Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
File: JUIq59QSPce_KI8TeeQ39uHLKpo.mft (raw, json)
Hash identifier: SBf4JH5dYf0rssLMiUpgMoDOR88xvZ/LByL75dywa+0=
Subject key identifier: 04:04:A6:27:1D:9F:8A:7F:B8:56:59:2F:EC:0B:4F:92:7C:18:F8:95
Authority key identifier: 25:42:2A:E7:D4:12:3D:C7:BF:28:8F:13:79:E4:37:F6:E1:CB:2A:9A
Certificate issuer: /CN=25422ae7d4123dc7bf288f1379e437f6e1cb2a9a
Certificate serial: 01976A05F8D642B3E2020B2EE03C34A09011
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JUIq59QSPce_KI8TeeQ39uHLKpo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
Manifest number: 0F09
Signing time: Fri 13 Jun 2025 16:01:05 +0000
Manifest this update: Fri 13 Jun 2025 16:01:05 +0000
Manifest next update: Sat 14 Jun 2025 16:01:05 +0000
Files and hashes: 1: JUIq59QSPce_KI8TeeQ39uHLKpo.crl (hash: vKhEyoWpCK6jTL4eyS50mYaLfmFvSj4Su13N7UEvj1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
rsync://rpki.ripe.net/repository/DEFAULT/JUIq59QSPce_KI8TeeQ39uHLKpo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:f8:d6:42:b3:e2:02:0b:2e:e0:3c:34:a0:90:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25422ae7d4123dc7bf288f1379e437f6e1cb2a9a
Validity
Not Before: Jun 13 16:01:05 2025 GMT
Not After : Jun 14 16:01:05 2025 GMT
Subject: CN=0404a6271d9f8a7fb856592fec0b4f927c18f895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ab:18:d2:aa:7b:0b:95:06:e7:cd:81:d7:dd:
16:90:c4:33:7b:13:5c:85:2b:48:d8:f2:33:a1:c1:
cd:c4:7e:2d:3a:bb:08:20:75:ae:88:de:14:51:67:
d3:d0:0a:2a:01:97:61:d0:30:25:20:0f:d3:ca:58:
b8:80:c5:46:30:71:2c:9a:8d:da:fd:08:15:cb:80:
8c:ca:98:ce:5a:8b:5a:c7:5f:df:e5:bd:4d:54:6f:
7a:f2:f8:7a:b9:0a:88:ff:30:b3:d1:24:cf:4d:33:
72:af:db:6d:a9:62:76:d5:58:d4:50:a2:ad:99:62:
84:68:cd:4e:43:3e:10:df:8f:b3:30:3a:78:c5:a8:
33:e8:d9:84:cd:b2:f4:a6:d8:11:c3:08:d2:8c:ab:
ef:b6:34:9a:f5:6f:b5:6c:db:d8:fe:96:f5:60:f6:
07:9e:0c:17:21:93:bb:90:d8:5a:75:02:fc:56:ed:
64:4b:9d:de:b4:e4:39:1f:43:f1:ee:e9:03:b9:ad:
89:4c:68:46:49:f0:c1:44:13:c8:fb:dd:4b:25:a3:
28:d6:ba:74:85:82:47:89:f7:84:e9:5c:5d:b0:9d:
86:19:95:a2:63:60:0d:0c:aa:47:a9:d5:62:e8:3e:
20:62:ec:0f:fe:db:69:a3:21:f7:60:c9:05:6a:dc:
b8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:04:A6:27:1D:9F:8A:7F:B8:56:59:2F:EC:0B:4F:92:7C:18:F8:95
X509v3 Authority Key Identifier:
keyid:25:42:2A:E7:D4:12:3D:C7:BF:28:8F:13:79:E4:37:F6:E1:CB:2A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JUIq59QSPce_KI8TeeQ39uHLKpo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/7bdd71-1553-47e4-aa00-faa6becdaf05/1/JUIq59QSPce_KI8TeeQ39uHLKpo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:fe:86:d6:71:c0:63:85:71:ae:61:8d:91:41:5b:56:82:06:
88:e7:de:bb:c7:02:6c:18:84:de:7c:22:00:0f:57:2f:ad:81:
9e:75:63:66:53:40:44:67:df:68:0b:40:24:0c:04:3e:2b:78:
d4:81:36:54:a0:1a:b9:64:76:fe:9c:00:52:05:c9:76:7f:20:
59:f6:78:f3:32:c9:48:4c:24:84:51:f2:4f:06:b8:c3:9c:40:
ab:95:c6:2e:b2:41:31:49:02:e1:d4:c8:c4:a6:b9:b4:ff:b2:
93:bb:08:7c:5b:d7:6e:fe:10:39:75:6a:6e:dc:fe:c4:ff:5f:
4a:4b:73:19:e0:4a:37:db:f3:0a:f2:ef:66:f8:99:62:6d:22:
1e:01:5d:3a:71:e9:c5:ea:86:42:2a:c8:19:54:59:82:fb:41:
b4:25:b6:2e:ef:2d:48:ae:4d:01:94:36:bc:50:7b:d7:6b:0b:
89:c5:5f:93:f9:92:0b:f2:3b:00:c2:bc:e2:d6:14:f6:36:b3:
3c:43:7b:c7:ea:9e:b4:09:83:26:91:e9:6d:4e:f9:b7:b7:6f:
88:2c:f1:63:9f:9c:4d:a7:1a:a9:9f:48:4c:c4:22:e0:87:27:
0d:f0:4b:9c:08:c3:7e:94:ac:76:47:06:ac:8c:58:b1:ad:0c:
7a:b7:77:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:29:43 2025 by rpki-client