Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft
File: a-SeWhSwy_QQTANLVyoPnxVKmXU.mft (raw, json)
Hash identifier: yAlTDHkreXb1TS+/+k4GGSL8Y/O16YXVr7a94vRCd2s=
Subject key identifier: 57:AA:52:64:D7:30:72:D6:6B:E8:B9:0B:F1:C0:0A:81:A2:3B:48:8A
Authority key identifier: 6B:E4:9E:5A:14:B0:CB:F4:10:4C:03:4B:57:2A:0F:9F:15:4A:99:75
Certificate issuer: /CN=6be49e5a14b0cbf4104c034b572a0f9f154a9975
Certificate serial: 0197B7450D4668E4426EDF06B9B1704048FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-SeWhSwy_QQTANLVyoPnxVKmXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft
Manifest number: 045A
Signing time: Sat 28 Jun 2025 16:00:44 +0000
Manifest this update: Sat 28 Jun 2025 16:00:44 +0000
Manifest next update: Sun 29 Jun 2025 16:00:44 +0000
Files and hashes: 1: a-SeWhSwy_QQTANLVyoPnxVKmXU.crl (hash: giXXxg5oiNUsSmGGKo2H3vkFa4F2/UiqQ2yZI9Jnd8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/a-SeWhSwy_QQTANLVyoPnxVKmXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:0d:46:68:e4:42:6e:df:06:b9:b1:70:40:48:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6be49e5a14b0cbf4104c034b572a0f9f154a9975
Validity
Not Before: Jun 28 16:00:44 2025 GMT
Not After : Jun 29 16:00:44 2025 GMT
Subject: CN=57aa5264d73072d66be8b90bf1c00a81a23b488a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a7:1d:ab:8d:8e:77:c1:73:eb:c2:2e:80:e5:
11:1f:48:1b:b2:ba:96:2a:13:76:e1:4c:13:d2:93:
95:cd:4b:64:da:21:02:d3:54:f8:c9:5e:d5:91:84:
f8:93:35:ff:46:c5:f7:73:aa:9e:e5:20:67:cb:fe:
da:b0:46:de:56:9a:2c:cb:87:a3:59:88:ba:b3:88:
70:23:a3:f9:c7:1c:5d:67:6d:f5:be:97:aa:07:71:
e6:b4:d1:5f:55:14:c9:f0:07:03:dd:14:19:1b:44:
b3:55:b2:fa:6c:46:c6:9e:91:d2:a1:7b:d6:07:0f:
a0:b9:0d:18:bc:71:7d:e3:b0:b6:08:29:f2:e1:9f:
45:33:03:9a:5d:33:05:97:42:12:77:65:ae:a1:57:
2f:46:a0:71:92:b1:42:71:35:c8:db:bf:d9:27:09:
ea:3d:e1:ff:6c:10:9b:db:f2:27:79:04:f5:dc:ac:
00:6c:8f:dc:2c:40:6f:53:78:de:98:de:ad:3b:ce:
a2:bd:10:43:02:6a:6d:73:c8:4a:2b:99:c6:b5:86:
76:9b:ff:7f:60:18:e7:67:b7:b8:0f:da:cc:2d:97:
53:0a:22:b8:8f:57:cd:81:7c:f8:41:07:b0:e7:81:
32:a9:c7:f4:9b:70:c7:2a:52:25:3a:35:01:c3:77:
dd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:AA:52:64:D7:30:72:D6:6B:E8:B9:0B:F1:C0:0A:81:A2:3B:48:8A
X509v3 Authority Key Identifier:
keyid:6B:E4:9E:5A:14:B0:CB:F4:10:4C:03:4B:57:2A:0F:9F:15:4A:99:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-SeWhSwy_QQTANLVyoPnxVKmXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:82:67:74:5a:e1:29:b4:5f:62:10:ff:8c:17:53:38:57:18:
77:5d:d0:64:3b:cc:58:e4:22:8b:24:56:a6:30:81:6f:2c:eb:
02:66:20:f4:91:34:5d:3a:f6:bc:35:8c:05:2b:ae:00:f8:bd:
d6:2a:25:4f:22:53:f4:71:17:6e:ed:3d:7d:20:43:0d:69:96:
3a:3f:a0:82:36:9a:47:8f:56:ec:fb:f7:d6:82:8d:b3:35:62:
d6:0e:29:ba:7d:09:2d:e9:94:47:b8:3d:46:59:56:75:5f:03:
83:03:77:67:7d:9b:37:e0:09:5d:22:24:0a:e1:8d:9c:11:41:
29:50:a3:ae:b4:39:ad:fe:7d:3f:8f:73:fa:e9:50:8d:cc:ef:
07:32:f2:28:1a:53:5f:d8:d3:55:24:25:de:9a:06:4c:98:90:
95:1c:bd:fd:da:d9:68:69:12:9d:45:d5:d1:73:4c:c3:04:eb:
5f:d6:7b:a0:d1:34:28:79:56:3d:8e:bd:b2:71:69:94:cb:a7:
53:5c:40:2d:b8:b9:ab:64:bb:4e:6c:52:fe:79:55:41:77:1d:
ca:ae:35:c4:6c:0b:0f:8f:74:f4:c0:bd:2b:6f:79:35:f7:63:
0d:42:c3:d9:78:78:cc:ca:05:b4:2b:34:1d:82:6f:af:e9:70:
6c:4f:7b:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:50:44 2025 by rpki-client