Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft
File: F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft (raw, json)
Hash identifier: E5tjc+duIlGnR9rtkmgHGZFr8ZzclOydnaTKtZNXEOY=
Subject key identifier: 15:A7:DE:03:8A:64:79:3B:2E:9A:D9:A9:DC:8B:6E:7C:16:79:21:E8
Authority key identifier: 17:4D:54:5B:29:3C:16:DC:EF:DC:41:D1:56:F4:91:9B:B1:54:C0:D9
Certificate issuer: /CN=174d545b293c16dcefdc41d156f4919bb154c0d9
Certificate serial: 0197B70E93B49BA2404B100F7D7502DB1251
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft
Manifest number: 0A43
Signing time: Sat 28 Jun 2025 15:01:15 +0000
Manifest this update: Sat 28 Jun 2025 15:01:15 +0000
Manifest next update: Sun 29 Jun 2025 15:01:15 +0000
Files and hashes: 1: F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl (hash: mNhb+MGq/OSoC5SKaWmVAkyAdjeg2fmKWivOdpO4Rok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft
rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:93:b4:9b:a2:40:4b:10:0f:7d:75:02:db:12:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=174d545b293c16dcefdc41d156f4919bb154c0d9
Validity
Not Before: Jun 28 15:01:15 2025 GMT
Not After : Jun 29 15:01:15 2025 GMT
Subject: CN=15a7de038a64793b2e9ad9a9dc8b6e7c167921e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4d:2b:80:58:a4:da:93:d3:e4:10:0c:a6:ff:
dc:93:26:09:7b:e3:ca:ba:df:5e:b5:88:ba:d3:6f:
8d:bb:f5:f1:93:4f:05:96:c6:e9:99:de:4f:22:21:
b4:05:71:e5:89:0c:2a:af:5b:b9:7e:51:3e:c9:a5:
6a:e5:b5:23:91:b6:d9:a9:32:06:91:75:12:fe:14:
89:ec:32:17:6c:d8:92:76:f5:2c:67:ea:9b:40:54:
57:c8:1e:58:56:ed:66:3a:cf:d5:71:be:2f:76:5c:
9e:6f:c3:97:c2:ce:33:6b:36:73:4e:17:ea:ae:f0:
67:de:43:81:ad:25:8e:e5:e8:1e:3a:da:2a:4f:fb:
91:58:bb:9a:08:34:f4:52:e7:f4:a7:8b:c0:61:bd:
52:77:8b:37:41:5a:8f:6a:06:66:ae:47:a0:1f:d2:
03:9a:0a:da:8b:ca:dd:8a:af:4c:d9:7e:c6:4d:a4:
f9:75:c4:eb:bf:ae:03:4f:f4:86:34:45:12:89:e1:
d4:1c:ae:14:4a:86:46:3e:c3:4f:99:5b:d0:ff:df:
b0:48:77:7b:5a:0c:88:1e:1b:d8:fa:21:1a:35:5b:
da:53:91:59:a4:50:cd:11:b0:a7:45:91:45:08:01:
70:79:5b:d7:6b:65:34:6a:92:a3:d0:fd:57:2a:49:
1c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:A7:DE:03:8A:64:79:3B:2E:9A:D9:A9:DC:8B:6E:7C:16:79:21:E8
X509v3 Authority Key Identifier:
keyid:17:4D:54:5B:29:3C:16:DC:EF:DC:41:D1:56:F4:91:9B:B1:54:C0:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:a3:55:62:83:97:af:2b:6a:05:ba:a9:af:4b:b0:5a:bb:f1:
2f:13:98:35:16:52:bb:71:16:5c:20:96:31:63:16:59:76:12:
c1:e7:97:f6:0a:20:d3:85:ff:75:42:49:c3:ec:a3:49:0f:19:
e6:2a:f6:0a:88:63:91:88:dd:8a:ff:45:54:ec:39:c2:19:ec:
fa:79:d8:3e:1d:dc:b9:7f:15:dc:17:9c:e1:a4:b4:42:e6:aa:
d9:15:39:ed:16:4d:75:5a:40:56:2d:58:4c:67:30:c9:7c:c0:
f6:f7:41:12:bb:a3:0c:bc:24:80:9a:25:67:6a:a5:03:5d:8a:
08:9b:86:13:d9:8e:eb:39:31:ff:72:4a:ff:27:8c:d2:41:6d:
b0:f6:d6:a1:81:6c:a7:25:b7:f1:f4:9f:0c:07:44:fc:4a:94:
1c:dd:f1:c3:23:e0:d1:c7:86:a5:21:4f:9d:a6:16:93:cb:fd:
9d:b5:e8:59:4b:c0:b9:11:38:dd:20:07:45:9b:7a:ee:2b:5e:
37:22:38:48:19:51:58:b5:98:02:15:bc:8a:b4:d7:1b:19:c9:
09:c4:0f:c3:a0:28:6d:8c:32:3f:1a:4a:94:e8:f8:a2:ca:25:
02:49:53:ec:b3:2e:c4:7d:19:d3:cf:b4:5f:73:95:3a:77:bf:
74:49:36:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:45:09 2025 by rpki-client