Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
File: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft (raw, json)
Hash identifier: L3XSMERzHk/fC7WXNtYbwMiUfj5YooQaNROgu1UK7DU=
Subject key identifier: 12:AB:02:70:3D:F3:FC:A9:18:26:BA:05:28:90:BC:4C:5D:40:74:45
Authority key identifier: D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
Certificate issuer: /CN=d217978586bff3a6777d55a9a9635841516d43b4
Certificate serial: 0197B7B37E42B7E634FC4A24766F0020FE5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
Manifest number: 0B49
Signing time: Sat 28 Jun 2025 18:01:23 +0000
Manifest this update: Sat 28 Jun 2025 18:01:23 +0000
Manifest next update: Sun 29 Jun 2025 18:01:23 +0000
Files and hashes: 1: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl (hash: BiG8cZa1rUJkX/8BJ5W7wOqD7U023OfCjhpZOCh5Wjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:7e:42:b7:e6:34:fc:4a:24:76:6f:00:20:fe:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217978586bff3a6777d55a9a9635841516d43b4
Validity
Not Before: Jun 28 18:01:23 2025 GMT
Not After : Jun 29 18:01:23 2025 GMT
Subject: CN=12ab02703df3fca91826ba052890bc4c5d407445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:60:b9:e8:67:75:4f:53:cb:70:3d:8d:29:ef:
99:6a:a6:9e:e5:f3:c7:f6:a0:24:02:8b:ca:8e:31:
59:5a:65:e7:0d:b5:41:49:27:74:92:64:09:7f:5b:
fe:0c:5c:d3:ae:f2:d5:a2:bd:c8:cb:04:a0:a7:e0:
1d:8d:0c:8a:f9:34:18:ed:29:7a:69:fc:e4:af:4f:
2d:df:c6:f1:f4:17:74:01:7a:f3:6a:d3:cd:b4:85:
ad:b5:45:d1:25:ee:dd:09:d3:01:2c:24:4c:0a:36:
9a:45:80:57:7f:c6:1d:d0:62:e1:6a:9b:09:82:74:
93:7f:d3:b8:e5:0d:53:27:98:dc:f4:a0:db:cc:db:
33:bd:c0:85:4f:75:3b:08:11:0b:45:7b:34:86:22:
e6:d9:f6:41:12:8e:4c:c3:cb:e9:f9:1d:63:21:24:
05:2f:cb:7a:99:7b:d5:19:1a:7c:9d:80:0f:11:c0:
11:82:31:15:a1:bb:a9:11:37:b1:38:d4:71:1f:58:
a3:db:16:51:9b:a2:7e:8a:e3:38:8a:c6:55:2b:ea:
04:c2:9f:36:dd:07:34:bf:69:9a:f7:de:1b:6d:b8:
67:d4:61:bb:e0:92:fe:ed:02:8a:31:36:2f:c7:25:
63:75:5a:07:d4:82:06:b8:39:98:bf:82:db:f3:f3:
68:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:AB:02:70:3D:F3:FC:A9:18:26:BA:05:28:90:BC:4C:5D:40:74:45
X509v3 Authority Key Identifier:
keyid:D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:cf:c3:9e:0c:b2:2b:92:56:57:f2:39:8a:22:14:57:46:19:
2c:d9:99:4e:20:38:f9:08:f3:74:bf:d4:09:74:38:4a:e4:bc:
87:bc:e4:c0:8f:f3:df:88:0a:2f:48:51:14:11:e4:7d:9c:51:
b6:ce:70:1f:f1:3e:6e:8d:00:7f:43:0e:5a:1d:6f:b0:1c:9e:
7e:6a:ef:4f:3b:aa:b9:75:e2:ae:a2:76:d8:c8:94:2e:c8:ab:
e9:0d:fa:51:70:55:06:c1:eb:cd:72:22:f6:5c:27:88:9f:28:
62:f3:04:6d:53:e6:ee:32:44:ee:63:96:b2:30:19:b4:46:dc:
9d:43:e8:56:9d:05:34:79:2c:d4:b6:a4:ad:db:6e:ea:3b:c1:
f1:97:6d:5c:50:05:1d:3b:ec:8d:1c:38:f2:33:3c:d3:16:19:
00:1d:6f:ea:aa:c1:d2:31:7b:1e:5f:90:26:b5:bf:07:89:c8:
2b:43:0d:64:dc:5d:ea:6f:fa:95:4b:8f:83:f5:64:27:95:ca:
03:30:3c:c1:df:87:86:ab:e4:e8:9e:36:cd:b2:24:b5:d2:c2:
c1:8b:f0:b7:6e:1e:bf:59:a8:a9:89:83:70:e6:fa:dd:d4:71:
64:76:07:05:6b:27:87:29:20:10:a8:e7:1d:40:e8:c0:f0:e0:
7a:41:23:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:59:10 2025 by rpki-client