Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.mft
File: Mk2diwUEVVZ2uRjuOR3BU6mH44o.mft (raw, json)
Hash identifier: o3Gq0auB1jjNLSQITlyknOD1uA9w2BTzQ8mbU9hxpMY=
Subject key identifier: 44:73:60:0F:F8:1D:0F:DF:4B:1B:5D:7C:56:4E:81:A0:0D:BF:EF:EB
Authority key identifier: 32:4D:9D:8B:05:04:55:56:76:B9:18:EE:39:1D:C1:53:A9:87:E3:8A
Certificate issuer: /CN=324d9d8b0504555676b918ee391dc153a987e38a
Certificate serial: 01976D3E0A43B2CB3433412E6CB598DBB81C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mk2diwUEVVZ2uRjuOR3BU6mH44o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.mft
Manifest number: 0FB3
Signing time: Sat 14 Jun 2025 07:01:11 +0000
Manifest this update: Sat 14 Jun 2025 07:01:11 +0000
Manifest next update: Sun 15 Jun 2025 07:01:11 +0000
Files and hashes: 1: Mk2diwUEVVZ2uRjuOR3BU6mH44o.crl (hash: ZigwVRYJ0OZk1liSHvXOOhh991qT+QDZfXyyyX0iABM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mk2diwUEVVZ2uRjuOR3BU6mH44o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:0a:43:b2:cb:34:33:41:2e:6c:b5:98:db:b8:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324d9d8b0504555676b918ee391dc153a987e38a
Validity
Not Before: Jun 14 07:01:11 2025 GMT
Not After : Jun 15 07:01:11 2025 GMT
Subject: CN=4473600ff81d0fdf4b1b5d7c564e81a00dbfefeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a4:48:14:fc:70:6f:5f:8e:51:23:ad:ab:0f:
f9:c5:d7:8b:29:44:cc:16:d6:a9:67:72:fc:2e:39:
5b:e1:ae:c0:48:32:99:a7:4e:aa:84:47:72:c9:93:
f2:e9:d8:00:80:bb:71:e0:a0:f9:82:49:e5:eb:ca:
7e:a9:c0:df:e3:68:bb:be:41:ed:c4:ed:d4:2e:11:
62:ab:fb:ac:1b:9e:3a:70:d6:87:c9:69:91:db:0b:
a5:28:d0:77:63:a3:bc:1b:77:2c:d4:0e:ab:81:3b:
95:f2:f4:70:47:70:ea:47:13:18:8d:a0:4c:19:81:
14:ee:13:c0:c6:92:c7:7f:8a:e7:a8:f6:31:05:ce:
e8:14:df:7e:c9:d5:04:96:66:a1:08:77:c1:5d:66:
c2:a0:8b:67:42:b3:31:75:86:e3:18:f8:a3:0b:70:
10:87:36:59:84:3b:67:3b:d2:4a:80:dd:cf:6c:f1:
4d:a7:de:39:5a:3c:65:8d:c9:51:b3:e4:16:9f:9a:
52:32:87:3a:4b:d1:f8:0d:be:a5:b7:7c:46:3b:9b:
69:6c:ff:81:fb:5f:79:57:da:eb:b9:75:45:a3:1e:
6d:72:6a:3e:c9:31:31:00:1e:a2:5e:0a:d4:d8:56:
5c:18:26:5d:9b:f0:2d:d5:0c:d9:fa:2b:45:30:5e:
a0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:73:60:0F:F8:1D:0F:DF:4B:1B:5D:7C:56:4E:81:A0:0D:BF:EF:EB
X509v3 Authority Key Identifier:
keyid:32:4D:9D:8B:05:04:55:56:76:B9:18:EE:39:1D:C1:53:A9:87:E3:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mk2diwUEVVZ2uRjuOR3BU6mH44o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/16eb03-414a-4852-81da-db261aa46f21/1/Mk2diwUEVVZ2uRjuOR3BU6mH44o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:44:3f:eb:56:a2:e3:bb:c2:df:0d:ce:d3:9d:06:e7:42:aa:
70:6b:f4:2a:a8:b1:4d:23:ac:d7:d6:62:55:92:e2:f4:05:17:
e8:ab:0b:26:c9:fe:0a:31:cd:f0:41:b7:d3:c9:69:76:9c:8f:
be:42:c0:c6:14:83:c5:f0:c9:15:ef:94:34:d3:20:a8:a2:31:
5d:4b:fb:9e:eb:22:63:e6:a6:96:8e:24:0e:75:f7:ff:a4:f2:
25:d4:a8:cc:57:bb:68:3c:47:59:e4:3a:e3:d2:78:d4:ce:07:
8b:db:c0:ed:46:7b:91:a9:51:d2:17:2c:23:cd:18:76:61:5e:
21:f2:a8:85:14:f2:26:c6:3f:19:68:d3:62:54:a5:4a:bd:03:
ea:77:43:b4:19:4a:ac:e5:e4:41:3e:43:5f:fc:c8:fa:6b:d1:
5e:5c:3f:b0:7f:e0:98:46:7f:6b:09:38:96:3a:e9:3a:a5:8c:
ab:64:c9:a4:0e:e5:e7:16:ea:c8:ec:84:6b:c0:f1:5c:e1:d3:
bd:e1:7f:07:fc:3d:80:6e:6c:6b:98:f7:1d:cb:5e:1e:0d:8b:
63:dc:ee:34:0c:5a:cf:41:b2:76:c8:7e:8e:7f:ce:55:af:f9:
6c:c3:14:75:43:8c:bf:37:94:95:4e:77:b8:45:28:fb:e5:38:
4f:58:14:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:46:04 2025 by rpki-client