Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
File: Ma-3caS5EQsRSqgHr7cIaxplN54.mft (raw, json)
Hash identifier: OAERF8jWWXe6URIXh2isc75Z9aaeqOoQPmsvDwzXTdY=
Subject key identifier: 73:E5:6D:CB:66:0F:CB:12:22:56:B9:77:0A:80:2A:BE:B7:EF:18:E4
Authority key identifier: 31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
Certificate issuer: /CN=31afb771a4b9110b114aa807afb7086b1a65379e
Certificate serial: 0197B6A1F6A237C67A99E57F4C360FC2CA7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
Manifest number: 0371
Signing time: Sat 28 Jun 2025 13:02:37 +0000
Manifest this update: Sat 28 Jun 2025 13:02:37 +0000
Manifest next update: Sun 29 Jun 2025 13:02:37 +0000
Files and hashes: 1: Ma-3caS5EQsRSqgHr7cIaxplN54.crl (hash: 10ns0kHV4FsdqOkeKfmWVCKyFQNx1VDN6BWrxV9yjZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:f6:a2:37:c6:7a:99:e5:7f:4c:36:0f:c2:ca:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31afb771a4b9110b114aa807afb7086b1a65379e
Validity
Not Before: Jun 28 13:02:37 2025 GMT
Not After : Jun 29 13:02:37 2025 GMT
Subject: CN=73e56dcb660fcb122256b9770a802abeb7ef18e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:90:54:d6:66:a1:6a:f9:ce:36:fc:98:90:66:
47:e5:a4:60:55:35:a8:91:57:4c:78:e1:20:c2:5e:
ae:1a:da:7c:30:26:34:24:82:50:7e:59:58:ae:b1:
ea:98:2e:da:9f:5d:05:63:2f:90:80:65:ca:34:64:
d1:ee:bc:4b:1f:dc:aa:5d:07:26:db:64:9b:c7:d5:
16:80:a8:fc:78:59:9b:a1:32:48:c8:c6:55:e7:d5:
63:d1:6a:83:25:b2:86:aa:0a:bd:aa:0f:2a:1d:fe:
53:b2:74:51:ed:78:96:58:5a:b0:bc:81:11:cb:bf:
c4:7f:b9:59:e5:2c:4e:fc:05:ad:6c:d8:d2:a9:8a:
4a:af:b0:49:67:a7:d8:54:5c:7a:14:a9:7b:c0:54:
76:ed:fb:e6:33:3f:7d:5f:79:a7:6a:71:9d:c0:6f:
6d:84:a4:71:84:25:df:bc:fd:b6:0f:4e:89:87:bb:
32:fb:c3:e2:31:a7:f1:e4:3f:65:ea:3a:85:52:be:
56:bf:a2:c6:7f:38:69:b6:b8:53:b8:2d:a6:02:ff:
16:32:87:98:f5:c8:1d:c0:51:38:1e:ae:1c:7f:bc:
55:eb:3f:76:6f:ff:67:d9:97:b6:c1:66:08:e6:5a:
78:e0:60:d6:79:6d:87:c9:db:7d:51:20:1b:05:b0:
16:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E5:6D:CB:66:0F:CB:12:22:56:B9:77:0A:80:2A:BE:B7:EF:18:E4
X509v3 Authority Key Identifier:
keyid:31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:2d:f2:99:60:2a:4c:4c:48:e9:4d:2b:96:a9:f7:84:1f:1e:
e7:a3:0a:58:f1:41:67:6d:65:7e:2a:ef:3b:9d:c8:f2:58:12:
10:27:66:13:b2:2e:cd:9f:6e:26:9e:8d:8b:29:e6:86:8e:da:
9c:5c:d8:cd:d0:1b:1f:ca:2a:7e:38:52:e0:e3:13:25:dd:23:
85:e3:23:28:5a:e3:cf:d5:4d:7f:34:2e:1d:b4:04:5e:86:40:
18:29:3a:75:52:b2:e9:76:85:74:c6:77:15:88:2a:99:91:2c:
85:8f:1d:0c:0d:2a:71:10:03:99:28:ad:be:cc:99:c2:54:44:
76:63:bf:36:da:7b:b1:3f:8f:58:e0:18:fb:45:8f:15:a6:d3:
ce:80:c1:03:10:bf:fe:12:7d:2e:3e:36:58:69:b6:c9:8f:72:
54:9c:4e:14:d9:38:1f:03:cf:28:ff:0d:8f:36:81:e4:46:ad:
80:a8:31:14:45:2c:b1:0e:57:68:4c:4f:e0:a5:1a:72:c6:54:
86:3f:a1:e1:f1:fc:36:8c:18:46:88:14:1d:e8:4b:43:ec:34:
5e:2d:93:a1:4a:cd:3a:9f:6d:bc:2d:e3:ea:b5:30:ca:96:1f:
e0:08:cd:6b:ce:5c:95:6b:9f:80:09:6b:cc:29:56:ae:71:07:
f2:c7:f1:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:20:19 2025 by rpki-client