Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
File: h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft (raw, json)
Hash identifier: RlyJBKna6T6uONIKp7bhvRAN13cIpTHLpN5ixD7i/j4=
Subject key identifier: B0:CD:67:95:61:27:54:F4:F6:B9:E0:27:48:67:31:94:76:29:FA:37
Authority key identifier: 87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4
Certificate issuer: /CN=87c0a7b43d42924917a590598b44325e4cc92ee4
Certificate serial: 01976A3CF9E07DFFA9F791B836DA7EAB3DEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
Manifest number: 0961
Signing time: Fri 13 Jun 2025 17:01:10 +0000
Manifest this update: Fri 13 Jun 2025 17:01:10 +0000
Manifest next update: Sat 14 Jun 2025 17:01:10 +0000
Files and hashes: 1: h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl (hash: WQB+xWgAmfPVIvpg4RSdfHK35pcyoyxCQSSbIE5l2lY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:3c:f9:e0:7d:ff:a9:f7:91:b8:36:da:7e:ab:3d:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87c0a7b43d42924917a590598b44325e4cc92ee4
Validity
Not Before: Jun 13 17:01:10 2025 GMT
Not After : Jun 14 17:01:10 2025 GMT
Subject: CN=b0cd6795612754f4f6b9e027486731947629fa37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:33:9c:9d:14:f8:20:5e:94:6e:ef:bb:7d:ca:
10:d0:bd:4f:99:94:41:62:fe:ba:47:ce:f3:e8:31:
d7:22:2e:1b:a8:5e:60:a3:37:55:c6:fb:4d:9d:15:
9f:f8:25:d5:a8:4d:3b:ff:6f:81:1d:c0:84:3f:b4:
15:54:af:e5:9b:d0:2f:4d:8a:df:1a:8e:b6:51:5f:
06:6c:a5:16:68:04:9b:8f:95:f8:82:55:f6:72:e2:
2d:72:a1:8c:35:45:de:d5:50:7c:33:e3:ac:68:e7:
b3:cf:8d:5e:0e:15:f5:51:71:4e:1a:b0:a6:1d:ac:
7d:23:24:c4:41:6e:0a:74:77:4d:b3:58:d2:83:75:
63:ab:3d:4c:3c:37:17:95:43:f9:12:20:f5:b0:b9:
86:9d:88:3e:57:e7:aa:10:7c:ce:ec:5f:9f:f8:c0:
6d:a5:0a:e3:f2:b3:a8:94:b7:0e:c1:1a:5d:2b:12:
12:b2:44:e5:0d:98:3c:f9:51:69:41:4c:a7:49:c8:
e4:c7:fa:d6:ef:ef:d5:07:71:5c:8d:e0:8a:45:44:
7e:f1:8e:91:17:20:e5:b9:b8:33:bf:4c:88:44:8b:
a3:da:4b:54:97:33:ec:91:c6:df:85:6d:58:03:49:
6b:d8:af:c9:ef:1f:61:9f:5e:0f:f4:a9:39:49:b4:
19:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:CD:67:95:61:27:54:F4:F6:B9:E0:27:48:67:31:94:76:29:FA:37
X509v3 Authority Key Identifier:
keyid:87:C0:A7:B4:3D:42:92:49:17:A5:90:59:8B:44:32:5E:4C:C9:2E:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8CntD1CkkkXpZBZi0QyXkzJLuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a0083c-d0a8-4d8a-94b4-735625e0d297/1/h8CntD1CkkkXpZBZi0QyXkzJLuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:d7:63:fd:13:bf:e2:74:65:bd:b1:1f:26:98:48:9e:ea:22:
97:e6:15:d2:52:24:91:fc:b6:2f:de:5c:f5:8e:b8:87:f9:9c:
e7:17:20:d6:71:88:9b:3e:88:f7:f9:eb:1a:81:6b:c2:9e:d1:
4d:23:e6:3d:d6:0c:8d:70:c4:0a:18:5e:2f:42:7a:b1:5c:d2:
7a:e5:d2:a0:75:ca:f3:83:17:2a:f2:1f:4f:a2:63:89:c8:28:
58:96:ef:ea:ad:c4:ce:b6:8e:73:52:35:3b:ee:9f:9b:d6:7e:
85:5c:ab:d3:6c:2b:1d:37:3a:16:32:7b:11:25:4b:50:56:e3:
20:50:06:9f:2a:33:ac:b9:5f:38:21:d7:3a:35:07:df:fd:99:
0c:6c:7d:b4:61:36:e3:c9:80:ee:51:42:25:07:90:c6:d5:2a:
11:31:91:93:f9:4a:c1:d3:fd:2b:88:44:3b:a0:2a:02:ea:f0:
b4:1d:b9:2e:6d:61:41:de:21:06:29:42:f4:86:67:35:5f:a8:
63:62:6c:9a:19:9c:8c:82:93:5b:13:3c:e0:eb:3f:2c:32:d9:
9d:62:3b:73:d4:dd:67:14:91:6f:30:bb:53:7d:a6:92:b2:d4:
40:d2:16:74:83:d8:c0:02:a7:4d:c6:cb:ce:03:f5:71:c4:ef:
2c:c3:9d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:57:21 2025 by rpki-client