Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
File: cfxj7vZnTya1A6gwpd-pU9L_qr4.mft (raw, json)
Hash identifier: dzowMCA+ioROCbhsGmYS1DxH/d4lytPiZGfkTHTudmM=
Subject key identifier: 94:F0:30:5C:AF:62:A9:F7:1F:24:94:7F:C3:62:92:1B:A5:5A:06:43
Authority key identifier: 71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE
Certificate issuer: /CN=71fc63eef6674f26b503a830a5dfa953d2ffaabe
Certificate serial: 0197B6D795ECAF26AF87B38B16B7E6875B5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
Manifest number: 141D
Signing time: Sat 28 Jun 2025 14:01:11 +0000
Manifest this update: Sat 28 Jun 2025 14:01:11 +0000
Manifest next update: Sun 29 Jun 2025 14:01:11 +0000
Files and hashes: 1: cfxj7vZnTya1A6gwpd-pU9L_qr4.crl (hash: MH0lrsPA9AggoZTLjcLQTtVybNBNtFXknD78Mne3/QM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:95:ec:af:26:af:87:b3:8b:16:b7:e6:87:5b:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71fc63eef6674f26b503a830a5dfa953d2ffaabe
Validity
Not Before: Jun 28 14:01:11 2025 GMT
Not After : Jun 29 14:01:11 2025 GMT
Subject: CN=94f0305caf62a9f71f24947fc362921ba55a0643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a3:c9:d5:e8:48:53:7a:75:06:fd:47:c5:33:
ec:e4:e9:aa:13:ab:72:9a:46:5d:81:76:6c:89:45:
29:0b:30:79:2f:fe:bd:ea:c7:83:c0:0b:ab:45:bd:
fa:28:03:18:0f:a7:3b:62:4f:fd:4e:c9:e5:27:68:
05:ae:d4:08:aa:6d:32:82:30:63:94:cb:66:01:0e:
a4:2f:23:ab:72:19:e0:0a:67:ff:42:10:9f:36:5b:
b0:ba:2c:04:49:be:d3:a4:cc:09:d0:07:60:9f:49:
66:3b:2b:8a:27:43:41:f9:df:53:15:81:ec:1d:cb:
69:13:4c:6e:87:2b:30:03:3c:fb:75:5b:44:fe:45:
1e:3f:61:a0:97:9b:fe:2f:4a:ea:df:7d:3d:c9:8f:
d0:30:c3:0c:5c:a2:b5:4d:99:ee:dc:6a:46:f0:6b:
b1:d6:e2:e5:da:49:d6:a2:97:ae:43:fd:ec:da:6c:
fe:db:eb:53:a4:b8:0b:e1:07:3b:e8:ca:d0:2f:90:
71:7d:b6:1c:71:ec:69:2a:b1:ba:fa:73:be:2f:47:
65:df:d1:dd:3d:53:38:9b:13:b8:ac:da:2f:cf:df:
b8:96:ca:0e:f0:57:85:b3:2e:8a:b0:11:b9:f4:d5:
04:2b:88:f6:a6:de:8e:c4:32:7e:5d:59:fe:c2:40:
07:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:F0:30:5C:AF:62:A9:F7:1F:24:94:7F:C3:62:92:1B:A5:5A:06:43
X509v3 Authority Key Identifier:
keyid:71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:ff:cd:97:a9:2b:0e:7e:3f:2b:f0:df:c1:96:f5:7c:99:4f:
eb:c2:88:47:88:4c:05:1b:61:64:f1:7f:c4:e0:b7:66:c4:01:
2d:9d:b3:7c:73:90:f7:07:2e:bf:0f:c6:ad:a3:2a:98:64:f7:
08:2c:09:bd:d6:44:71:57:1f:6d:6d:28:03:e6:c3:82:94:1e:
a8:23:05:eb:05:b6:06:30:84:6f:6e:5c:63:8f:76:f1:13:d1:
09:5f:83:b8:7a:3b:1e:32:8c:ae:94:11:32:6f:d9:ff:82:61:
97:da:4e:75:ea:3c:cb:ec:f1:ca:15:16:b9:a2:cb:4b:cc:c6:
27:9a:ac:5a:f9:c6:63:7e:00:bd:96:dd:99:72:55:88:c6:e2:
fe:89:91:a0:ac:b8:f2:1e:f1:19:23:67:74:16:35:c1:54:f5:
29:70:b9:b7:7e:db:5c:1d:01:05:28:31:c1:cc:40:36:cb:40:
e0:fa:8e:e8:24:0b:e4:43:d7:ec:7e:d1:b9:3b:e8:09:cc:0a:
b2:f5:55:f1:81:fe:9b:c8:28:00:d8:5f:37:80:6d:42:18:c1:
dc:9c:36:9c:2b:63:66:bc:ad:3a:8b:d2:f0:7d:b7:e3:29:25:
9e:db:34:88:3c:f1:5b:70:08:11:64:8c:05:32:55:41:25:54:
3f:f6:88:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:43:22 2025 by rpki-client