Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
File: coCW6KzXbpqhfz62eAQG49pWPtI.mft (raw, json)
Hash identifier: RnlVYqahSxtVvH9KMl1Tc0OanXfdGD/JGxPnu2DlSQY=
Subject key identifier: 23:A2:41:18:07:32:73:4F:95:54:E1:A7:3B:9A:AA:DB:52:43:55:1B
Authority key identifier: 72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2
Certificate issuer: /CN=728096e8acd76e9aa17f3eb6780406e3da563ed2
Certificate serial: 01976C2B263464BAD14EFB2F6098F6039CF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
Manifest number: 1448
Signing time: Sat 14 Jun 2025 02:00:56 +0000
Manifest this update: Sat 14 Jun 2025 02:00:56 +0000
Manifest next update: Sun 15 Jun 2025 02:00:56 +0000
Files and hashes: 1: coCW6KzXbpqhfz62eAQG49pWPtI.crl (hash: 1GMyhePZEaoeRmULPR7YKzIzIHne4zGyGcjVON4LIks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2b:26:34:64:ba:d1:4e:fb:2f:60:98:f6:03:9c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=728096e8acd76e9aa17f3eb6780406e3da563ed2
Validity
Not Before: Jun 14 02:00:56 2025 GMT
Not After : Jun 15 02:00:56 2025 GMT
Subject: CN=23a241180732734f9554e1a73b9aaadb5243551b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:cb:e7:19:61:af:e7:a1:cd:a8:0f:da:2c:f9:
3c:71:15:9a:d3:f1:cd:56:86:35:bd:7f:a4:b4:f3:
0f:0d:84:1d:d5:62:83:9e:56:77:da:8f:fd:68:f8:
44:80:1d:e9:ea:b2:ed:a1:0b:57:9b:46:95:d3:2b:
e8:dc:5a:71:fc:69:b2:5e:b4:ae:55:10:94:c4:5f:
d4:f8:22:8b:81:12:09:dc:6e:51:52:20:60:34:53:
1e:87:cc:7e:bf:29:e9:14:f5:8b:b7:25:6a:64:7a:
85:ee:c8:97:0f:99:3b:02:ca:ec:7b:55:49:4c:8f:
01:79:03:4f:ca:21:c3:a3:24:b3:e5:2b:e5:9d:d9:
93:f7:c0:9c:7f:fd:62:32:db:f1:c1:dc:61:2c:88:
37:96:d2:9b:f4:b3:9e:a2:5c:bf:da:a2:98:61:56:
71:b1:d8:4a:8c:b5:0d:57:8b:9d:c6:c8:44:18:6a:
cb:4c:93:ff:d3:4d:d9:cd:1c:7a:9d:98:19:44:ad:
16:ba:9b:e5:0f:b0:dd:e0:8f:ad:99:9b:76:68:c6:
03:8c:5a:d7:74:c7:e9:71:5a:73:4b:34:e6:9c:32:
27:08:0d:d1:41:e8:8b:f5:4e:e7:84:25:b0:3d:6f:
b5:8f:23:5e:6d:54:82:ad:82:3b:e5:4e:03:62:65:
7e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:A2:41:18:07:32:73:4F:95:54:E1:A7:3B:9A:AA:DB:52:43:55:1B
X509v3 Authority Key Identifier:
keyid:72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:62:36:c2:71:96:db:42:5a:a4:44:10:93:e1:9d:27:20:4e:
d2:2c:cf:67:57:65:15:1f:62:e2:86:67:bb:24:1a:7f:f5:0e:
38:db:93:7f:be:72:56:0c:42:33:f9:7a:c3:31:13:4f:52:81:
7e:6d:6f:47:dd:7b:cb:af:ea:be:41:1c:91:0c:f2:92:34:90:
be:05:4c:67:a3:62:1e:bf:e9:00:8d:9f:5f:fe:06:4a:fc:14:
a7:6b:8d:5e:d9:a0:f0:36:fe:2a:d4:b9:5b:48:1c:f3:d1:c6:
ab:02:51:d6:df:b6:4d:30:45:2c:50:ad:94:60:36:42:8d:b4:
f8:88:fc:eb:95:fa:bb:3c:b5:bb:6d:d7:de:75:9d:d6:57:48:
00:c1:7a:73:fd:09:0f:eb:eb:ac:08:01:ec:f1:0e:a4:95:7b:
59:7e:b5:c8:f8:55:5d:0b:1a:26:7f:a4:02:ae:62:20:23:b2:
fa:5e:42:b9:67:ff:b2:27:ad:8a:50:d1:ea:5a:5a:8d:69:61:
78:9f:ee:d7:b3:3b:e1:2c:56:b2:a8:7c:9a:9e:04:5c:cc:99:
1e:3d:3e:ce:96:16:f6:ca:6f:d3:4e:38:97:de:a0:67:64:af:
b4:5d:6b:f7:31:62:8c:c3:f6:7b:8b:77:09:aa:de:ec:f2:27:
ee:b2:7e:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:47:51 2025 by rpki-client