Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
File: b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft (raw, json)
Hash identifier: Mf+1xKXKefK0LBqVx/uMdaWnP7owCr9vY73zeGlg5vo=
Subject key identifier: ED:6B:C2:90:70:61:AA:06:F5:20:40:13:91:B4:E0:44:0A:DA:BB:25
Authority key identifier: 6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
Certificate issuer: /CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Certificate serial: 0197B77C28899D7140E3CFD3BFE37D8D8BE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
Manifest number: 0FAD
Signing time: Sat 28 Jun 2025 17:00:56 +0000
Manifest this update: Sat 28 Jun 2025 17:00:56 +0000
Manifest next update: Sun 29 Jun 2025 17:00:56 +0000
Files and hashes: 1: b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl (hash: QHxZN9yP20cCIIqEzBuHyYGm8J57MHOWS9z2m2UPsk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:28:89:9d:71:40:e3:cf:d3:bf:e3:7d:8d:8b:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Validity
Not Before: Jun 28 17:00:56 2025 GMT
Not After : Jun 29 17:00:56 2025 GMT
Subject: CN=ed6bc2907061aa06f520401391b4e0440adabb25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7e:df:b3:ec:26:68:dd:15:fa:6c:ef:5a:b6:
e7:93:b8:4f:d3:ab:74:b6:7b:e6:dc:bc:56:82:6b:
a0:64:00:c1:26:e5:19:3b:22:68:e7:46:78:f1:1c:
7a:a7:71:1d:ee:da:02:b0:78:ac:e5:eb:01:1c:95:
8e:65:17:3a:c1:c5:36:07:79:42:97:4b:de:cb:da:
d7:ac:3f:04:f0:aa:3a:65:d9:ee:bd:ff:94:49:db:
f7:27:bf:44:a3:e5:4a:e0:43:a1:4e:de:e7:cd:b6:
47:b6:fb:5b:02:8e:a0:0b:02:bb:d8:ee:78:83:d4:
b9:17:44:d9:25:45:b0:88:ba:b3:5d:c8:6a:36:c5:
ea:12:b0:a9:87:48:52:07:3c:78:45:40:69:6c:ff:
d2:d1:14:ff:f7:f6:26:ad:f8:da:8c:04:1f:ac:36:
9c:ff:35:ec:1f:1c:da:93:bb:e0:a8:6d:1f:97:f1:
2c:aa:22:26:ed:42:66:ca:8f:5e:a7:6d:69:5c:08:
18:ee:0b:3a:1c:66:6b:5c:de:37:0a:e3:ce:9f:af:
2c:8b:80:5f:9b:c3:2f:67:6e:a7:7f:b4:a1:76:fe:
87:f0:b0:71:03:44:fd:c7:87:f0:81:32:a6:f1:fa:
ce:a6:64:a5:99:4f:de:00:06:99:99:66:e9:b3:f7:
8b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:6B:C2:90:70:61:AA:06:F5:20:40:13:91:B4:E0:44:0A:DA:BB:25
X509v3 Authority Key Identifier:
keyid:6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:60:f0:19:b8:cc:99:42:80:18:c9:41:a3:62:02:e9:17:61:
4e:e1:78:ba:ca:02:94:24:84:fb:e3:24:48:18:b1:0e:7d:32:
6b:fe:32:0c:6d:97:6b:e1:9b:7d:d0:51:d4:42:be:00:2e:22:
7c:79:cf:59:d0:68:67:a6:54:3f:68:55:1d:f8:d9:8c:c4:b9:
4d:14:49:4b:5d:07:61:2d:e1:e4:64:68:2e:bd:8f:d9:1d:97:
05:3c:f7:0e:96:1b:7e:ad:b4:c2:b4:1a:d0:5f:9a:8e:dd:2b:
ad:d0:a0:d2:a3:d2:d4:a4:b8:60:cf:8e:78:e5:c7:84:90:91:
ff:42:7c:7a:70:a2:88:5a:74:95:80:a2:74:fa:83:3c:e5:6e:
90:f2:de:0e:9f:83:b4:37:35:30:ca:32:e6:ef:f6:af:3e:97:
dc:0a:6a:5a:7e:df:90:31:19:03:5a:66:16:79:5e:9e:f1:bb:
51:0b:32:95:12:39:15:1c:49:81:d8:f2:8b:3e:d0:53:8c:d9:
39:f8:31:eb:be:90:0c:9e:11:a0:ea:98:17:59:7a:65:8c:1a:
50:d4:27:79:24:08:05:d7:18:bf:51:5c:02:63:bb:6d:a2:a8:
fd:53:e3:58:61:47:a5:c1:5d:50:05:07:94:80:e3:2f:ed:fc:
e0:5c:6f:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:36:38 2025 by rpki-client