Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
File: 4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft (raw, json)
Hash identifier: QK08L7Xo+jmNkfJYEer9CetEsAal7Gh4R3lgGIpl1kk=
Subject key identifier: 86:B8:27:31:8B:67:31:84:7E:2C:61:53:F5:99:48:83:2A:06:88:FF
Authority key identifier: E3:26:81:CF:D9:7C:16:44:EF:F7:51:E0:F1:E0:AA:05:3C:05:C0:0F
Certificate issuer: /CN=e32681cfd97c1644eff751e0f1e0aa053c05c00f
Certificate serial: 0197789CA2E8328C642084C246D9B8B681AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4yaBz9l8FkTv91Hg8eCqBTwFwA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
Manifest number: 02F6
Signing time: Mon 16 Jun 2025 12:00:20 +0000
Manifest this update: Mon 16 Jun 2025 12:00:20 +0000
Manifest next update: Tue 17 Jun 2025 12:00:20 +0000
Files and hashes: 1: 4yaBz9l8FkTv91Hg8eCqBTwFwA8.crl (hash: +SF+iBVtm0Yt+dIQ5BaQWvY18rTc/27cddmJxfYx+IA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4yaBz9l8FkTv91Hg8eCqBTwFwA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 12:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:9c:a2:e8:32:8c:64:20:84:c2:46:d9:b8:b6:81:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e32681cfd97c1644eff751e0f1e0aa053c05c00f
Validity
Not Before: Jun 16 12:00:20 2025 GMT
Not After : Jun 17 12:00:20 2025 GMT
Subject: CN=86b827318b6731847e2c6153f59948832a0688ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c2:f1:d8:0b:7c:a6:ea:56:c1:34:94:44:f0:
aa:da:1e:6b:9e:aa:4b:03:01:98:8a:50:70:93:cf:
09:96:39:e8:44:ed:71:cf:c3:bd:ba:5d:2e:cb:69:
0b:d1:67:b7:3f:af:05:f2:f6:c2:6d:71:96:ff:ed:
d4:28:56:8e:e4:75:d7:8a:a3:4c:49:ad:97:b2:ca:
c9:1a:db:b5:ab:3f:c7:56:88:18:eb:51:da:32:cd:
25:23:37:db:38:07:1f:4f:83:02:09:b2:26:6c:0f:
63:fd:72:03:01:8a:7b:b2:1a:7c:d0:9e:68:36:da:
37:87:1d:34:cb:3c:8d:cd:42:4b:0c:da:3c:8e:4c:
dc:d1:db:db:24:1d:37:c1:09:5d:82:2e:45:a5:0e:
91:05:fe:3a:87:47:3e:36:22:11:94:f3:91:7d:00:
15:2e:4b:90:d8:55:1b:5d:d1:7e:02:fa:a5:11:d1:
01:f2:78:aa:63:62:41:1a:58:d6:b5:95:db:6e:9c:
fb:9f:c2:9c:5f:51:e6:87:94:9e:87:d6:2a:10:98:
33:81:7f:27:62:ad:f4:a0:3e:91:cd:b2:76:25:58:
ca:8b:85:ce:e3:37:3b:5b:65:5d:5e:ef:62:20:fd:
30:be:2a:d7:34:7b:c2:b6:86:80:c7:34:b0:d8:f7:
52:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B8:27:31:8B:67:31:84:7E:2C:61:53:F5:99:48:83:2A:06:88:FF
X509v3 Authority Key Identifier:
keyid:E3:26:81:CF:D9:7C:16:44:EF:F7:51:E0:F1:E0:AA:05:3C:05:C0:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4yaBz9l8FkTv91Hg8eCqBTwFwA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ac:9e:98:38:fd:d6:64:2d:21:ad:58:28:c3:ac:3c:ed:85:
4f:40:37:7c:6b:69:d2:f8:5d:e5:d6:e7:63:5a:9b:7f:67:d5:
b6:be:9a:d4:e0:53:00:9e:c6:23:db:39:29:63:b5:8b:1c:71:
1f:f8:d1:1d:1c:b5:86:c4:f7:ad:1f:69:1c:51:41:14:30:11:
1c:18:fb:e9:41:84:f6:22:35:ad:4d:d0:86:80:17:44:a1:44:
8d:3b:4f:bc:e3:2d:52:5d:27:47:af:6a:b5:fc:d2:e2:7a:d5:
5c:84:44:11:59:b2:77:f6:bd:d3:bb:70:dc:f4:a8:b5:b9:f0:
d3:5b:91:0c:be:9f:a2:80:db:28:67:1c:49:fe:db:dc:87:b3:
fe:e9:4a:46:97:e5:21:6e:3b:a2:0b:97:56:c1:ad:4e:75:39:
8e:b6:be:bb:24:37:ac:03:2e:f1:05:a5:f8:1c:64:9e:89:1f:
53:5c:81:24:d7:12:0b:45:9d:5e:12:a3:cf:bf:54:9e:46:3c:
1b:02:75:16:52:89:22:0c:56:1f:78:b3:78:6c:b8:94:6f:2a:
9c:c1:95:47:34:1b:d6:40:42:39:03:65:9f:4e:8e:8c:06:94:
1f:97:0b:5e:64:9e:ce:5b:f1:3e:51:ce:3d:6b:38:07:09:bc:
d1:cc:df:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 22:12:33 2025 by rpki-client