Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: rXnPg2xJgopvoiVDndb5nCWbu3wfRkZPb+122JKq0cA=
Subject key identifier: CC:DE:AA:14:30:2F:86:24:28:68:DF:35:AC:ED:61:62:A3:14:FC:E9
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 0197B7EA98F6E53B68EB72D653120DCA470C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 0735
Signing time: Sat 28 Jun 2025 19:01:34 +0000
Manifest this update: Sat 28 Jun 2025 19:01:34 +0000
Manifest next update: Sun 29 Jun 2025 19:01:34 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: ZLkbALfHDIHC8Q0/FO0kWUq0pfqxIpid3Vx4QDO9Djw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:98:f6:e5:3b:68:eb:72:d6:53:12:0d:ca:47:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Jun 28 19:01:34 2025 GMT
Not After : Jun 29 19:01:34 2025 GMT
Subject: CN=ccdeaa14302f86242868df35aced6162a314fce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ae:3c:5b:11:1c:1e:79:a5:25:e2:ba:49:fe:
99:6a:69:55:e5:60:0c:31:43:d0:87:91:b3:0a:d2:
bb:3d:5e:ba:5f:15:81:29:f5:28:47:31:3b:41:f1:
c5:4b:16:69:b1:f5:f8:0e:0b:3a:b7:8f:51:13:f1:
be:c7:7f:af:72:c8:89:1e:e8:7b:cf:ab:f5:34:1b:
43:b0:2b:18:ab:d5:6a:12:c7:86:44:65:69:e4:26:
8d:da:47:09:8d:29:5b:00:66:50:b6:f5:09:eb:a4:
16:d0:a3:e8:cb:68:fd:ae:c2:3c:e6:d6:2e:54:20:
5b:f0:95:1a:4f:d9:20:d8:fd:32:fb:59:0e:55:fd:
3e:3e:ae:92:ae:04:39:9c:eb:98:50:4e:4e:52:09:
8f:f5:a6:d6:46:fa:75:78:cc:f6:cd:db:d2:24:89:
fc:3c:b3:ff:63:bd:99:ab:c4:7e:f2:e7:c6:07:61:
b0:47:0e:e8:2a:04:c5:82:93:80:51:b3:38:b0:2f:
01:e8:e1:27:36:54:fd:1e:9d:e0:f4:1c:41:47:0d:
72:80:40:8e:f8:42:74:b0:6a:0a:fa:ca:43:58:75:
97:11:f7:5c:fd:ff:5c:90:be:c9:cb:6d:d9:69:d9:
23:cc:c9:89:7d:d9:6e:bb:3f:25:20:c9:1b:c0:92:
b6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:DE:AA:14:30:2F:86:24:28:68:DF:35:AC:ED:61:62:A3:14:FC:E9
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:24:aa:a5:53:84:03:37:10:8c:c8:c9:ac:73:f4:58:8c:1e:
c5:a2:44:7d:d6:a5:6a:8f:cb:49:be:1e:7d:9f:7f:13:6e:cf:
dd:64:a8:73:47:26:d0:46:f6:51:dc:a8:d1:ea:5a:ed:8a:13:
1a:c5:31:f1:a3:9e:8c:9d:e7:2c:81:b6:3e:13:c7:e4:6a:f8:
13:54:96:89:8b:3e:31:6b:5d:2a:b8:14:5e:51:ff:b1:f1:07:
d5:28:3f:9d:f3:cf:82:30:09:ea:32:d9:8b:76:39:73:49:31:
6c:bc:9e:e7:b5:93:74:7b:de:a9:b7:55:a6:30:b8:5e:8b:64:
71:78:32:fa:48:09:d2:9e:39:4d:20:6c:62:b0:ea:6e:0b:e3:
83:89:4f:b5:f5:53:a8:2d:2c:9f:60:82:dd:d1:4c:b4:9d:bd:
e6:75:1e:6c:ac:39:a4:da:31:44:25:00:3c:49:5e:d2:0d:38:
02:19:70:75:dd:5b:bb:2b:a6:1a:4a:4a:2c:23:05:10:a2:62:
9c:93:e4:bb:7a:92:59:33:68:a8:60:0d:21:e2:65:de:f9:85:
21:1c:f4:4f:15:d2:1a:b6:9b:29:17:b4:47:4d:be:0a:31:c0:
a3:0a:1f:cd:56:a7:8c:33:66:a4:2c:44:73:74:57:6d:e9:d1:
01:ba:cb:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:20:59 2025 by rpki-client