Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
File: 0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft (raw, json)
Hash identifier: 1bjYk01E/mFXKN21qU/Jzqyz2s0hMjsak8/Wp5ou2aI=
Subject key identifier: 31:72:B4:CF:0D:C1:4D:60:42:09:AC:79:8A:F3:AF:7C:E2:9F:9B:6A
Authority key identifier: D1:3B:BC:92:A2:FA:90:A0:A1:12:2B:83:30:34:6F:9A:61:71:D9:76
Certificate issuer: /CN=d13bbc92a2fa90a0a1122b8330346f9a6171d976
Certificate serial: 0197B6A238A80676460E96903F9D886A8DDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
Manifest number: 10B3
Signing time: Sat 28 Jun 2025 13:02:53 +0000
Manifest this update: Sat 28 Jun 2025 13:02:53 +0000
Manifest next update: Sun 29 Jun 2025 13:02:53 +0000
Files and hashes: 1: 0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl (hash: gTqENIsQA5hMrKMx67iDpHBxDLGscaHHrI4m81Gz4vc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:38:a8:06:76:46:0e:96:90:3f:9d:88:6a:8d:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d13bbc92a2fa90a0a1122b8330346f9a6171d976
Validity
Not Before: Jun 28 13:02:53 2025 GMT
Not After : Jun 29 13:02:53 2025 GMT
Subject: CN=3172b4cf0dc14d604209ac798af3af7ce29f9b6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e9:34:b0:0c:f3:63:ab:40:fc:b4:08:fa:d0:
23:49:9d:d1:b7:b6:91:33:72:d1:fc:ea:4e:90:a3:
90:a6:bb:7c:60:e5:c1:1e:af:06:8c:7c:d9:f8:04:
eb:75:d4:30:99:62:98:fa:37:13:7d:45:87:77:b2:
49:e8:fb:c5:3d:aa:8e:27:fc:35:30:c6:a1:b7:77:
b9:29:c7:ce:fd:cb:01:58:91:c2:68:08:8e:3e:d0:
18:29:74:30:87:a6:bd:aa:3a:a9:93:0a:5e:55:a4:
26:99:b9:d2:de:8f:f9:10:85:ae:28:25:4e:6e:8c:
1f:df:48:37:30:b9:db:f0:ef:de:16:90:b7:0b:41:
ba:ad:85:24:af:af:52:65:d0:53:5c:e9:bf:7a:7a:
63:95:83:fe:5e:f3:2c:df:0a:64:b9:01:20:a6:5a:
45:09:51:07:b0:cc:1f:7f:52:c3:e8:9e:fa:27:de:
47:9c:e6:16:89:b2:4e:2f:e2:f9:e2:10:36:43:cc:
e2:40:cc:09:97:d6:b0:84:7b:bb:65:05:23:f0:6d:
c1:31:39:9a:72:f1:2f:98:64:4c:f6:7b:f9:69:61:
00:9b:26:7b:60:22:c5:d9:28:3b:79:90:3c:0e:d9:
80:f8:04:4f:f5:59:39:21:00:d3:84:62:69:3b:29:
b6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:72:B4:CF:0D:C1:4D:60:42:09:AC:79:8A:F3:AF:7C:E2:9F:9B:6A
X509v3 Authority Key Identifier:
keyid:D1:3B:BC:92:A2:FA:90:A0:A1:12:2B:83:30:34:6F:9A:61:71:D9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:77:7e:82:e9:67:39:40:a6:d6:04:c9:04:a4:fd:06:b7:e2:
50:90:b8:b1:a0:28:9d:a2:74:cc:80:eb:38:fb:4d:98:47:c4:
24:56:36:1e:61:9d:8b:2f:78:0a:95:7c:e1:4b:c5:e6:dd:22:
34:5e:5f:26:2b:c1:be:e8:7f:60:3f:6d:25:d6:9d:5e:f4:ec:
d3:9a:ba:99:8b:bb:37:e6:b3:7f:72:94:b9:39:5b:57:bc:fd:
87:b2:f7:70:f7:3b:12:5a:8f:bc:89:f4:ac:e2:e4:9b:d6:2f:
c6:16:89:7e:a6:86:06:a4:62:38:25:80:5b:2f:18:3d:95:6e:
8c:73:00:62:cc:9a:23:ec:ec:4a:71:85:5c:d9:4c:1d:cc:69:
93:5a:b3:51:71:83:a6:c4:a0:5c:f5:f2:c2:d8:a9:89:d3:d0:
ab:2d:d7:26:52:e6:c3:8c:ed:1d:42:0d:3b:6e:09:d2:6c:6e:
05:ab:c3:c6:5b:d7:a7:ea:f1:e3:e4:1d:fb:07:cf:cc:63:f1:
12:69:21:bc:02:bc:09:92:c5:67:c5:81:8a:43:e2:35:82:77:
bb:ec:3d:07:7e:b7:ee:6e:bb:97:ce:ab:92:9d:ea:69:84:79:
8d:7b:d0:12:13:e9:37:ba:a1:91:f8:1c:81:c6:29:5f:8e:23:
cb:0e:b1:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:49:52 2025 by rpki-client