Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: 6iDqtruxo4zRGweO/JYZqBx9LRjLv9YDmTj3+bDW6tM=
Subject key identifier: 24:11:A7:4D:85:29:A5:00:E1:CB:72:DB:74:C3:7E:E8:A9:81:9E:7A
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 019769610DA1A15F7F6C40B2395A92DD99F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0BE1
Signing time: Fri 13 Jun 2025 13:00:57 +0000
Manifest this update: Fri 13 Jun 2025 13:00:57 +0000
Manifest next update: Sat 14 Jun 2025 13:00:57 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: VL9oSBbOk9T5yV5S4RiwEfPrjixzUfRE3+9IP/GOlAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:0d:a1:a1:5f:7f:6c:40:b2:39:5a:92:dd:99:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: Jun 13 13:00:57 2025 GMT
Not After : Jun 14 13:00:57 2025 GMT
Subject: CN=2411a74d8529a500e1cb72db74c37ee8a9819e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:52:f7:b6:c9:9c:5a:5b:2d:f2:5c:bb:d3:ba:
b8:7c:78:14:85:d4:64:83:76:89:b8:79:5b:a0:da:
b0:1f:cb:8f:da:ce:1b:53:3d:9d:27:be:07:d9:34:
b4:44:39:d9:1f:dd:8d:bd:a6:b8:89:6b:0c:f2:27:
94:97:22:dd:d5:4f:23:3b:10:59:76:70:7b:9e:9b:
d8:c8:05:8a:4b:d8:5c:a6:0f:51:1b:13:ab:7b:4d:
b1:6f:46:96:f6:ab:3d:83:cd:09:6b:3f:55:c9:f1:
44:82:5e:d8:39:5b:ec:43:d5:80:39:d6:7d:77:7e:
bc:c9:30:df:a4:08:4f:43:be:00:0a:df:e8:24:96:
49:7b:bb:84:10:7a:1c:0d:5f:d1:0d:c5:2a:3c:cb:
7d:f3:5f:ba:29:37:8b:72:bb:0d:cb:bd:45:a6:2c:
29:99:55:ed:19:70:ef:18:b9:1d:73:16:91:58:10:
7b:d5:b9:9f:4d:fd:6f:53:30:20:ab:fa:b2:88:3c:
2e:23:d2:a7:79:1e:78:21:90:58:e9:56:bd:e5:eb:
02:9c:3e:11:9d:63:48:db:f0:da:0a:75:b2:93:b9:
2d:29:2a:16:cf:8d:6c:4a:e1:97:86:8b:33:34:73:
24:b7:31:f6:4c:cf:b0:6a:14:57:8f:28:84:bd:94:
40:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:11:A7:4D:85:29:A5:00:E1:CB:72:DB:74:C3:7E:E8:A9:81:9E:7A
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:3a:57:c0:80:3c:bc:92:62:8f:8a:1a:9a:20:27:ca:e4:18:
91:bf:03:9a:2f:1d:d6:42:70:d9:fc:a9:f7:69:21:48:3d:19:
52:bf:2f:38:77:46:a3:70:6d:b1:35:71:61:ba:ae:83:28:43:
10:89:7b:57:c2:3e:6a:44:29:6a:6b:dc:6c:20:4a:ea:85:f5:
86:f4:e9:e6:cf:37:07:2d:ad:64:9f:3c:28:98:de:9a:c6:1e:
ee:7b:c4:dd:8f:aa:88:e4:1a:1a:83:93:ec:33:40:12:75:6d:
2a:6a:0a:d3:23:b9:f9:c5:f7:32:4f:99:7a:c0:87:fd:59:0d:
9f:24:0b:c1:5b:44:2a:8b:04:34:4a:5c:fe:1f:da:aa:6d:25:
18:88:89:7e:8c:76:e0:96:80:6d:13:c7:7b:65:60:81:d8:4d:
20:9d:48:a2:c3:e1:29:9e:c8:66:10:c5:21:d4:fa:92:ea:65:
49:83:3d:8c:b2:87:fe:b8:d4:23:e1:2a:cc:51:1b:6f:5d:b9:
4b:76:f3:b0:bb:c5:52:52:61:94:fa:71:70:64:b3:43:0a:5e:
20:2e:10:02:42:23:4c:e9:d3:30:f4:76:60:02:5a:0a:bd:91:
51:ab:5a:c5:e0:d1:25:24:fc:e8:08:18:4a:cf:88:38:de:cb:
81:80:48:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:13:55 2025 by rpki-client