Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
File: 41wFcLO3dz0eEYgufdLGJVN-sJw.mft (raw, json)
Hash identifier: 5Hge8hB1lH1R7g/wgEAfTc7CeBvBJJF7f4adeiYVIaE=
Subject key identifier: 2C:67:CF:69:5B:91:55:9A:5E:64:46:C5:FE:7E:25:17:9B:41:EE:55
Authority key identifier: E3:5C:05:70:B3:B7:77:3D:1E:11:88:2E:7D:D2:C6:25:53:7E:B0:9C
Certificate issuer: /CN=e35c0570b3b7773d1e11882e7dd2c625537eb09c
Certificate serial: 0197B8902D709EAF1F6DB1E87E83582AC4B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
Manifest number: 12EE
Signing time: Sat 28 Jun 2025 22:02:25 +0000
Manifest this update: Sat 28 Jun 2025 22:02:25 +0000
Manifest next update: Sun 29 Jun 2025 22:02:25 +0000
Files and hashes: 1: 41wFcLO3dz0eEYgufdLGJVN-sJw.crl (hash: mLQb88xyyPKN6JOZsVlfMItjR8fDbyLxZtqkZTygj3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:2d:70:9e:af:1f:6d:b1:e8:7e:83:58:2a:c4:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e35c0570b3b7773d1e11882e7dd2c625537eb09c
Validity
Not Before: Jun 28 22:02:25 2025 GMT
Not After : Jun 29 22:02:25 2025 GMT
Subject: CN=2c67cf695b91559a5e6446c5fe7e25179b41ee55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bb:61:ef:2a:66:fd:8b:a5:27:54:b2:a3:ee:
a1:e2:16:4d:64:da:ba:e5:32:2d:ec:ba:39:a9:4b:
3d:5e:7a:fb:8a:93:2a:32:bc:b9:39:b6:45:98:eb:
2e:81:2b:00:85:ef:c8:cd:3a:18:aa:09:fe:39:84:
a3:a3:b4:cf:61:3f:aa:f0:94:7f:5e:ea:e5:bc:f2:
89:20:5d:a1:47:fc:3f:0d:94:2d:e4:3e:d9:07:e8:
e4:67:20:b9:50:8d:c5:05:af:f6:b7:06:a3:87:a3:
42:30:10:2f:2a:94:90:83:67:ee:23:47:b3:f1:72:
af:26:ac:22:ce:b4:29:db:8f:64:a0:b6:1f:07:99:
f4:e8:93:e6:69:36:c8:6d:45:da:46:9a:4a:31:a8:
00:1a:9b:8f:23:56:bd:e2:ed:32:2d:90:0e:35:03:
25:b6:9c:b6:95:89:2a:4b:5c:e7:5d:4d:bb:0c:80:
2f:db:61:23:6a:18:26:3a:0e:20:19:c9:8a:f5:55:
b5:2b:50:30:39:9a:00:c6:43:da:50:30:d9:3a:cd:
39:35:15:28:11:3e:81:af:5e:47:0b:40:e8:ec:6d:
06:69:e0:f4:e1:ef:80:80:aa:60:52:c3:be:ac:3f:
2f:86:81:77:47:a0:db:0e:0b:95:2a:60:3d:c1:93:
36:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:67:CF:69:5B:91:55:9A:5E:64:46:C5:FE:7E:25:17:9B:41:EE:55
X509v3 Authority Key Identifier:
keyid:E3:5C:05:70:B3:B7:77:3D:1E:11:88:2E:7D:D2:C6:25:53:7E:B0:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:e8:82:8a:b5:67:b3:98:60:d8:58:0c:5b:3f:3b:39:fb:8a:
a7:06:2d:e1:3e:20:4b:da:6f:8d:be:1a:7c:39:f9:ec:24:e7:
80:e8:68:cf:d3:69:ce:29:e8:dc:44:7c:38:ab:e5:ce:20:82:
65:39:e9:71:c8:b7:58:79:f5:a8:83:e7:b3:13:e9:ef:33:d7:
a0:13:8e:c3:cc:00:a1:e0:16:21:16:98:eb:cf:47:25:30:01:
ed:b5:69:34:91:f7:b0:a6:5c:a4:0d:f7:88:58:2d:58:d3:c5:
63:0f:43:51:bf:41:06:0d:1e:f8:09:40:1f:d9:74:c6:ed:15:
c9:0d:f8:ed:d2:a4:f7:91:2b:ef:5c:bb:65:18:30:94:3f:ae:
61:08:f5:6a:04:0a:c2:24:d2:71:e6:6e:a8:e8:0d:33:7e:43:
95:0b:4b:cf:a1:5a:d2:37:f3:c6:f2:06:dc:be:23:25:b3:cc:
89:24:f2:01:6d:09:4e:ae:7e:b3:0d:8c:90:26:c8:25:bf:ba:
a6:13:b8:01:37:d8:92:c9:a1:b8:e0:b0:10:87:f2:fc:1b:73:
11:b1:f7:c9:e0:d8:24:04:ad:51:04:ff:53:5a:c8:33:00:2c:
05:42:48:57:7b:81:79:05:ed:6a:80:03:2d:a2:e7:bf:4c:1d:
6b:57:c7:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:33:56 2025 by rpki-client