Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
File: a_CO0PpuGTufOlC_cmtB0MMpspc.mft (raw, json)
Hash identifier: FoTgJS7Yn8VHtlDUJpQrS5pNP/JuYS/jmYpIOrhYJHU=
Subject key identifier: EE:AE:66:82:C7:CF:CD:67:8C:89:04:55:8D:69:ED:14:F6:26:66:E8
Authority key identifier: 6B:F0:8E:D0:FA:6E:19:3B:9F:3A:50:BF:72:6B:41:D0:C3:29:B2:97
Certificate issuer: /CN=6bf08ed0fa6e193b9f3a50bf726b41d0c329b297
Certificate serial: 019768F2DB0710682C32DBB5EE97D8ACAFF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
Manifest number: 017C
Signing time: Fri 13 Jun 2025 11:00:35 +0000
Manifest this update: Fri 13 Jun 2025 11:00:35 +0000
Manifest next update: Sat 14 Jun 2025 11:00:35 +0000
Files and hashes: 1: a_CO0PpuGTufOlC_cmtB0MMpspc.crl (hash: QKB5zPR4LzE2KYFGg0WymmRrjlf++SG0k9cZfsIgeYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f2:db:07:10:68:2c:32:db:b5:ee:97:d8:ac:af:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bf08ed0fa6e193b9f3a50bf726b41d0c329b297
Validity
Not Before: Jun 13 11:00:35 2025 GMT
Not After : Jun 14 11:00:35 2025 GMT
Subject: CN=eeae6682c7cfcd678c8904558d69ed14f62666e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3e:6b:cc:19:ea:98:08:62:cd:5a:c3:98:77:
6c:ac:c8:b9:31:2e:45:ea:2e:26:4f:83:00:9e:19:
d8:08:bb:9e:ef:1f:df:6d:76:a6:05:2d:18:47:3a:
77:2d:41:d1:6d:78:4c:ca:4b:6e:d6:98:0b:b3:38:
b0:48:03:06:68:96:39:70:34:be:28:76:03:a8:39:
3a:b2:03:84:21:c8:b9:ad:27:41:d3:2e:01:48:eb:
20:c5:fb:16:fb:27:29:4f:96:46:ed:4e:db:14:a4:
55:06:56:2d:c0:91:3c:48:a9:73:0a:38:bd:eb:e8:
80:21:b9:53:ff:11:b4:4d:cf:95:37:e9:37:b0:76:
da:12:38:4b:d2:8e:62:04:3f:9e:2c:0a:df:8a:c6:
69:32:b4:75:ab:d5:a1:07:58:8d:b6:84:36:a5:a9:
fc:b6:be:ee:f1:1f:4d:dd:fb:70:01:86:27:16:0e:
00:2d:92:5c:57:5e:37:f9:aa:92:e6:1b:94:5d:ac:
63:9c:f8:51:53:f5:57:e6:b1:f2:79:03:8b:b9:d8:
08:03:2d:2a:0f:8a:ed:0e:82:d4:95:e4:58:92:37:
48:14:86:15:82:2e:45:23:c4:a9:61:bd:54:ed:8e:
19:69:71:36:cc:db:d1:65:5c:bb:5a:83:27:c8:39:
fb:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:AE:66:82:C7:CF:CD:67:8C:89:04:55:8D:69:ED:14:F6:26:66:E8
X509v3 Authority Key Identifier:
keyid:6B:F0:8E:D0:FA:6E:19:3B:9F:3A:50:BF:72:6B:41:D0:C3:29:B2:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a_CO0PpuGTufOlC_cmtB0MMpspc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/67a63a-1a03-4822-ac9e-3d4205f5e2d3/1/a_CO0PpuGTufOlC_cmtB0MMpspc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:88:b9:47:f0:4c:1e:4b:dc:97:5d:c9:92:74:93:19:12:e9:
42:f6:09:11:8a:26:dc:89:3f:6a:62:e2:ee:ab:14:e7:32:fd:
26:37:30:4b:db:d7:23:34:81:dd:de:bb:02:1a:af:0e:3b:6c:
64:ae:b9:bf:06:3c:6d:98:aa:37:f6:83:b3:04:9e:78:ad:f1:
41:57:ab:de:0e:89:c7:07:7b:d6:90:27:05:ec:33:3f:e4:c3:
25:ff:fc:85:55:11:3c:22:1b:ab:35:50:44:3d:08:40:d6:cb:
fc:65:89:f8:df:be:f7:5b:29:2a:f3:4c:28:19:21:41:15:6f:
0a:11:6f:a4:1c:08:93:8b:29:3c:ea:26:a9:0e:3a:1e:af:b6:
1e:f6:ad:b2:e1:1f:08:0f:46:78:4c:8c:04:1e:37:db:19:2d:
31:2a:6b:54:2d:1f:3c:72:82:2b:00:af:6c:84:dc:39:f6:b1:
72:0d:80:24:b7:d7:7f:26:c1:67:c0:96:49:28:da:c4:de:b9:
d7:fc:66:c6:83:dd:4f:e1:c0:b2:d9:f4:15:ce:e8:29:de:12:
5a:80:3d:a2:3f:b8:f5:11:b2:e4:0a:e6:13:e6:06:3a:5e:cd:
7f:08:4b:de:6c:70:fd:f7:e2:b8:ba:c9:8d:96:93:92:a5:39:
11:f9:ac:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:18:06 2025 by rpki-client