Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
File: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft (raw, json)
Hash identifier: KHdItNstYdzZbX3+xdPY9KDai38KPAlWC8xoaDl7mhM=
Subject key identifier: FA:F2:94:30:47:85:86:80:E2:61:B2:5A:2F:12:D9:54:D5:5A:24:3B
Authority key identifier: D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3
Certificate issuer: /CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3
Certificate serial: 0197B6D7A2B6AC8A83711EE7093A6E22E713
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
Manifest number: 0EEC
Signing time: Sat 28 Jun 2025 14:01:14 +0000
Manifest this update: Sat 28 Jun 2025 14:01:14 +0000
Manifest next update: Sun 29 Jun 2025 14:01:14 +0000
Files and hashes: 1: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl (hash: xTIxpUpos7gwoaRTn5l0aoroJQe0NdHAuw8j+bYw0+c=)
2: fKmmYJWJ4PEyW03R1GMx50v7dJU.roa (hash: mKILdaPsSf1rCWCwboqDxfWauZkoLUzcUqKnlg5HNcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:a2:b6:ac:8a:83:71:1e:e7:09:3a:6e:22:e7:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3
Validity
Not Before: Jun 28 14:01:14 2025 GMT
Not After : Jun 29 14:01:14 2025 GMT
Subject: CN=faf2943047858680e261b25a2f12d954d55a243b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:37:33:77:9f:99:0f:0d:27:46:ed:43:2d:c1:
09:4e:00:58:91:20:0c:71:92:db:ef:d3:8f:59:92:
79:74:cb:73:c8:45:26:9d:fe:0d:23:66:c2:d5:13:
65:2f:7a:6a:95:77:02:8a:b8:1a:bc:ca:4b:7a:e5:
50:e1:4a:06:25:51:18:67:46:b7:b9:47:9d:5e:98:
f0:3a:e5:17:65:c9:5e:ad:9f:45:10:76:7b:5f:4e:
dd:64:73:88:47:49:9e:4d:07:f9:fb:44:05:d2:71:
ce:c7:ab:bc:ab:02:4b:96:b8:eb:a3:04:a7:69:04:
9d:2f:e9:a4:e6:29:00:33:5e:35:04:4b:4f:3d:8f:
d6:a2:7b:90:6e:70:3c:9a:d9:78:66:79:62:71:40:
82:98:55:cf:04:8a:e3:66:49:a0:f0:46:e3:ce:b8:
13:98:61:a6:41:da:2f:e9:ce:0c:f5:46:54:ce:4c:
1f:da:61:b1:05:1e:0a:18:84:d7:df:60:d6:58:9c:
1c:6a:07:52:fd:1c:08:08:c9:f4:ed:d0:f5:a8:da:
a1:78:e3:f4:22:66:e9:f6:ba:41:bb:47:2f:ea:42:
c0:47:39:5e:36:c6:fe:f5:3e:ab:77:06:1f:36:3f:
29:71:4f:61:59:9a:7a:b8:9d:9f:ee:80:59:9c:74:
aa:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F2:94:30:47:85:86:80:E2:61:B2:5A:2F:12:D9:54:D5:5A:24:3B
X509v3 Authority Key Identifier:
keyid:D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:6a:e3:92:71:a2:b9:bc:62:73:c9:f3:7c:ae:2a:2c:73:90:
3e:11:cd:85:d8:bd:be:fe:73:2b:04:a7:0c:de:3a:11:f7:58:
b8:21:92:f4:d2:83:82:5f:14:b9:99:21:ec:ca:61:7d:ce:74:
96:51:5b:3b:fd:b1:58:66:54:9b:d9:8b:8c:fe:2c:73:fb:48:
57:08:92:07:59:fa:6c:ae:b0:d0:bd:19:a4:72:3d:55:88:b5:
d9:28:86:37:b7:53:bc:70:e1:b1:32:f5:75:af:04:e4:12:5e:
ef:39:c4:2a:fb:6f:05:28:db:15:2e:79:f6:b5:79:de:37:3b:
87:76:3e:cd:4a:28:e5:18:9b:a8:61:f7:07:5f:8d:5a:47:3e:
6f:4c:a3:9a:8c:37:a3:ae:e0:6f:95:0c:55:1b:14:fe:f3:45:
f9:98:5a:dc:b5:c8:ac:da:77:95:db:67:dc:39:dc:79:ff:8e:
de:2b:36:48:43:24:54:30:5d:fe:b7:41:03:39:21:7c:fe:2d:
c4:9f:a9:e0:36:94:ce:37:81:0d:b8:1e:61:27:e0:6a:93:fd:
d2:fc:0b:2c:47:64:3b:7b:91:c0:d4:45:3d:ef:d6:5b:40:33:
cd:93:22:93:3c:79:74:d2:63:f3:29:ae:62:63:68:97:b8:8e:
c8:09:c1:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:11:05 2025 by rpki-client