Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
File: 4IZuWnxyXctqE4zGw0DP2tQxXT4.mft (raw, json)
Hash identifier: QhwszyudIP+QTwfCAA5TccjRE545Utc0dQYdmdoOZqM=
Subject key identifier: 3D:BF:E3:F8:9C:09:9F:A1:9A:D8:A7:51:6D:14:8C:DA:24:8F:40:BC
Authority key identifier: E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
Certificate issuer: /CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Certificate serial: 0197B70EC9188D7F3EE44F0181E58ACCA6CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
Manifest number: 15B1
Signing time: Sat 28 Jun 2025 15:01:28 +0000
Manifest this update: Sat 28 Jun 2025 15:01:28 +0000
Manifest next update: Sun 29 Jun 2025 15:01:28 +0000
Files and hashes: 1: 4IZuWnxyXctqE4zGw0DP2tQxXT4.crl (hash: L/E3rda1XnWdV5mTuSD1FXiU9REl11nZp2O9cfKYa2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:c9:18:8d:7f:3e:e4:4f:01:81:e5:8a:cc:a6:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Validity
Not Before: Jun 28 15:01:28 2025 GMT
Not After : Jun 29 15:01:28 2025 GMT
Subject: CN=3dbfe3f89c099fa19ad8a7516d148cda248f40bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1a:f8:f8:44:05:60:60:0f:53:cd:bc:98:38:
d6:92:72:dc:a5:20:39:23:49:77:6c:d6:f1:f8:d1:
6f:cd:52:77:07:34:e1:96:85:f9:e2:7a:b1:94:54:
1e:3a:41:c3:4c:f9:a4:aa:8f:84:d0:c9:33:19:d1:
a2:9c:f5:83:39:f9:c9:ac:49:cc:5d:61:22:2c:67:
c0:c9:5a:57:c1:da:71:48:05:55:33:41:a0:72:fa:
fa:54:f0:c4:8c:db:c9:1f:0d:18:eb:27:b8:3f:b2:
43:29:e0:a3:ac:02:86:06:bf:48:b3:c4:51:7e:4d:
e8:a6:ec:d7:7b:06:af:93:c4:64:26:89:91:c3:64:
b0:3c:f7:76:b3:5d:09:bf:6a:8e:76:51:a1:f0:88:
ae:59:77:68:85:7f:30:77:75:e0:3d:45:d0:50:af:
4a:da:a9:1a:4b:fa:52:b2:28:93:07:9c:d2:39:75:
70:7f:20:69:7f:53:c3:77:90:c7:0d:f6:f4:96:a4:
0c:8a:1a:56:b7:16:ac:94:20:63:83:9e:6c:94:64:
cc:2a:31:6f:14:f0:c5:a3:47:d7:e9:32:5e:92:3a:
02:f1:a8:d0:4a:1e:56:25:a3:6b:b0:6d:a3:13:10:
da:26:c8:7f:55:dd:ee:74:64:ed:e4:e9:07:2c:a1:
cf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:BF:E3:F8:9C:09:9F:A1:9A:D8:A7:51:6D:14:8C:DA:24:8F:40:BC
X509v3 Authority Key Identifier:
keyid:E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:ec:5e:45:ac:cc:fc:2d:04:c9:03:e8:d3:29:78:2a:55:b9:
f7:5e:40:14:22:8d:10:82:82:eb:a7:e3:d5:06:0a:93:f2:6c:
ad:e9:4c:ca:a9:c7:45:14:9a:fd:fd:86:80:39:8f:f8:41:0f:
30:b2:80:d3:15:6f:69:14:04:a8:15:5f:e0:01:57:31:05:03:
1f:8e:ff:37:81:11:3a:1e:bf:c4:de:c5:1d:5c:ef:6b:dc:44:
64:63:58:ec:21:80:90:b0:f1:35:aa:7e:2c:4d:b1:47:5e:4e:
87:06:06:48:20:ab:5c:c2:48:a4:1e:de:4d:a6:2f:13:ec:89:
2e:72:73:68:20:be:94:75:5b:0a:57:1d:f0:6b:e1:a0:02:91:
99:1b:7a:9e:b6:75:ad:23:66:d8:47:1b:98:3a:8a:7d:0a:da:
d1:37:9d:45:fe:a2:f9:60:96:41:f7:c9:76:b9:87:c1:cf:21:
ec:3c:0d:32:40:57:6e:63:b6:32:13:c1:5c:4b:2c:01:17:23:
a2:bb:5c:7f:53:87:aa:ea:49:5f:26:ed:47:34:39:3c:84:50:
6f:e2:d3:68:f9:80:ab:80:ba:5b:8b:e7:6b:7f:44:c7:e5:e1:
d8:89:02:13:76:d0:62:df:c7:d2:23:9e:67:2d:20:dd:29:99:
53:21:6d:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:39:02 2025 by rpki-client