Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
File: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft (raw, json)
Hash identifier: TrElbl1aHr3QBx570sd99DbxbF1AMg4hC3AzxAeA9as=
Subject key identifier: 61:F4:AB:B1:64:67:03:48:C4:FB:D5:05:D6:FE:24:E2:EF:12:02:82
Authority key identifier: B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
Certificate issuer: /CN=b284cdf0507443e16e509d57a229e914f73566a4
Certificate serial: 0197B7EADD227CA7547FC98D10F0CC43B41A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
Manifest number: 145C
Signing time: Sat 28 Jun 2025 19:01:51 +0000
Manifest this update: Sat 28 Jun 2025 19:01:51 +0000
Manifest next update: Sun 29 Jun 2025 19:01:51 +0000
Files and hashes: 1: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl (hash: 1rfGM5Qs0G99CPH5yvQOZUMVf8brAW3qYzVxARHbidE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:dd:22:7c:a7:54:7f:c9:8d:10:f0:cc:43:b4:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b284cdf0507443e16e509d57a229e914f73566a4
Validity
Not Before: Jun 28 19:01:51 2025 GMT
Not After : Jun 29 19:01:51 2025 GMT
Subject: CN=61f4abb164670348c4fbd505d6fe24e2ef120282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9d:3b:0f:f9:ed:07:51:5d:30:be:66:98:33:
6b:e7:d9:12:5b:21:2a:0a:34:57:92:ef:24:f5:cb:
73:67:9f:2e:dc:bb:e8:80:4e:55:1d:10:9f:6e:bf:
8f:37:e2:e0:79:db:44:c7:90:11:12:02:65:8f:91:
82:bc:90:0f:55:01:9d:11:ee:8e:70:16:b3:54:f2:
f7:dc:41:33:2f:f2:28:0c:71:1b:6c:dd:e8:94:d2:
22:bb:2c:55:66:3b:13:36:98:d5:51:be:10:3e:cb:
78:5e:6f:fb:eb:e4:c2:28:12:79:c3:0a:20:11:12:
bf:bd:fa:f5:94:e5:da:4c:b6:6c:9c:b9:e1:9c:7b:
81:8c:50:22:49:df:0f:2f:77:b0:4c:a8:6d:8c:ac:
6c:c5:10:eb:e7:72:1c:5e:19:f7:a7:16:04:b7:1e:
26:8a:91:e5:6c:3f:d8:18:18:6d:4d:09:4f:e8:cb:
c7:ac:93:56:0e:0a:87:5e:e5:00:71:5f:fa:27:4f:
7d:e7:b2:71:63:96:ca:df:57:a9:e5:f1:f6:c1:e4:
a3:f7:ab:e1:69:0f:6b:95:39:3e:f3:5e:a1:62:15:
89:59:bb:8a:56:46:cf:8a:cd:f9:ad:29:57:5b:c6:
76:6c:9f:60:df:13:e9:2e:ee:5f:60:21:7f:b2:6a:
a2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F4:AB:B1:64:67:03:48:C4:FB:D5:05:D6:FE:24:E2:EF:12:02:82
X509v3 Authority Key Identifier:
keyid:B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:f4:82:cf:97:55:2f:72:f0:81:5b:3c:49:4a:42:87:13:04:
0b:d6:20:8b:20:e5:1e:3a:04:05:e8:5e:07:dc:73:47:e6:3a:
96:36:4b:84:28:ce:a8:90:a3:f8:f3:01:a6:68:ef:15:ba:11:
b2:3c:1f:c6:c4:62:8b:dd:63:75:e1:2d:4a:00:bb:c2:e4:b7:
a7:ec:ca:08:3e:9c:d6:4d:6c:53:79:0d:9e:c1:2c:05:51:55:
d7:8b:2c:d7:ab:50:2d:14:ce:c8:2d:97:15:2a:a2:ad:7a:fb:
87:4c:df:e9:d6:aa:52:b9:a9:b7:2a:75:ac:10:c2:09:75:07:
d2:29:d5:9f:7f:e4:92:a3:e6:6e:f8:9b:7d:d9:7a:5f:53:68:
e1:76:fc:9d:bb:be:58:fb:28:eb:0d:2f:ba:ca:05:a3:c3:df:
d8:39:18:8a:af:22:54:dc:0d:1a:82:ac:db:67:a5:77:4e:b4:
4f:b6:19:9c:e5:72:f8:d5:eb:78:f3:7a:d7:10:09:94:a1:65:
62:7b:af:a6:4e:43:b8:e5:ec:9f:82:44:02:7a:7b:5a:3c:0d:
a2:a1:da:55:94:e2:ff:f9:88:10:fb:af:a3:01:91:64:cd:40:
fe:a8:b8:c7:13:64:17:ba:00:88:99:f8:cd:f7:62:d9:71:33:
d4:0d:75:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:35:30 2025 by rpki-client