Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
File: jR4EozwylZxnL0X0a-EIZLgemEo.mft (raw, json)
Hash identifier: WQEYlt5S9m58f8HzI0rfk7zO7vCu+Og7KejP23arkeM=
Subject key identifier: AF:E8:2B:33:6F:1E:2B:5E:82:43:3F:AA:02:BC:06:19:C7:63:BD:81
Authority key identifier: 8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
Certificate issuer: /CN=8d1e04a33c32959c672f45f46be10864b81e984a
Certificate serial: 0197759C0C18BCA25120208BE867859C39CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
Manifest number: 158E
Signing time: Sun 15 Jun 2025 22:00:50 +0000
Manifest this update: Sun 15 Jun 2025 22:00:50 +0000
Manifest next update: Mon 16 Jun 2025 22:00:50 +0000
Files and hashes: 1: jR4EozwylZxnL0X0a-EIZLgemEo.crl (hash: gFEycg+bcIh7XwAbVSW+DiwMXF1OIqKlFG82a7BiYHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:75:9c:0c:18:bc:a2:51:20:20:8b:e8:67:85:9c:39:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1e04a33c32959c672f45f46be10864b81e984a
Validity
Not Before: Jun 15 22:00:50 2025 GMT
Not After : Jun 16 22:00:50 2025 GMT
Subject: CN=afe82b336f1e2b5e82433faa02bc0619c763bd81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:62:95:da:8f:4d:a1:36:21:10:d2:36:84:20:
76:95:61:68:e0:37:b1:dd:98:f9:92:82:e9:00:bd:
0e:b8:36:60:f1:c5:06:10:9f:3e:60:48:f8:92:34:
88:76:c4:a9:e9:a5:70:ff:cb:66:b2:87:7a:9e:b1:
aa:47:8d:f2:ec:62:2d:0d:f4:9a:fb:0c:f7:3c:9b:
8d:ab:7d:8f:de:44:60:cf:4c:fe:e2:3f:41:fd:6f:
81:a4:15:58:45:2a:1f:07:4c:a2:d4:1e:9c:52:f9:
d3:2d:3a:b4:fb:78:d2:6a:be:8a:72:45:68:db:8b:
0b:82:84:8a:6d:f5:39:7a:dc:6f:4e:dd:cb:58:8e:
2e:fe:43:1e:de:16:7a:dd:cc:d7:9b:88:21:8d:da:
5e:60:f6:6b:1e:92:f3:d8:4d:52:c3:0a:18:5a:0b:
07:03:cd:65:0d:40:92:36:3a:8c:80:01:aa:40:05:
bf:7e:f1:84:10:73:7c:c2:5c:44:9e:ad:ec:89:01:
eb:43:da:d9:78:e9:8b:3e:24:99:1f:7d:e4:7d:41:
64:17:95:25:b0:48:06:d2:d2:f9:fd:08:f0:57:e8:
e5:23:40:8b:b4:74:a6:2a:09:59:6b:8e:8f:20:f3:
1d:94:f8:0d:2c:e9:7b:9c:5f:54:92:a3:d0:c7:8b:
45:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:E8:2B:33:6F:1E:2B:5E:82:43:3F:AA:02:BC:06:19:C7:63:BD:81
X509v3 Authority Key Identifier:
keyid:8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:90:31:3f:7c:1b:94:bf:ca:cd:b9:bc:25:97:24:9c:ff:07:
c5:bb:48:69:9b:21:8d:f8:01:b6:40:d6:f7:ca:96:5d:33:1b:
64:1f:05:09:a9:17:d7:53:c8:13:3e:a2:5d:d3:11:a1:c5:0d:
23:0b:53:93:fd:3a:b8:37:2e:1a:b1:30:0d:8c:3e:e2:bf:cb:
92:b8:94:37:35:cd:df:6f:1d:dd:0b:33:45:f1:b3:ce:61:22:
f4:9d:5a:03:ca:0b:b7:af:d8:5f:e3:ac:00:61:99:88:0f:6d:
38:79:93:b5:8a:d2:a4:58:8c:69:cb:4e:2a:03:25:84:42:4d:
ee:d3:d8:e1:94:56:cc:45:23:5f:44:5e:c2:54:1e:c4:2b:5c:
9a:97:bd:a1:37:07:d5:11:2f:b4:bd:ac:29:0e:57:ca:40:61:
32:2f:d0:79:49:6c:0f:79:8f:a5:96:95:4e:aa:74:43:04:11:
f0:d5:39:fa:ca:c6:47:fa:a0:69:67:58:a9:fe:ce:63:4f:a0:
2d:ca:44:74:cb:97:59:1a:34:c0:bd:f7:1d:41:06:f0:9d:79:
69:17:3a:ff:25:d2:5d:1d:91:40:e9:c4:8c:98:c4:16:e0:a7:
ed:e7:94:52:ee:b1:4c:56:d3:5a:0f:db:9d:14:b5:18:59:e7:
da:a6:f7:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 05:23:52 2025 by rpki-client