Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
File: 1T5Pyhar83QtTaK_nD2abpHpbuU.mft (raw, json)
Hash identifier: vmJXMznDXPgSdJa4Pdhf0cG4OGDeH9oww2nK7ZWzyhk=
Subject key identifier: D2:65:E0:83:E2:B5:E8:68:0B:BE:82:15:4C:AA:14:14:6C:46:3E:33
Authority key identifier: D5:3E:4F:CA:16:AB:F3:74:2D:4D:A2:BF:9C:3D:9A:6E:91:E9:6E:E5
Certificate issuer: /CN=d53e4fca16abf3742d4da2bf9c3d9a6e91e96ee5
Certificate serial: 0197B77C5667670CB13AFA6247247D0D965F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
Manifest number: 12C8
Signing time: Sat 28 Jun 2025 17:01:08 +0000
Manifest this update: Sat 28 Jun 2025 17:01:08 +0000
Manifest next update: Sun 29 Jun 2025 17:01:08 +0000
Files and hashes: 1: 1T5Pyhar83QtTaK_nD2abpHpbuU.crl (hash: KeQ+VTSlqflrHwXHCKwXcSyEd2VTcQZlmmck+WMWFAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:56:67:67:0c:b1:3a:fa:62:47:24:7d:0d:96:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d53e4fca16abf3742d4da2bf9c3d9a6e91e96ee5
Validity
Not Before: Jun 28 17:01:08 2025 GMT
Not After : Jun 29 17:01:08 2025 GMT
Subject: CN=d265e083e2b5e8680bbe82154caa14146c463e33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9f:31:be:69:88:0f:52:ed:29:66:e6:34:cd:
09:49:3f:18:22:86:46:fa:37:62:2a:eb:ff:d5:1a:
b9:e2:2f:6d:39:6f:67:27:77:47:24:02:5b:2a:88:
ae:a1:7d:f6:32:a8:14:40:43:7d:4d:b8:10:46:33:
d1:d8:73:f3:4d:0c:d6:d8:5b:7d:a7:77:05:86:bb:
71:c1:ce:68:af:32:01:b7:90:12:50:7b:cc:01:25:
6f:62:b7:99:83:68:26:e1:92:cd:e3:d0:fd:ec:a1:
15:37:b9:46:8d:fe:10:d7:05:00:d3:f8:33:b1:31:
bd:21:f6:87:03:e0:4a:73:df:6d:5b:41:93:4b:ba:
4f:c6:f8:3a:5b:81:ed:0c:71:c0:87:a1:d7:89:0b:
65:33:21:dd:16:3f:d2:92:d3:ef:40:ee:ca:ca:33:
ea:a3:b7:ed:19:83:62:00:93:39:5d:6c:21:c3:3e:
4d:99:89:73:15:b5:4d:bb:41:33:1a:36:04:d1:42:
4c:b6:c8:7b:6a:e0:bc:d4:cd:dd:5b:03:84:97:f4:
02:e6:7e:3b:d2:2f:d9:31:1b:8d:ee:02:cd:48:7b:
4d:e4:a1:d7:53:74:87:d8:84:98:01:01:67:a3:58:
f9:38:64:0b:2b:3d:31:1f:fa:6e:46:65:41:03:d8:
86:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:65:E0:83:E2:B5:E8:68:0B:BE:82:15:4C:AA:14:14:6C:46:3E:33
X509v3 Authority Key Identifier:
keyid:D5:3E:4F:CA:16:AB:F3:74:2D:4D:A2:BF:9C:3D:9A:6E:91:E9:6E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:31:ab:56:0f:77:88:4b:11:80:2e:4c:65:24:49:33:58:75:
d5:12:5e:b5:cd:59:b3:14:1c:89:ef:25:c0:62:6f:69:7d:65:
e1:46:89:1e:2e:5e:ba:d3:11:e2:43:db:c8:b4:49:38:ec:b9:
9c:ce:60:64:10:3b:ff:f9:e0:c5:ad:06:9c:96:52:41:40:45:
ae:aa:22:ec:0f:7f:1a:b3:20:f5:bc:89:ff:19:5e:97:84:2b:
cd:b9:4d:f1:ef:60:9f:bb:0c:69:cd:7c:06:3b:93:03:c2:5f:
ac:93:cc:76:af:90:45:e3:f7:2c:f7:be:47:22:ea:db:aa:09:
1b:20:d1:07:0b:02:e8:95:de:8a:b2:aa:2f:24:e8:9e:63:1d:
6e:4b:50:d3:fe:0d:bf:b0:0c:fd:49:43:f4:aa:cb:a4:60:2f:
25:3a:d1:49:eb:61:d2:c9:4b:f7:d1:c3:50:b0:38:e0:ba:ba:
9d:34:7f:6e:a0:66:fc:47:31:83:fc:5c:eb:95:e9:45:0f:6d:
89:e6:8e:8b:cd:69:b1:3e:90:f9:a3:f8:49:69:ac:2b:d0:4a:
7a:51:a3:2b:bd:8f:17:8d:39:1e:37:71:9b:be:80:1e:6e:d9:
34:06:f9:81:c0:b2:0f:13:90:f2:7a:95:5a:69:10:a2:43:bd:
98:b7:c1:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:27:52 2025 by rpki-client