Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
File: r5aNFt0rQdNStf0zxJs-xP2tQlg.mft (raw, json)
Hash identifier: A8gxKO33TKn4P3biS3hpyTMW1b2gxporbfJCL8MUtw0=
Subject key identifier: 30:BB:49:0A:9B:63:E8:5D:C2:06:3E:6E:D3:7B:BB:B4:42:BC:8F:9B
Authority key identifier: AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
Certificate issuer: /CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Certificate serial: 0197B7EA72D244BA4C58765EC161D150B973
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
Manifest number: 0EC6
Signing time: Sat 28 Jun 2025 19:01:24 +0000
Manifest this update: Sat 28 Jun 2025 19:01:24 +0000
Manifest next update: Sun 29 Jun 2025 19:01:24 +0000
Files and hashes: 1: r5aNFt0rQdNStf0zxJs-xP2tQlg.crl (hash: vHBHnSYRbe16aLei5KK4HFwqhIWbZYBfyONT8DOaBKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:72:d2:44:ba:4c:58:76:5e:c1:61:d1:50:b9:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Validity
Not Before: Jun 28 19:01:24 2025 GMT
Not After : Jun 29 19:01:24 2025 GMT
Subject: CN=30bb490a9b63e85dc2063e6ed37bbbb442bc8f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5a:c2:68:92:66:1a:5f:07:79:ec:cf:38:7c:
1e:ef:f1:45:22:7c:09:08:56:72:72:df:ab:50:ff:
2d:63:26:69:b2:5b:bc:ea:9b:3f:68:84:cb:04:bc:
b0:19:1e:ee:72:7d:8d:fd:8a:ef:2a:c3:90:c6:c7:
d6:70:0f:36:3c:d3:51:6e:59:ed:5c:11:39:65:8b:
61:d1:0e:84:36:0b:22:46:cc:c9:b4:17:08:ab:4d:
c6:fc:82:46:03:0e:44:c8:3e:a5:c0:5b:7c:29:9b:
68:18:f9:8f:ac:e6:89:5b:20:f0:4b:f5:47:2d:54:
f2:8f:90:3c:d4:4c:25:69:d9:5a:c6:e9:73:0c:9b:
49:26:fa:65:3f:fb:23:f0:7a:25:dd:04:27:bc:42:
a6:c5:ba:1c:fa:0e:3e:94:c1:e5:b7:be:77:bb:77:
80:32:03:ca:33:d2:8b:12:67:ec:f1:6b:dd:5f:a7:
b0:0c:6d:73:e2:e5:1a:6c:0e:f8:94:62:6c:40:ea:
d0:64:0b:24:82:59:54:00:e9:fd:9f:92:78:09:cb:
c9:2c:27:a1:56:e2:27:1d:66:b2:34:dd:5f:ba:18:
89:88:c7:27:93:6d:9b:d8:da:c2:e7:f7:1b:7f:4a:
ec:69:23:40:15:b4:29:20:b6:0a:52:d6:a6:97:cc:
f7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:BB:49:0A:9B:63:E8:5D:C2:06:3E:6E:D3:7B:BB:B4:42:BC:8F:9B
X509v3 Authority Key Identifier:
keyid:AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:4c:50:32:70:db:a7:b7:b3:4d:62:2a:37:59:54:20:ca:cd:
a4:ee:2e:4c:b7:c1:aa:83:af:4a:01:c4:1f:4d:ec:62:f8:c8:
27:1f:4e:b1:04:b7:ba:6a:63:0f:5f:8a:1e:9f:eb:c9:6b:92:
2c:eb:6d:18:af:f7:cb:1b:9d:ec:59:60:91:f9:3f:17:a6:e3:
45:53:af:92:bf:78:91:a1:8c:c3:99:93:ac:0a:20:ce:63:99:
ed:2a:3c:3f:e2:33:6a:ea:4e:06:40:bc:0c:0b:50:eb:d7:10:
5e:95:18:44:2b:29:53:e1:8a:87:00:10:da:0f:d2:f1:7c:f7:
d8:15:f2:5c:00:3c:2c:19:45:96:5c:d9:7a:62:dd:1b:79:80:
2c:45:30:9a:2e:1c:74:c5:54:1e:32:bd:93:c0:fb:aa:f8:45:
4c:ef:34:56:f7:be:f3:79:a4:93:03:17:58:20:f7:cd:80:13:
85:d9:ba:9e:b2:e1:23:ee:d4:a1:dc:b1:e9:d4:dc:71:df:00:
52:98:5b:a5:9b:c3:2a:ca:43:32:36:5d:56:5a:d0:44:3c:c8:
e9:3e:d4:4b:49:64:af:1a:98:ef:de:fa:ff:96:29:b5:bb:12:
11:e9:3e:23:78:c4:50:3c:77:ba:d3:f8:9c:71:63:67:06:46:
60:29:2a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:48:49 2025 by rpki-client