Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
File: F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft (raw, json)
Hash identifier: JXb/lN2XEb+u+46B+KFn3FDUB0+A+XbEuVvUdmi6F1I=
Subject key identifier: 61:59:BB:9F:2C:6B:DA:74:D6:8A:25:D8:A4:DC:45:FF:47:BD:9C:80
Authority key identifier: 17:D8:73:12:06:53:B3:CF:E5:51:72:A9:DC:60:57:E8:CC:D0:CB:5C
Certificate issuer: /CN=17d873120653b3cfe55172a9dc6057e8ccd0cb5c
Certificate serial: 0197B6A17970E47614C2934291FD9C2C1E32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
Manifest number: 0D56
Signing time: Sat 28 Jun 2025 13:02:05 +0000
Manifest this update: Sat 28 Jun 2025 13:02:05 +0000
Manifest next update: Sun 29 Jun 2025 13:02:05 +0000
Files and hashes: 1: F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl (hash: WQ0dGus52PSGXMIZbyYxZh6d8f9tea43rTL7zbB4CLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:79:70:e4:76:14:c2:93:42:91:fd:9c:2c:1e:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d873120653b3cfe55172a9dc6057e8ccd0cb5c
Validity
Not Before: Jun 28 13:02:05 2025 GMT
Not After : Jun 29 13:02:05 2025 GMT
Subject: CN=6159bb9f2c6bda74d68a25d8a4dc45ff47bd9c80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:08:0f:ef:c2:27:dd:6a:06:94:10:85:44:aa:
1c:0e:44:c5:27:6c:54:9a:2d:06:b1:d3:ac:94:dc:
d5:2a:9b:b1:0f:03:47:17:51:f5:8b:ab:e0:9f:a5:
5b:ac:b4:8e:32:fa:f5:05:d8:f0:33:9d:82:ef:0c:
1a:14:db:a7:bc:5f:21:07:14:84:76:95:51:c0:0e:
89:04:d4:54:4d:27:2a:cb:05:7c:97:f9:09:b4:e8:
c0:bf:c9:c4:b8:5a:a2:fe:3a:47:89:03:19:a7:45:
2b:63:98:bd:f1:27:01:2e:42:17:8f:a1:d7:17:a1:
83:64:3a:cb:eb:dc:77:2e:f6:76:51:a4:8b:fc:8a:
d4:9c:e5:79:7c:be:93:74:10:93:0a:33:58:db:84:
54:d1:bb:98:0f:be:27:7d:55:07:a9:f7:be:62:a1:
3a:71:43:b0:f0:dd:d4:df:60:79:64:2c:4e:c8:6c:
50:80:bc:70:d2:c6:78:f0:54:7a:71:d7:62:72:24:
2c:b0:40:16:1b:c0:ec:99:9c:e3:91:35:d6:4d:7d:
7f:ec:a9:27:3f:6b:fc:b1:c2:a8:15:ba:f5:44:ce:
7d:1d:38:47:d0:a8:a8:e1:a0:cc:cb:7f:4a:be:d6:
40:53:c7:31:c6:aa:d2:fe:67:75:38:33:43:3c:62:
91:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:59:BB:9F:2C:6B:DA:74:D6:8A:25:D8:A4:DC:45:FF:47:BD:9C:80
X509v3 Authority Key Identifier:
keyid:17:D8:73:12:06:53:B3:CF:E5:51:72:A9:DC:60:57:E8:CC:D0:CB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:d8:99:6b:09:ce:07:61:95:cf:8a:5c:2a:65:11:06:45:81:
56:28:e7:ed:eb:58:9b:34:d4:b6:a8:40:45:cc:46:ab:8e:3a:
fa:5f:83:dd:c5:d9:f6:cb:01:a4:13:fd:ca:e5:16:ce:60:6a:
c9:5f:50:9d:5e:92:06:0f:e3:3a:8d:91:fe:c8:2b:1c:7b:06:
55:c1:f2:86:1c:fd:07:fa:50:e8:98:af:79:ee:cb:81:7f:41:
c0:86:b1:f0:1a:df:2b:90:58:cd:4f:ad:71:f4:39:46:5d:0c:
ba:11:00:22:7b:a6:4a:09:ea:34:29:9e:55:60:6d:89:40:74:
10:34:34:f9:2a:5d:6a:45:b2:f9:60:c4:e6:e2:d0:39:0e:02:
1d:99:69:9e:9c:c3:50:a2:9c:8b:ca:df:1e:4f:79:2e:7d:48:
c1:7d:1d:8e:cb:42:a7:bf:6d:30:8b:41:e0:cb:7e:65:7e:87:
12:61:65:e4:aa:7c:cf:49:43:56:40:96:61:40:8c:89:14:a0:
0a:01:e9:b4:74:8b:8e:d2:30:73:e3:64:ff:bf:3a:43:5d:ab:
10:6c:99:36:25:64:58:1f:c1:21:49:0a:60:94:f4:76:7a:5c:
4a:6e:92:75:23:0e:e4:ee:82:bc:a5:e4:12:bd:af:3b:67:98:
e8:a5:46:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:43:24 2025 by rpki-client