Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
File: 09XiCPMtcw1DHUpNTtgJWx59lDE.mft (raw, json)
Hash identifier: ow6W8OwWj9uCBn/lHPENIUD1+uqbfZ/2FgNleO1qok0=
Subject key identifier: A3:45:13:6C:B0:18:91:F7:5B:D3:32:6F:E4:EE:9F:9B:B7:F6:8E:A8
Authority key identifier: D3:D5:E2:08:F3:2D:73:0D:43:1D:4A:4D:4E:D8:09:5B:1E:7D:94:31
Certificate issuer: /CN=d3d5e208f32d730d431d4a4d4ed8095b1e7d9431
Certificate serial: 0197B6A13764AEE727DCEA0737618FCF6D7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
Manifest number: E2
Signing time: Sat 28 Jun 2025 13:01:48 +0000
Manifest this update: Sat 28 Jun 2025 13:01:48 +0000
Manifest next update: Sun 29 Jun 2025 13:01:48 +0000
Files and hashes: 1: 09XiCPMtcw1DHUpNTtgJWx59lDE.crl (hash: FSBu6LGAbjsFjiqynt8T9FHWdU2AStrDbLwM8ZSduSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:37:64:ae:e7:27:dc:ea:07:37:61:8f:cf:6d:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3d5e208f32d730d431d4a4d4ed8095b1e7d9431
Validity
Not Before: Jun 28 13:01:48 2025 GMT
Not After : Jun 29 13:01:48 2025 GMT
Subject: CN=a345136cb01891f75bd3326fe4ee9f9bb7f68ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:56:e2:09:06:0d:57:71:60:ab:e6:73:fb:bf:
fa:b9:f6:cf:8d:9b:1e:6c:38:d4:18:37:e0:a3:52:
f4:27:a2:e7:cf:a7:62:ca:17:ca:f9:09:73:50:ec:
99:fe:bb:cf:a5:22:53:e5:e8:50:09:63:f0:c7:32:
61:a1:ae:b8:df:88:40:0a:ac:d4:5a:85:49:17:2b:
74:85:d4:b1:b6:93:87:11:ff:34:31:97:d6:40:66:
48:18:d0:15:2f:46:7d:e6:22:49:1c:27:e5:e3:52:
82:16:43:52:b3:63:8a:9f:5f:a9:dc:0d:14:c0:bd:
f4:89:c5:b3:23:e7:31:8f:5a:55:05:09:bd:23:d9:
28:ad:69:ab:c7:d4:b6:ed:7a:33:01:5c:32:86:4a:
16:03:c6:3d:d8:44:77:e5:40:50:10:03:0c:49:a4:
dd:bd:b9:4f:de:a1:a9:16:95:bd:e5:cf:6d:aa:65:
c2:7a:ed:a2:e8:ec:ff:bf:c8:79:34:7a:f0:f3:80:
13:c8:aa:9a:53:f3:22:ed:c6:46:14:d1:c0:f7:69:
10:a7:22:2c:4c:51:f4:a0:f7:10:1d:9a:05:4a:30:
54:e5:e6:88:c9:48:4d:4e:bc:91:c2:e8:0d:bc:87:
1f:2f:94:fc:de:32:58:4c:76:ab:df:57:09:4c:e6:
a2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:45:13:6C:B0:18:91:F7:5B:D3:32:6F:E4:EE:9F:9B:B7:F6:8E:A8
X509v3 Authority Key Identifier:
keyid:D3:D5:E2:08:F3:2D:73:0D:43:1D:4A:4D:4E:D8:09:5B:1E:7D:94:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:20:a2:c4:0a:94:69:7f:b0:73:50:67:ba:e0:8e:13:db:c3:
81:33:a6:58:6b:58:a2:2f:8d:f3:5d:a4:ec:ca:14:40:00:85:
ea:5b:11:cc:6a:ce:c2:bb:cc:87:e9:a7:db:df:78:58:c8:21:
19:09:84:89:a0:60:49:ed:53:f9:c2:75:6a:45:89:45:34:ef:
06:fa:61:87:ed:02:ba:ff:a6:57:65:9f:84:42:87:fb:c7:a3:
ae:62:4c:24:ae:7f:0b:8a:cf:9f:33:e6:a3:ce:c2:7d:19:df:
77:ef:4a:f7:52:38:a9:eb:a1:34:c2:40:d3:e2:7c:23:a5:e7:
b0:43:f0:eb:9a:63:88:e6:a9:41:93:2a:3b:7b:3d:26:9c:e7:
98:57:46:35:bc:e7:0b:ff:0c:cc:4d:d4:04:28:bd:4c:02:e8:
30:4c:70:cb:8e:f4:de:bc:5c:15:cd:0c:15:a5:a2:fe:84:b3:
b3:f4:86:e8:0d:77:2f:a7:eb:99:df:5a:86:a6:62:82:3d:ff:
83:8a:a9:43:3b:6f:b6:31:15:ec:28:68:56:86:1d:0e:40:34:
77:a7:f3:de:3f:9c:99:1b:8a:4c:2c:4a:99:69:5d:21:da:75:
f6:d3:79:2d:61:fa:38:6f:ed:b2:eb:ec:97:96:8f:a1:8a:43:
50:7b:bf:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:48:18 2025 by rpki-client