Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
File: I6lUuSO6IAjpheuiQdG3AHF_iEM.mft (raw, json)
Hash identifier: +sLa9GlXUa94DYlaD9x4KkgfpZ4KnFQQj/TQx1ocCwA=
Subject key identifier: FF:1C:58:21:E9:D9:88:14:EE:FE:F6:20:29:DC:BB:C5:EE:98:6D:51
Authority key identifier: 23:A9:54:B9:23:BA:20:08:E9:85:EB:A2:41:D1:B7:00:71:7F:88:43
Certificate issuer: /CN=23a954b923ba2008e985eba241d1b700717f8843
Certificate serial: 0197B88F1949F12A7B31BFCA534A7CA6A94C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
Manifest number: 13FE
Signing time: Sat 28 Jun 2025 22:01:15 +0000
Manifest this update: Sat 28 Jun 2025 22:01:15 +0000
Manifest next update: Sun 29 Jun 2025 22:01:15 +0000
Files and hashes: 1: I6lUuSO6IAjpheuiQdG3AHF_iEM.crl (hash: kdghpxfYvu/b8Qz/zFHcRaeArDCBY44UvR/tmGTFqss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:19:49:f1:2a:7b:31:bf:ca:53:4a:7c:a6:a9:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23a954b923ba2008e985eba241d1b700717f8843
Validity
Not Before: Jun 28 22:01:15 2025 GMT
Not After : Jun 29 22:01:15 2025 GMT
Subject: CN=ff1c5821e9d98814eefef62029dcbbc5ee986d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2d:04:bd:77:88:aa:e7:75:e9:4c:96:81:a4:
36:04:01:09:36:58:91:85:39:77:e7:55:a2:8e:f3:
1e:18:07:0a:a6:8a:82:79:4e:b1:19:f6:7c:ff:a4:
bb:21:af:39:f7:ad:6e:17:24:ee:48:4e:20:e2:cc:
74:4e:76:bf:b4:bf:1e:79:1f:0f:f7:87:1a:41:4c:
85:a2:7a:2d:41:0e:1d:78:3d:33:71:bd:4e:c9:9a:
34:aa:4c:b0:5b:b1:dd:3e:b2:03:c6:41:fe:9b:07:
77:07:53:9f:ad:0d:15:ef:52:13:0c:c7:ff:1c:d7:
ec:4f:4d:6b:71:33:d1:d6:2f:17:34:eb:5e:e4:ed:
27:b3:e1:f4:9e:8f:d1:8f:83:34:41:f1:38:86:59:
99:2c:46:24:70:9e:7f:03:32:ed:63:a5:67:31:94:
8f:50:12:d9:12:32:66:f2:c6:db:c7:df:e8:64:ae:
5a:5f:53:5f:7d:5c:bf:03:b6:e8:25:31:93:00:24:
a9:4c:cf:8a:ab:da:c3:77:c1:89:71:b5:78:68:16:
6a:bb:55:25:98:a3:d0:cd:40:be:4f:2e:20:a5:ab:
a9:03:42:d6:fc:4b:dc:14:ad:62:a7:f3:b2:61:71:
57:c6:60:e5:e2:35:71:bf:fd:e7:83:ad:6b:6d:4a:
92:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:1C:58:21:E9:D9:88:14:EE:FE:F6:20:29:DC:BB:C5:EE:98:6D:51
X509v3 Authority Key Identifier:
keyid:23:A9:54:B9:23:BA:20:08:E9:85:EB:A2:41:D1:B7:00:71:7F:88:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6lUuSO6IAjpheuiQdG3AHF_iEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5d9760-e36e-47c2-96e3-6dc510e98b73/1/I6lUuSO6IAjpheuiQdG3AHF_iEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:cf:05:79:ac:cd:39:24:db:c7:ea:07:0b:00:70:7c:87:08:
43:ed:37:31:cf:9c:f4:b8:79:2a:24:e0:00:b2:08:32:d3:ed:
55:c5:a0:59:55:82:cb:b2:df:21:e6:5d:f4:79:d3:c2:93:d3:
b3:58:87:20:0e:75:f3:90:e7:83:1e:90:5c:02:42:c3:82:a6:
9c:a4:3c:c7:a3:57:eb:ae:8a:a9:38:0e:b7:9d:bd:bf:13:cc:
cf:44:e3:a5:d3:00:20:f4:12:2b:d1:c8:d9:41:96:4f:05:a7:
45:ec:11:88:0b:a7:28:c1:d3:8e:97:75:ac:24:62:22:57:96:
0b:4a:cc:1b:9c:ac:28:da:d8:97:06:7d:24:2d:0c:0e:41:09:
20:c2:a6:53:24:e4:86:45:6b:c9:8f:02:2e:43:b5:d0:05:ee:
ad:2a:55:63:e3:b6:71:16:31:72:3d:32:7d:67:80:5b:f6:a4:
8a:1e:5f:df:0e:89:7e:ad:8c:b9:01:f8:1a:22:57:65:4a:bd:
da:57:72:d1:f2:1e:48:63:77:e6:1f:f8:ed:1a:53:1c:c8:04:
f4:36:a5:35:72:5b:ab:d5:83:9d:22:83:fa:03:d3:23:5e:3a:
51:cd:28:0f:6b:71:ea:61:96:a8:ca:f8:3a:c3:35:10:47:6f:
1e:a4:27:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 05:54:49 2025 by rpki-client