Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
File: cnOYybFuqY0iKkwpyvey68mE8oI.mft (raw, json)
Hash identifier: eaXrb6SI7Gx1YdHkWHpFeNoFUxn/TpYH7tTFTBY4GXQ=
Subject key identifier: 1B:57:E2:4F:C7:09:C1:AF:C4:6F:2F:44:68:05:37:F9:87:E5:F8:15
Authority key identifier: 72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82
Certificate issuer: /CN=727398c9b16ea98d222a4c29caf7b2ebc984f282
Certificate serial: 01976D066BE9CD31784BA659385B9C71B460
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
Manifest number: 0127
Signing time: Sat 14 Jun 2025 06:00:26 +0000
Manifest this update: Sat 14 Jun 2025 06:00:26 +0000
Manifest next update: Sun 15 Jun 2025 06:00:26 +0000
Files and hashes: 1: cnOYybFuqY0iKkwpyvey68mE8oI.crl (hash: QV9nf3GF7G/tSvvlBi+ldjcf6fAs52N8djQLJn/8YSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:6b:e9:cd:31:78:4b:a6:59:38:5b:9c:71:b4:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727398c9b16ea98d222a4c29caf7b2ebc984f282
Validity
Not Before: Jun 14 06:00:26 2025 GMT
Not After : Jun 15 06:00:26 2025 GMT
Subject: CN=1b57e24fc709c1afc46f2f44680537f987e5f815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:97:24:da:2e:68:a8:32:78:21:f8:eb:51:9c:
aa:0a:d9:ab:eb:cd:b1:57:23:14:35:79:a1:f1:43:
67:50:59:ba:6b:da:5a:e2:9f:5b:c5:1f:00:4b:1c:
6e:a9:95:67:ab:04:92:b6:d6:a7:29:8d:af:6b:11:
b2:71:e8:43:bc:f1:97:6e:2b:1b:5b:b1:d4:c0:fc:
f1:28:56:6b:f4:29:b9:1d:1e:85:02:25:e0:c8:f8:
f0:ec:c9:51:6f:14:19:1d:0f:e3:f1:16:67:8f:60:
bc:78:af:64:5b:c2:e7:df:e3:72:8b:cb:28:c8:94:
b6:c6:21:0a:f1:4a:01:ab:f5:f4:ea:3a:34:3d:23:
7d:8d:f0:66:a7:6c:ce:3f:8d:28:a1:36:11:48:94:
1a:59:82:80:5d:5e:55:93:7c:3b:7b:3b:15:ae:44:
06:f7:7b:56:b9:fe:e9:c4:3f:bc:a7:cb:40:0b:a1:
0d:21:35:c8:10:d8:9c:05:05:15:e9:2a:a4:53:44:
78:f0:d6:fc:7d:15:17:93:f8:6f:b7:fb:bf:c2:b1:
21:de:e4:9c:f5:1a:19:6b:55:10:82:9e:25:16:71:
2f:3a:1f:1e:c0:35:c6:77:f2:a4:5c:65:fa:4a:ae:
09:ac:72:b7:b8:71:74:d0:8f:0a:18:fe:25:e2:c5:
db:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:57:E2:4F:C7:09:C1:AF:C4:6F:2F:44:68:05:37:F9:87:E5:F8:15
X509v3 Authority Key Identifier:
keyid:72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:4f:90:2c:09:cd:8c:33:92:e5:99:51:76:c0:df:b9:15:cc:
d9:7e:9f:de:d0:18:6f:8e:3c:6a:6e:55:7e:e4:91:34:15:dc:
c9:b2:68:24:e2:92:9e:68:4e:68:4d:40:1b:53:15:4f:18:f7:
1e:08:ad:61:d1:e6:ed:ae:5b:3f:ee:96:79:ae:8c:0c:16:4c:
ae:fa:26:06:98:d1:8e:54:d3:fb:7c:27:62:77:73:6c:8f:a5:
4d:bf:32:d3:21:77:ab:54:c0:95:50:2d:23:ee:a7:91:b8:b0:
9a:15:c7:60:ca:22:12:24:44:55:f0:55:37:12:b7:72:9a:21:
4a:60:be:d8:27:94:63:fa:d5:ef:12:c6:8a:a8:6a:55:80:5e:
f5:2b:4b:f7:ce:3d:a2:e9:7d:5f:1c:04:48:db:cf:6a:44:c2:
60:16:e9:01:6c:6b:21:a0:ec:0d:a5:96:88:4a:13:25:ab:01:
f2:47:a4:bb:76:ba:37:90:44:d9:ab:ad:04:ee:5f:c6:96:e3:
52:4d:11:54:6c:29:f6:d2:cd:eb:15:b7:43:e0:7f:20:4f:91:
d7:ac:0c:32:64:49:8e:aa:84:9f:7e:53:e0:ea:fd:fd:78:7c:
de:05:60:c6:85:36:36:59:7b:d5:21:b6:4b:8f:7c:f6:bd:24:
36:f8:f8:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:42:14 2025 by rpki-client