Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
File: 1MiI65YKABkAwnleiq-iaPYC2EI.mft (raw, json)
Hash identifier: f5+hl4vzepAxV31b9+dnLtjW60kJ1W+SteN/Rg5OQaE=
Subject key identifier: 8C:CE:94:DB:B0:60:0E:2A:32:28:31:5A:67:5E:F3:00:1A:C0:28:BA
Authority key identifier: D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
Certificate issuer: /CN=d4c888eb960a001900c2795e8aafa268f602d842
Certificate serial: 0197B6A09198039FE4062DBC5DF558B7BFA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
Manifest number: 0AC1
Signing time: Sat 28 Jun 2025 13:01:05 +0000
Manifest this update: Sat 28 Jun 2025 13:01:05 +0000
Manifest next update: Sun 29 Jun 2025 13:01:05 +0000
Files and hashes: 1: 1MiI65YKABkAwnleiq-iaPYC2EI.crl (hash: LYIFSZ2A1JpS+9SmbPZc5j9zbjJr6CUhFioYx1RTNgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:91:98:03:9f:e4:06:2d:bc:5d:f5:58:b7:bf:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c888eb960a001900c2795e8aafa268f602d842
Validity
Not Before: Jun 28 13:01:05 2025 GMT
Not After : Jun 29 13:01:05 2025 GMT
Subject: CN=8cce94dbb0600e2a3228315a675ef3001ac028ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ae:75:a5:12:c6:3c:a8:d8:06:d7:ff:a3:66:
c3:1e:d1:2e:2e:4e:22:39:38:21:b0:bc:3d:a5:73:
bd:bd:b0:32:c3:9f:ec:d5:84:c5:ec:e1:c5:35:0c:
43:cf:e1:72:5e:f1:a6:ef:0a:cf:ac:b3:60:78:7c:
5e:30:c6:ab:4c:52:fc:34:6e:a4:1b:6d:00:32:14:
3a:4a:81:3c:e7:b3:c5:9d:8f:8c:91:dd:d9:65:1e:
09:7e:93:19:d7:70:6f:8c:e6:6b:73:6f:9b:1b:36:
bd:ff:6b:74:f0:da:ba:8a:59:af:31:4e:42:5e:fe:
b0:0e:5c:2c:f4:89:bc:fc:9b:e3:25:66:52:ba:55:
ea:57:ba:22:97:52:83:66:86:5d:6c:9d:90:c9:5d:
6d:8c:25:93:a4:8a:e0:10:ec:55:08:03:c3:35:31:
af:bc:54:83:55:7f:72:29:79:ef:e9:60:31:d0:61:
de:f6:2b:98:4f:33:fd:e6:34:0e:3c:54:26:f9:30:
9a:18:4b:0d:30:6f:79:47:fd:2e:1e:c0:90:0f:4e:
e5:5d:c7:1c:e8:84:91:c6:5f:7c:63:73:7c:c1:4f:
04:52:19:98:04:aa:27:98:c2:74:ac:78:c6:1a:68:
d5:43:c5:a6:18:35:0c:ac:9c:d7:51:3a:13:c1:3a:
76:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CE:94:DB:B0:60:0E:2A:32:28:31:5A:67:5E:F3:00:1A:C0:28:BA
X509v3 Authority Key Identifier:
keyid:D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:c9:b8:ef:2a:e9:83:e4:31:61:bb:bd:c0:1c:59:4e:e7:07:
18:43:c7:dc:db:fb:fb:62:6b:98:fd:6c:02:7d:96:c6:9c:8a:
6d:f8:cf:78:77:bd:d4:7f:0a:71:2f:9e:a5:87:29:80:7d:66:
e6:ab:3b:ce:69:91:aa:f2:b5:9e:14:6a:cd:c7:cb:a9:37:87:
2d:34:51:00:71:39:70:60:59:0b:77:ae:ff:be:d2:30:86:78:
b0:41:b4:40:29:4c:13:97:cc:68:73:c2:66:59:7c:24:d1:31:
e9:4f:c9:40:97:17:f9:9a:57:77:5f:e4:50:5e:ad:b7:ee:be:
d1:32:fa:26:a2:c6:f1:d7:5e:63:3b:5d:9b:9d:a5:93:f4:95:
a2:ab:72:5d:21:40:f1:42:59:82:a9:4c:3c:25:5a:f0:61:97:
cc:31:32:26:79:75:cb:f9:14:55:3e:90:63:59:6e:72:ff:55:
c2:15:64:0b:1d:10:24:02:13:11:a6:03:0b:e6:3a:bd:88:cd:
e1:3a:f7:9a:2e:ac:f3:a6:85:db:2c:d8:6f:94:cc:e0:d4:95:
09:3e:c7:74:e2:ea:9a:bc:28:5f:d7:5f:66:df:00:08:6c:e1:
0b:61:4a:e3:f4:10:cd:85:10:44:8a:32:68:cf:80:74:7f:e7:
e5:84:20:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:18:51 2025 by rpki-client