Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
File: 1-puJ82fU-5UCh3AfYtSgObf2yyA.mft (raw, json)
Hash identifier: l8OX73BbdxyOFv87wumldoSLXTATFJvoU2rQTbZ4mQo=
Subject key identifier: 73:F8:CF:BC:76:E2:DB:D0:56:B5:D8:9D:BB:6E:B0:23:97:60:68:28
Authority key identifier: FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
Certificate issuer: /CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Certificate serial: 0197B7EAAA1CC9C24D17EB199CD39864EC65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
Manifest number: 13C3
Signing time: Sat 28 Jun 2025 19:01:38 +0000
Manifest this update: Sat 28 Jun 2025 19:01:38 +0000
Manifest next update: Sun 29 Jun 2025 19:01:38 +0000
Files and hashes: 1: 1-puJ82fU-5UCh3AfYtSgObf2yyA.crl (hash: IZX9u+h6W149pN+qSneUCbF3x3dPEAJtrO+8nWXJNIo=)
2: BkhUnEeKLpdw7zqQsCW8fb_TG_I.roa (hash: krWgcFHtgzZmGIlUNG6InVr0KfezPC+cFYoPcdTkKaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:aa:1c:c9:c2:4d:17:eb:19:9c:d3:98:64:ec:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Validity
Not Before: Jun 28 19:01:38 2025 GMT
Not After : Jun 29 19:01:38 2025 GMT
Subject: CN=73f8cfbc76e2dbd056b5d89dbb6eb02397606828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:76:3b:39:b1:2a:1b:86:a6:d2:a5:04:42:ca:
ee:4f:0e:a6:d8:d2:d1:40:57:43:80:72:bc:a7:12:
5f:63:bf:43:93:e6:ee:76:61:9f:06:27:6d:63:81:
bd:9e:70:d0:9a:f8:71:0a:8f:03:86:8e:8e:a2:92:
8c:22:50:59:e1:b2:64:9c:d6:24:c8:cf:25:22:07:
b0:f0:49:bb:77:b2:96:bd:85:ff:6e:02:6a:43:2a:
1e:ff:aa:7a:ff:fc:19:6c:59:06:ca:b8:a0:8c:0f:
a0:fc:bf:8c:b1:43:cc:28:76:3f:df:82:4a:b3:27:
c4:e6:50:0b:7a:89:fb:de:8a:a9:dd:d4:13:9f:6f:
a1:1b:a2:55:43:48:36:d0:11:fb:97:5b:19:b1:86:
23:73:9e:f2:ea:dc:af:22:ca:57:2c:c4:12:79:83:
b5:99:33:50:63:30:6e:3a:c9:d8:75:29:eb:de:5a:
d8:f6:07:7c:37:40:4e:05:54:57:83:b2:af:25:37:
35:19:07:c3:36:0f:32:7b:60:03:52:ad:1f:51:5f:
17:52:83:30:98:d0:92:6e:e5:2f:ea:ca:55:f5:17:
3e:b0:56:71:98:23:0f:ed:5c:1b:73:7d:ac:87:5b:
19:38:46:de:12:28:0f:66:68:fa:a5:58:ed:5c:83:
55:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F8:CF:BC:76:E2:DB:D0:56:B5:D8:9D:BB:6E:B0:23:97:60:68:28
X509v3 Authority Key Identifier:
keyid:FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:7e:52:04:c7:ac:e2:20:28:91:10:15:f7:5d:4e:4e:ce:9d:
3c:c1:c6:a7:96:9b:4e:61:cf:99:21:a8:2e:b3:77:73:45:ba:
d8:28:4f:72:e3:a0:26:53:e1:7f:0c:ab:a5:8d:19:f5:07:bf:
41:f4:01:d8:d8:04:6c:76:b0:fe:e8:77:9b:4b:ad:33:33:c4:
0c:25:a6:af:c8:2b:5f:37:0a:a9:f8:e5:ea:68:03:fc:d3:cf:
0e:87:ad:7e:a8:d4:fd:64:4b:0e:5e:ea:c3:bc:71:f6:56:d8:
79:40:0f:62:45:e0:03:87:aa:cc:e3:a1:d9:b8:4b:fe:20:60:
5e:45:da:57:03:73:3a:ca:c8:ec:64:29:3a:55:ff:b8:82:53:
30:de:64:87:46:d6:4e:80:1b:63:df:d1:eb:ba:6e:d2:06:5e:
21:02:b4:b3:39:3d:b4:43:52:2a:82:64:67:f6:4e:51:4e:ca:
4c:47:81:7e:39:db:1f:ed:6e:00:90:51:82:1f:df:50:05:0e:
65:1a:b0:26:a0:40:6c:e6:52:cb:1b:7d:70:e9:e3:ea:9d:23:
50:ab:ec:ce:0c:d1:a5:5d:2d:c6:9a:17:94:f3:3b:13:7a:9e:
06:07:25:fc:a6:9f:9a:26:9b:db:e2:fd:1e:8d:50:be:e1:da:
c9:51:2b:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:54:19 2025 by rpki-client