Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
File: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json)
Hash identifier: MbJrJERcQdvqlXZcCLgl8JrhuMqGct5fZlS2LYkPfMM=
Subject key identifier: 52:67:41:A3:48:95:68:95:8D:B0:9B:93:21:40:38:7A:ED:98:CF:4B
Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
Certificate issuer: /CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Certificate serial: 0197B70E8924D73ADF44E919296901F4335E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
Manifest number: 0D25
Signing time: Sat 28 Jun 2025 15:01:12 +0000
Manifest this update: Sat 28 Jun 2025 15:01:12 +0000
Manifest next update: Sun 29 Jun 2025 15:01:12 +0000
Files and hashes: 1: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: Rh+1qqf4ergB58+pkFvuqxeOMo55QLtd3Tj2VblGkYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:89:24:d7:3a:df:44:e9:19:29:69:01:f4:33:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Validity
Not Before: Jun 28 15:01:12 2025 GMT
Not After : Jun 29 15:01:12 2025 GMT
Subject: CN=526741a3489568958db09b932140387aed98cf4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6f:3c:04:43:21:0f:cc:02:37:7b:d7:9a:09:
c4:9e:69:1f:79:7c:52:d8:ef:b6:ed:0a:85:92:d2:
ea:37:3d:f4:66:39:65:c2:dc:3f:46:81:ff:5b:b5:
ec:89:ae:89:e0:71:90:98:0d:50:c4:19:9a:35:85:
16:3c:cc:28:98:66:a6:6c:f1:70:1b:9d:af:14:85:
8d:48:25:76:55:60:3a:c7:68:62:ca:b9:9f:7f:3c:
a7:cb:10:52:69:d9:08:f6:a6:c8:84:50:c4:a4:2f:
e0:1b:0e:0e:b4:cb:0a:49:c9:64:28:0a:23:ff:1f:
f4:29:ab:be:21:64:a8:61:08:52:fa:d9:53:50:2b:
ef:b4:1a:a9:07:79:9b:4f:3c:db:06:4b:60:aa:6b:
8e:6b:86:80:74:71:ba:d7:82:5c:0a:82:f5:88:0e:
56:b7:f4:40:05:10:8c:25:c8:35:ae:7c:9f:73:de:
74:cc:66:19:0d:50:b0:bd:7b:71:06:56:ee:35:e6:
a3:80:ca:ef:47:1a:b5:d4:36:cf:4f:07:6d:c7:5f:
19:c9:c7:06:fd:6a:19:0d:6e:eb:f5:01:11:d7:82:
21:18:dd:d0:26:df:5b:d9:12:62:e4:80:e8:f3:78:
17:81:c8:3d:c2:62:8c:b3:5b:2f:7d:1f:54:cf:c9:
6a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:67:41:A3:48:95:68:95:8D:B0:9B:93:21:40:38:7A:ED:98:CF:4B
X509v3 Authority Key Identifier:
keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:74:9f:ee:85:60:90:ff:bc:05:09:e6:bd:9f:d3:4f:34:86:
fb:3c:4d:0d:81:53:8a:b1:c3:8c:dc:ad:b5:80:36:c9:eb:4c:
2e:1b:e0:57:35:ca:4b:37:7d:a3:e2:41:e7:35:3a:17:10:57:
6c:17:dc:09:41:98:9c:fd:5c:43:4e:6d:e0:be:96:7f:58:5c:
ae:f3:60:d6:bf:6d:13:7b:f0:d0:50:87:82:8b:64:3b:8f:f2:
57:e8:45:c9:25:e0:ef:6b:69:f9:b6:cc:8d:4b:0f:67:12:1f:
9e:54:c2:32:b9:34:03:19:0c:6f:d1:a2:1e:bd:66:bf:05:f9:
63:27:e0:7a:c6:6d:8f:9e:43:6f:f9:e7:9a:e9:c3:0b:30:0a:
e5:f2:12:10:b4:6d:ca:db:a5:88:41:e5:99:85:a9:b2:99:cd:
ae:70:08:45:40:38:b3:e4:6c:92:65:61:9e:0b:3f:41:4d:4d:
a4:ab:0c:2a:b8:fc:df:82:ba:10:88:fe:1f:1c:23:c4:c6:fe:
8c:4c:8f:d3:6d:fd:42:93:a1:66:31:91:cf:0a:5e:40:f4:12:
a0:2d:e3:fb:9c:16:0b:76:2b:e3:09:fb:0a:89:83:8f:1f:c1:
b0:d3:fb:17:85:96:39:a8:65:72:97:90:d3:68:9c:60:c2:f3:
b1:77:e5:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:45:11 2025 by rpki-client