:55:ea:82:02:28:3a:36:45:
70:2f:c8:ab:51:f7:9f:42:cb:48:0c:cf:00:54:17:
f7:6b:01:f6:2d:0a:61:a3:e3:55:87:bc:8f:f0:66:
d5:3b:66:e6:7b:1f:0b:7c:52:26:08:55:60:3b:11:
21:b3:63:6a:92:2c:73:98:7f:f1:72:85:30:45:36:
86:57:e6:7e:38:02:ff:b2:3b:7f:8e:8b:8f:d8:04:
07:c2:66:ab:e6:f9:8a:08:84:e0:63:d7:a6:4a:fa:
ac:26:00:bb:18:2c:25:58:52:60:15:d9:5e:e7:88:
67:35:6e:92:ef:28:a6:e9:3a:41:69:7f:79:75:c5:
ab:1c:09:1b:fa:b8:ac:30:69:28:1b:a9:83:f0:8a:
cb:31:40:66:cd:79:6b:0b:50:9e:c7:2c:55:f9:80:
1b:32:8d:b0:e4:5f:22:3a:ee:ee:7f:4c:bb:3f:9d:
3b:ee:d1:6d:ba:e4:02:74:f7:fb:c9:87:4e:90:7f:
e9:80:37:16:84:18:90:89:44:56:ac:29:62:46:41:
3f:8e:b5:90:ce:dd:48:6a:08:47:c3:41:60:51:0a:
26:9f:4a:94:18:3d:b8:e3:44:b5:aa:e6:aa:1f:e3:
83:f2:40:9d:b5:cc:21:d7:07:07:0b:c2:b6:d5:04:
d2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:2C:A5:2B:D6:C4:1D:87:35:8B:B8:45:20:95:C6:90:42:99:DF:73
X509v3 Authority Key Identifier:
keyid:25:07:E3:21:5B:92:C8:65:8E:BF:49:5F:6B:87:CE:0B:A6:A7:BD:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JQfjIVuSyGWOv0lfa4fOC6anvSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4eef1b-c30b-4ed7-af2a-01c356b73f0d/1/JQfjIVuSyGWOv0lfa4fOC6anvSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4eef1b-c30b-4ed7-af2a-01c356b73f0d/1/JQfjIVuSyGWOv0lfa4fOC6anvSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:7b:b1:ed:fe:70:d7:ca:ef:71:c0:41:52:2b:25:cf:42:d5:
75:83:df:71:95:a4:61:7b:12:df:2b:af:9e:4a:76:32:32:52:
37:43:1e:52:d7:c1:94:60:eb:b1:6d:e3:44:5f:ff:eb:ef:ba:
81:77:f0:d1:0f:c0:c4:f1:95:52:b2:11:5b:a4:3d:32:23:79:
22:f4:04:30:dd:a8:d2:1b:d1:6f:47:e1:79:a1:17:c8:58:4f:
f6:c9:a9:1d:b1:ab:24:34:96:60:cc:27:b8:d2:6a:50:fe:34:
13:3a:c3:0c:69:0e:db:d2:e3:01:d2:ce:bd:3d:09:da:b9:4c:
28:67:49:8f:02:5d:64:44:68:b4:7d:9d:9f:e1:c2:ab:2f:59:
0e:2e:af:16:ff:cb:b8:32:04:ff:b6:9d:3a:08:90:cb:33:f4:
20:25:e8:06:f0:19:ee:66:2c:fa:fc:e6:e9:69:13:0e:c0:22:
e6:a3:2f:6c:66:52:28:a3:52:75:f9:2b:dc:a7:00:b6:72:01:
68:41:b8:09:b9:4b:24:bb:1b:41:c5:b6:d4:a8:c1:20:8d:72:
a2:32:f5:87:9f:38:54:b7:a1:7f:1e:f2:74:69:9f:04:32:c0:
cc:7f:ec:9b:ec:17:c0:23:e2:45:64:d9:e2:8a:93:2d:9d:28:
79:d4:76:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:09:15 2025 by rpki-client