Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
File: S2T4wOGznYqO-OjItaD_7itTtYc.mft (raw, json)
Hash identifier: CS4SvRBFhOeFXnFTBtTNy7ePfpjxlXxorQVz32xFKWE=
Subject key identifier: AC:1B:7F:B8:D8:86:83:27:54:14:65:5F:0B:1F:86:C6:AB:0E:B7:C1
Authority key identifier: 4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87
Certificate issuer: /CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587
Certificate serial: 0197B6A0E17210AD439434F65AA3CA8FB586
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
Manifest number: 06DF
Signing time: Sat 28 Jun 2025 13:01:26 +0000
Manifest this update: Sat 28 Jun 2025 13:01:26 +0000
Manifest next update: Sun 29 Jun 2025 13:01:26 +0000
Files and hashes: 1: S2T4wOGznYqO-OjItaD_7itTtYc.crl (hash: UlhQcGSp+FXm9oPV8Gny8rPXM7Km4wxoF9+6rM++zAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:e1:72:10:ad:43:94:34:f6:5a:a3:ca:8f:b5:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587
Validity
Not Before: Jun 28 13:01:26 2025 GMT
Not After : Jun 29 13:01:26 2025 GMT
Subject: CN=ac1b7fb8d88683275414655f0b1f86c6ab0eb7c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:02:c6:bb:3d:7f:fb:09:ca:43:fd:ee:dc:e3:
b0:52:ed:de:c3:ab:8d:47:94:47:93:5b:0a:97:e7:
74:25:25:5e:39:0a:6c:8f:29:b6:55:66:a2:77:73:
39:ba:e3:f5:b2:dc:b8:ec:db:b2:79:12:2c:55:16:
16:7e:06:2c:a9:cf:0a:5b:3b:8a:9e:a3:a5:21:5d:
c4:17:9c:da:44:be:06:d0:44:c9:0b:dd:1c:1a:13:
8c:66:53:46:42:f6:bc:bc:46:03:64:55:f7:a6:01:
35:f0:83:79:97:ea:68:e6:03:e3:ec:25:ef:00:c6:
99:3c:45:64:9e:01:12:37:21:3f:f7:11:de:19:c9:
80:79:16:22:fd:3e:64:a0:77:1d:36:a7:c5:80:63:
9b:a8:0c:55:72:4d:fa:db:84:60:8d:0e:51:e0:ff:
4b:87:15:8d:13:0f:39:e8:47:09:04:03:5b:3d:36:
5c:50:c2:4b:51:13:1c:9d:10:ae:93:d1:95:60:25:
55:5f:95:2c:50:dd:23:b4:09:1b:09:91:95:40:e5:
ed:85:e6:76:66:bd:f4:ee:a8:3c:54:35:78:6f:5a:
39:8d:2c:68:3c:9c:11:29:ac:48:e2:15:74:ad:78:
0e:07:44:5a:75:d5:2b:b5:e0:3a:1b:d3:52:5f:7d:
24:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:1B:7F:B8:D8:86:83:27:54:14:65:5F:0B:1F:86:C6:AB:0E:B7:C1
X509v3 Authority Key Identifier:
keyid:4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:a7:59:ea:09:74:22:85:93:42:8b:7b:33:1b:0c:b9:41:e1:
35:c5:0b:a9:bd:51:d9:39:ae:45:b8:a1:fd:17:4b:81:92:f8:
79:1d:ff:ce:9a:58:34:49:e4:99:ee:02:68:91:58:80:58:c7:
ed:eb:8c:89:58:af:0e:b6:b5:1f:63:c2:b6:37:8b:0a:1c:fb:
50:c2:7a:4b:3f:1c:04:d2:f9:47:56:76:ab:04:22:89:53:74:
da:dc:f1:54:fc:4c:cf:74:d0:16:ee:2c:70:15:07:23:a0:ac:
8f:7a:6e:a2:00:dd:9d:6e:92:94:e4:74:1d:39:0e:15:e2:48:
37:8e:86:5f:f7:65:af:44:b2:e8:c1:b3:99:c7:e9:bd:a7:43:
56:a8:8e:65:7f:db:f9:68:0c:53:8a:f3:35:17:86:53:4d:bd:
c8:e3:7f:c4:6e:2b:a1:c8:49:81:52:38:c1:4c:76:65:94:2b:
5f:b0:b6:88:67:43:8c:88:16:be:ab:ba:9a:0a:70:b3:9d:3b:
55:30:a8:b2:fd:37:3d:8f:41:6a:27:f0:e1:08:a0:e3:2b:87:
be:9e:3e:b0:6f:34:d1:de:06:d3:b8:8a:d3:1e:b0:0d:b5:32:
e8:1f:6c:ab:93:de:27:0c:af:64:4d:dd:ff:43:9b:b5:51:39:
38:9f:fb:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:38:48 2025 by rpki-client