Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/3c8448-af4a-4b48-a72a-e82774a16a57/1/cs3rVmQuM1iXcef9pxu3HgF_nZY.mft
File: cs3rVmQuM1iXcef9pxu3HgF_nZY.mft (raw, json)
Hash identifier: sgKhomgaXF2XINYrFhqa+aXrBAXBHi4bl7mQ0NhY3C8=
Subject key identifier: 81:8B:6F:B2:33:E3:40:DC:AD:7B:7A:D4:94:38:7E:9D:0C:56:D1:9B
Authority key identifier: 72:CD:EB:56:64:2E:33:58:97:71:E7:FD:A7:1B:B7:1E:01:7F:9D:96
Certificate issuer: /CN=72cdeb56642e33589771e7fda71bb71e017f9d96
Certificate serial: 01976885216AFE97F9A37FE3E43826EE2937
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cs3rVmQuM1iXcef9pxu3HgF_nZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/3c8448-af4a-4b48-a72a-e82774a16a57/1/cs3rVmQuM1iXcef9pxu3HgF_nZY.mft
Manifest number: 0AAA
Signing time: Fri 13 Jun 2025 09:00:44 +0000
Manifest this update: Fri 13 Jun 2025 09:00:44 +0000
Manifest next update: Sat 14 Jun 2025 09:00:44 +0000
Files and hashes: 1: cs3rVmQuM1iXcef9pxu3HgF_nZY.crl (hash: NTNxHbe8PDXkvKHihkYjxkol1xZwYRRd0IC0wgs4mYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/3c8448-af4a-4b48-a72a-e82774a16a57/1/cs3rVmQuM1iXcef9pxu3HgF_nZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/3c8448-af4a-4b48-a72a-e82774a16a57/1/cs3rVmQuM1iXcef9pxu3HgF_nZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cs3rVmQuM1iXcef9pxu3HgF_nZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 09:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:85:21:6a:fe:97:f9:a3:7f:e3:e4:38:26:ee:29:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72cdeb56642e33589771e7fda71bb71e017f9d96
Validity
Not Before: Jun 13 09:00:44 2025 GMT
Not After : Jun 14 09:00:44 2025 GMT
Subject: CN=818b6fb233e340dcad7b7ad494387e9d0c56d19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:7e:96:9a:c8:37:90:25:9a:b6:68:d5:24:84:
1f:38:e9:fc:ae:66:fb:fa:1b:ea:ec:cf:6f:45:05:
22:00:5b:16:c7:9f:7a:cb:f9:99:e4:5c:29:de:a2:
94:5a:43:c1:43:c2:f5:59:0f:a7:88:2b:9e:df:f3:
6f:fa:de:49:8f:df:b6:d7:56:85:2f:5e:6c:1d:51:
39:80:16:20:b0:e8:1b:2f:a1:78:12:5d:5c:12:44:
c7:ad:52:3f:a9:b8:6c:58:15:32:6b:12:ce:c1:44:
ec:61:fb:2f:cc:0e:6e:a8:2f:e5:dd:b5:23:8a:e7:
3c:8c:2e:35:21:7f:06:d1:c8:f5:78:0d:9a:c0:06:
5e:59:76:b2:9d:bc:86:f8:fd:10:9f:3e:e4:0f:87:
4c:cd:66:fb:0f:7f:75:f2:a1:66:32:5b:76:25:3c:
b5:0d:b3:54:3f:ce:f8:b8:5c:43:2f:a6:f6:e0:a3:
d3:de:e8:8b:09:00:e9:c4:a1:7c:df:d3:1d:8d:a5:
fb:fb:5b:f1:fa:87:d6:00:0f:f8:6c:6d:06:0b:3b:
e8:92:76:06:77:29:c1:cb:bd:e9:d8:82:37:3a:b2:
72:86:8c:0d:78:06:2d:d7:fb:01:cd:9a:05:72:66:
94:96:65:32:f6:4c:55:d1:d7:43:bf:51:3b:b2:4a:
9e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:8B:6F:B2:33:E3:40:DC:AD:7B:7A:D4:94:38:7E:9D:0C:56:D1:9B
X509v3 Authority Key Identifier:
keyid:72:CD:EB:56:64:2E:33:58:97:71:E7:FD:A7:1B:B7:1E:01:7F:9D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cs3rVmQuM1iXcef9pxu3HgF_nZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3c8448-af4a-4b48-a72a-e82774a16a57/1/cs3rVmQuM1iXcef9pxu3HgF_nZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3c8448-af4a-4b48-a72a-e82774a16a57/1/cs3rVmQuM1iXcef9pxu3HgF_nZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:6d:e7:47:e4:80:0e:a4:c9:81:16:41:e4:e6:0d:fa:25:b7:
1a:69:f3:da:b4:2c:7f:c6:cd:12:39:74:11:74:1f:c3:2e:f6:
90:c1:e3:f9:84:ba:bf:96:28:78:3e:5d:99:c4:a4:79:2d:18:
5c:8c:00:86:fa:39:f7:65:53:5d:6a:cf:7c:cc:d4:e7:45:9d:
8a:8a:d3:1e:97:a1:14:4c:4c:63:ee:54:88:26:d3:c5:91:af:
08:2c:53:9c:ce:c4:a5:49:72:81:ed:75:5b:3d:01:29:92:ec:
5d:b5:cb:d0:9e:f8:ad:8b:07:09:f2:a5:0f:49:77:0a:b8:3a:
bf:ac:17:b8:22:14:85:51:b1:c9:b8:00:5f:32:92:7d:36:3c:
47:bc:d8:2a:10:66:b2:25:11:38:9b:56:cd:03:96:37:e2:de:
db:a8:0a:3e:fd:6c:2b:81:8d:34:1d:1e:1f:e5:c7:58:a4:a4:
4c:d5:9d:ae:e3:ea:f0:02:96:b8:6d:9d:7f:b9:c2:69:38:04:
b3:60:f6:a7:0b:05:8f:39:23:10:b5:65:d8:16:e2:27:3b:ed:
7b:eb:c3:c6:18:c9:30:b4:38:47:1b:a6:ff:e8:6c:27:9f:27:
d9:ab:0a:2f:6a:9b:b5:13:be:55:98:0c:a3:04:d2:e8:d5:3f:
76:16:a0:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 18:58:15 2025 by rpki-client