Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
File: rx7uIsUBU2MRinHSapRj3JN0uig.mft (raw, json)
Hash identifier: 1kqDRpZWvlf0RibZzxYzRkp+JrwjQAVF3GqdgcAEIaU=
Subject key identifier: D7:C6:21:98:FF:86:CC:64:60:FF:0F:95:65:4A:97:F4:06:BC:79:2B
Authority key identifier: AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
Certificate issuer: /CN=af1eee22c5015363118a71d26a9463dc9374ba28
Certificate serial: 019769607712A58BE22558E35D8D0E455187
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
Manifest number: 0943
Signing time: Fri 13 Jun 2025 13:00:18 +0000
Manifest this update: Fri 13 Jun 2025 13:00:18 +0000
Manifest next update: Sat 14 Jun 2025 13:00:18 +0000
Files and hashes: 1: rx7uIsUBU2MRinHSapRj3JN0uig.crl (hash: 9BIsJHmuY4MpkGCVuiwhDRWcShc7dt9Wm4urgpKVFKE=)
2: vtzVAFS2sSXFMY4pT9LQwpwKXN8.roa (hash: IK29JkUi3ofZEZGY2PidWdMxcE655gfnkWlaKv3tisg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:60:77:12:a5:8b:e2:25:58:e3:5d:8d:0e:45:51:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af1eee22c5015363118a71d26a9463dc9374ba28
Validity
Not Before: Jun 13 13:00:18 2025 GMT
Not After : Jun 14 13:00:18 2025 GMT
Subject: CN=d7c62198ff86cc6460ff0f95654a97f406bc792b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f1:43:ab:5d:26:8e:a2:25:52:c7:75:7e:b6:
89:de:3c:d4:f6:df:fa:fe:01:d8:ab:04:80:73:dc:
8d:d1:13:5f:f4:1f:fe:29:6b:89:7c:50:0b:57:93:
a5:f8:51:07:bd:75:c4:b7:24:97:46:57:6d:d6:f2:
a7:90:3d:40:2a:00:10:eb:68:05:90:a7:0a:cb:fb:
3a:07:8d:66:7e:c7:bf:b5:b3:ee:8e:d5:01:11:1d:
1c:a4:1a:01:85:d0:7e:06:96:a5:14:f1:b5:87:b2:
03:b4:94:6e:a6:f3:ee:be:37:01:33:c5:46:2c:76:
cc:bc:e8:94:9a:c0:ff:74:56:d8:fb:8b:83:42:25:
f8:2f:61:bd:d2:ee:c0:d7:0b:6a:f7:c2:bc:f6:68:
7a:7b:ab:bd:17:1c:b6:88:2e:79:97:2c:3e:5c:dd:
78:1e:dd:c3:fb:7e:84:d6:78:39:32:e2:5d:01:15:
b1:06:03:e3:9f:08:14:55:a9:ce:85:44:82:31:18:
ff:71:22:7b:16:05:a1:11:66:bd:71:5b:65:c6:cc:
e4:9f:0b:4b:5e:6a:9b:9f:c7:03:c2:32:8f:17:a5:
78:02:8e:c0:c0:a7:0d:23:c6:fe:0d:a4:f1:3a:a3:
45:1d:77:36:ed:ef:e9:09:a0:04:a3:a9:1a:ea:52:
35:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:C6:21:98:FF:86:CC:64:60:FF:0F:95:65:4A:97:F4:06:BC:79:2B
X509v3 Authority Key Identifier:
keyid:AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:9a:f9:56:12:f8:4d:74:22:91:19:45:59:e7:7e:35:45:ea:
1b:05:f3:2b:f6:d0:5f:7b:70:68:93:85:3e:1d:3b:68:52:bb:
47:22:99:54:cf:bf:25:dd:ec:9e:45:43:17:d0:75:70:ce:4f:
32:80:95:9c:a1:fb:44:ae:73:a0:2b:cd:0e:e6:09:95:2b:54:
c7:14:ec:af:41:f8:af:bc:e7:2d:8e:f9:ef:b2:54:01:d7:cf:
0d:43:63:66:04:30:b4:74:af:1d:23:5f:68:59:41:b2:04:6f:
bc:52:78:80:3e:87:c3:a1:97:e3:19:81:75:02:d6:71:bc:94:
e4:31:d0:db:b8:8d:c7:df:39:70:7e:b3:41:39:d9:1a:2f:36:
88:08:93:63:dc:27:b7:82:42:65:21:1b:75:ab:86:99:76:a6:
8a:f5:85:af:b6:6a:26:71:5a:7f:19:bd:2f:96:8d:cd:db:83:
36:41:8f:da:5e:9f:3a:5a:62:54:46:82:b4:12:0b:01:29:17:
10:1e:78:df:51:51:f0:32:5e:52:aa:ce:49:b9:a7:41:92:db:
b3:21:2c:09:a7:f7:b2:d2:ad:4a:da:6b:fc:3d:2d:49:4a:b9:
95:77:4a:f4:a9:ce:a7:b5:57:11:67:2c:9d:74:80:8c:6c:62:
21:41:37:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:15:39 2025 by rpki-client