Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
File: 0c0c1HQkGQk2se35qYScPjBYfzo.mft (raw, json)
Hash identifier: UuOHQP8qxY3n9hkO71fN1OZKEna8l61wl80muTaXuvc=
Subject key identifier: 30:CC:57:66:D8:D8:19:59:F1:A7:DC:76:05:88:FC:10:8B:12:95:6C
Authority key identifier: D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
Certificate issuer: /CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Certificate serial: 0197B6A05B1783D46DBDC81D355D24721B2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
Manifest number: 0D15
Signing time: Sat 28 Jun 2025 13:00:51 +0000
Manifest this update: Sat 28 Jun 2025 13:00:51 +0000
Manifest next update: Sun 29 Jun 2025 13:00:51 +0000
Files and hashes: 1: 0c0c1HQkGQk2se35qYScPjBYfzo.crl (hash: b2oLC9loCZf480PSNrqXhjv0fdgVorxuC4AQP7JxAyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:5b:17:83:d4:6d:bd:c8:1d:35:5d:24:72:1b:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Validity
Not Before: Jun 28 13:00:51 2025 GMT
Not After : Jun 29 13:00:51 2025 GMT
Subject: CN=30cc5766d8d81959f1a7dc760588fc108b12956c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:47:00:e7:5f:6c:da:4c:25:79:37:03:49:57:
63:64:b0:58:af:35:d3:76:1f:96:af:17:97:1b:1c:
48:fc:9a:74:cf:9a:75:50:8c:34:aa:74:b7:b7:d9:
70:ee:80:f5:23:7e:20:f6:a9:c1:bb:e9:75:7e:60:
31:0b:d6:25:48:94:56:ce:79:50:e9:ac:03:c6:29:
2c:ec:e7:78:1a:8e:78:c5:3a:ed:cd:e5:53:ca:b9:
6b:bf:e7:5d:45:e8:82:23:7a:c1:9d:6d:37:9b:03:
ec:ea:c4:b7:8f:2f:05:91:0e:dd:8d:11:d8:d0:0e:
a0:50:4b:cf:35:36:a5:fe:26:e1:77:d0:be:21:c1:
d7:57:af:8d:84:c8:3b:b3:08:81:61:02:19:dc:b2:
8f:f8:49:4e:b0:0f:3a:12:41:b5:3f:7b:07:94:df:
f0:f6:34:c1:37:d8:94:f7:9d:15:91:a5:c8:61:47:
4c:b9:a5:54:96:4a:30:9e:d8:36:ed:da:f0:ea:58:
b6:09:85:df:a9:fa:57:c2:50:60:b6:73:d9:94:3b:
d3:78:c8:f0:07:95:3a:d5:a9:c9:36:68:32:8d:d7:
3e:3a:3c:33:49:71:fd:17:84:9e:72:ed:e5:c8:1f:
f1:0b:23:e5:ed:a0:18:18:12:c2:dc:58:04:fe:b3:
94:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:CC:57:66:D8:D8:19:59:F1:A7:DC:76:05:88:FC:10:8B:12:95:6C
X509v3 Authority Key Identifier:
keyid:D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:7a:f4:db:45:fc:bb:9b:95:ef:85:29:66:31:ca:94:4a:e8:
29:d1:fa:c2:09:11:4b:84:61:98:c5:9e:71:de:54:1f:c2:be:
1e:55:b2:42:6c:05:ef:f2:63:00:b8:e6:df:e0:43:6f:2f:91:
cd:15:fb:53:ed:8d:1b:62:24:b7:ee:e2:e6:bd:ea:5a:e6:99:
56:ef:72:95:51:6a:bc:67:cc:6c:77:bd:4e:50:1c:49:f0:c6:
de:b3:63:a7:79:3c:d9:b6:f3:9b:6d:3b:78:41:40:8b:a0:48:
35:52:93:ed:22:69:09:c7:ab:36:8a:24:2c:ab:2c:3b:3a:f6:
3d:cf:d5:ff:5f:74:0d:e2:28:24:3a:dd:71:f3:0c:e8:7a:ad:
9d:70:fb:08:b2:2f:2a:cd:b8:54:6d:b9:19:19:1e:ec:ae:d9:
67:cf:74:88:a1:e8:83:1d:5a:53:03:e3:91:a7:85:00:0a:86:
47:b1:8b:5e:14:1b:5e:45:72:fd:c7:8c:0a:0b:71:24:8f:28:
cd:53:89:e0:21:9b:02:1f:28:6b:86:e5:bf:c4:78:13:2a:f2:
42:16:8f:09:b4:f9:9d:1c:34:d0:c4:ff:90:bd:70:33:77:e9:
34:b0:08:89:5e:c8:1e:35:7a:ec:08:8d:49:78:b9:72:cb:c1:
75:a5:4b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:42:17 2025 by rpki-client