Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
File: bLdrU2M4PWjlVeUnClkx2DQOGA0.mft (raw, json)
Hash identifier: gZXck0ZDLU0gtXJPVBmz4Kols0bolytitENqtT+ynVY=
Subject key identifier: 86:93:D4:83:FC:FD:07:20:87:FA:E3:F6:45:EF:3A:85:10:62:66:33
Authority key identifier: 6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D
Certificate issuer: /CN=6cb76b5363383d68e555e5270a5931d8340e180d
Certificate serial: 019769614B0A1C5E1BBF98A41B4B1F74F2B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
Manifest number: 0D1A
Signing time: Fri 13 Jun 2025 13:01:13 +0000
Manifest this update: Fri 13 Jun 2025 13:01:13 +0000
Manifest next update: Sat 14 Jun 2025 13:01:13 +0000
Files and hashes: 1: bLdrU2M4PWjlVeUnClkx2DQOGA0.crl (hash: wN3Kuks01hoP+ItYsJFrjHuwvsRSuo8G61A+9bzCqOc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:4b:0a:1c:5e:1b:bf:98:a4:1b:4b:1f:74:f2:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb76b5363383d68e555e5270a5931d8340e180d
Validity
Not Before: Jun 13 13:01:13 2025 GMT
Not After : Jun 14 13:01:13 2025 GMT
Subject: CN=8693d483fcfd072087fae3f645ef3a8510626633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:27:6a:a7:c5:99:f4:35:54:e3:98:3c:b7:34:
90:3b:f4:4c:0e:ca:f2:b7:06:c9:8d:5f:88:c8:c0:
6c:6a:f2:93:69:d7:f6:fd:2c:10:2b:96:11:b5:53:
e6:1a:01:63:a9:32:39:42:30:ab:ca:1e:c9:df:2d:
5b:82:17:a8:09:61:4c:56:e3:47:14:1b:f3:b2:da:
6a:b1:b2:4a:e6:56:b2:50:39:c9:2c:55:42:59:e6:
39:85:19:73:bc:cf:fa:96:f7:b6:e4:c8:2a:8b:54:
58:0f:42:12:48:ed:ba:b0:e6:df:d8:2e:b2:ef:24:
e6:e9:c0:2f:cf:f5:28:67:63:ca:21:77:56:80:e3:
64:c7:13:5e:15:81:51:0a:0c:93:f7:a1:ba:ca:9d:
0d:39:94:c0:3f:27:90:ea:05:42:30:34:b2:3f:c5:
12:20:d0:03:d1:c3:fa:63:9a:84:15:da:d0:b8:f1:
10:93:c8:a9:6e:39:35:2c:0b:7c:4a:8f:3c:5b:4a:
8c:8a:0a:4c:d0:55:a7:88:69:69:48:c1:c9:54:29:
0a:f8:a5:79:1a:c8:da:f8:fb:bd:7c:dd:d0:e8:d4:
fc:7b:db:4c:fc:e6:9d:c9:e6:79:b5:f1:40:e0:9c:
39:b5:2a:f2:bb:85:a0:92:2f:f1:1d:ca:f6:67:68:
20:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:93:D4:83:FC:FD:07:20:87:FA:E3:F6:45:EF:3A:85:10:62:66:33
X509v3 Authority Key Identifier:
keyid:6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:0e:02:b8:29:bf:6b:c4:6f:d4:7d:bf:07:2d:ff:49:61:28:
54:42:22:38:4f:4c:9d:03:09:98:64:46:8c:3f:21:ab:85:c1:
93:1b:b0:a0:f9:15:52:8f:b8:d6:71:13:95:79:00:3c:96:91:
32:2a:79:7d:d4:0f:dd:22:13:52:3e:b0:71:34:95:83:d0:04:
85:b6:42:98:9d:3e:6e:a7:f8:26:24:43:a7:3b:4c:b2:cb:e1:
4a:cb:b2:4b:3f:e1:a5:97:5e:9b:6b:88:4b:8b:ee:19:de:f1:
73:a3:83:ff:e3:82:86:9c:1d:b0:0f:48:f3:9d:62:07:1e:3d:
92:8a:a3:55:67:a6:62:1d:eb:9b:fc:51:a5:d3:eb:83:51:34:
47:a3:0f:5b:3f:2c:0d:50:76:b1:4b:a7:9c:10:7f:57:e7:be:
4f:7d:9a:fd:72:9d:3d:58:78:30:3b:25:3a:17:98:ec:fa:28:
e6:c1:0f:cd:88:cb:40:b2:2e:ad:37:08:a6:47:81:bb:bd:3e:
14:12:91:9f:7e:d4:d9:54:d7:d2:3d:d1:64:de:e3:90:ed:a5:
02:7a:cb:a7:ef:10:00:c5:66:de:bf:30:f6:3a:15:e8:59:b8:
8f:34:f9:ba:83:8e:2d:a4:6c:cf:32:22:16:be:47:e9:8d:d8:
f1:bb:25:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:20:55 2025 by rpki-client