Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
File: D8lnTtVfCnZcpdocb6-k3SXioXg.mft (raw, json)
Hash identifier: /P77QxK4e2dK4v0zwWXmc4qJhOnw47rHXzEaRY3HWF8=
Subject key identifier: 85:3F:90:5D:9A:1D:9A:18:91:7A:28:7F:27:07:CB:CA:85:6B:33:D1
Authority key identifier: 0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
Certificate issuer: /CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Certificate serial: 01976BF49A81D25599CBE2C53BFA3A72DB8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
Manifest number: 0673
Signing time: Sat 14 Jun 2025 01:01:21 +0000
Manifest this update: Sat 14 Jun 2025 01:01:21 +0000
Manifest next update: Sun 15 Jun 2025 01:01:21 +0000
Files and hashes: 1: D8lnTtVfCnZcpdocb6-k3SXioXg.crl (hash: KFTf6rThS5DsXO3fL3vBc3erUWhsKx7prF9ll6dVm4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:9a:81:d2:55:99:cb:e2:c5:3b:fa:3a:72:db:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Validity
Not Before: Jun 14 01:01:21 2025 GMT
Not After : Jun 15 01:01:21 2025 GMT
Subject: CN=853f905d9a1d9a18917a287f2707cbca856b33d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bc:03:da:dd:4d:56:61:3f:05:2f:08:3c:2d:
ce:98:29:ae:73:13:81:01:b0:fc:c5:66:fa:9c:45:
ff:6e:5c:9f:4d:b7:e7:41:4e:de:2b:d3:0d:d1:eb:
95:a9:8a:6b:66:df:c6:9b:67:40:61:f6:05:3e:c6:
8c:d9:89:00:69:dd:51:1c:2a:8d:ec:5c:34:36:ab:
c9:e9:39:01:34:10:c7:12:88:df:df:af:6a:55:9b:
df:d6:5d:28:53:b7:d4:fa:20:6f:7d:a8:74:ed:da:
6d:17:e9:15:18:b6:25:dc:c2:57:b8:9a:bb:6a:80:
dd:ab:8e:d1:6e:51:7e:38:8e:41:45:4e:e0:50:0c:
de:01:cf:da:4d:fa:f7:26:ed:b3:2d:c9:95:6a:cc:
23:75:82:0e:29:5a:c5:97:e8:ce:7e:23:5c:ad:94:
15:4b:47:1a:be:40:4f:c9:dc:1b:6e:39:f5:b3:21:
7c:74:39:b1:a3:6d:b0:9b:83:e7:53:db:75:b7:ad:
5f:1f:c6:8a:71:93:79:cd:f1:f1:26:e8:ba:e5:44:
ed:97:1e:6c:7e:4b:fe:bf:89:2e:19:bc:43:9b:3c:
1f:42:57:cc:92:94:f4:a6:d3:24:b0:51:3d:51:4b:
ed:27:4a:ca:32:51:99:5d:47:b2:d9:92:35:b8:59:
c7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:3F:90:5D:9A:1D:9A:18:91:7A:28:7F:27:07:CB:CA:85:6B:33:D1
X509v3 Authority Key Identifier:
keyid:0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:99:c9:3f:01:28:73:9e:3b:43:65:f0:d9:de:58:18:49:54:
1f:17:1a:e6:fc:49:8f:98:1a:c8:a0:4a:72:73:9e:92:88:16:
4d:4f:93:4f:d2:7f:36:47:2b:99:8f:87:1b:2d:f1:5b:a8:34:
01:29:ca:57:4c:66:cf:49:06:59:ef:62:42:a4:75:71:f1:9d:
d4:51:f4:39:07:18:13:53:d0:66:a9:be:a5:ac:e3:c0:ec:bd:
62:42:d4:35:13:84:88:ce:77:d2:75:28:ba:bb:6f:37:8e:01:
de:4b:0e:38:2e:2f:10:3e:78:a8:10:4d:36:fd:8d:12:a3:48:
83:ea:0e:c3:b0:16:b0:f5:8a:f2:35:93:9c:a8:d0:45:5b:45:
c6:35:91:97:c8:bf:cd:ca:04:53:b2:69:f1:22:f2:87:4c:0f:
79:fc:a2:88:3e:b6:d9:06:ad:7a:4d:f2:26:77:e8:9d:84:cc:
31:2e:d3:13:7a:98:97:16:08:4a:b7:ed:39:b6:ce:3a:6e:57:
e1:7f:af:00:69:37:d2:ac:2d:08:4c:a4:b7:47:b6:a4:ca:6b:
65:d3:9e:4b:1e:68:bd:cc:4c:12:2d:a0:42:d3:f0:14:60:db:
65:78:21:47:3a:34:b3:46:3a:40:d7:e9:3e:fb:d4:a1:68:e5:
72:ff:61:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:38:51 2025 by rpki-client