Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
File: bQ1uHM2JDfL16cFF7LpGiZzOs70.mft (raw, json)
Hash identifier: avm7OpY7NEKI0W19BS6cTlPG6NEQJRnPo2ffQpakYwQ=
Subject key identifier: D7:7A:96:D7:3E:0A:BF:17:29:F8:1C:5B:DE:1E:E7:50:B8:32:9E:1C
Authority key identifier: 6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD
Certificate issuer: /CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd
Certificate serial: 0197B70E9665A55BA086843C0BD3C5F79312
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
Manifest number: 1245
Signing time: Sat 28 Jun 2025 15:01:15 +0000
Manifest this update: Sat 28 Jun 2025 15:01:15 +0000
Manifest next update: Sun 29 Jun 2025 15:01:15 +0000
Files and hashes: 1: bQ1uHM2JDfL16cFF7LpGiZzOs70.crl (hash: m0OAPKxyx5nwGlZZfK0UjoF42toaXVMdsTP2F334cAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:96:65:a5:5b:a0:86:84:3c:0b:d3:c5:f7:93:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd
Validity
Not Before: Jun 28 15:01:15 2025 GMT
Not After : Jun 29 15:01:15 2025 GMT
Subject: CN=d77a96d73e0abf1729f81c5bde1ee750b8329e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0c:58:4f:97:fb:27:5d:dc:15:52:12:4b:9f:
45:9e:33:a5:e0:df:b2:0d:b2:d7:4f:c8:ef:8a:63:
5d:aa:00:b6:34:b5:6e:b8:be:25:85:b7:1d:73:8a:
b2:06:56:18:20:92:c8:b7:2e:98:78:f8:91:20:58:
6c:00:4a:48:88:00:4d:08:e1:f1:a5:40:20:bf:49:
ec:05:cd:9e:d0:4f:32:b1:c2:5b:14:ea:85:d8:8e:
7a:bd:72:f1:05:75:1d:57:82:ef:1b:82:8f:aa:0f:
8a:d2:06:25:ef:ee:94:0e:f1:40:b4:cb:ee:7b:70:
19:03:4b:ff:4d:c0:98:4e:0d:fc:94:19:8d:ee:fa:
89:da:62:04:95:f1:26:24:46:bc:6a:9a:02:c9:26:
5c:fc:af:da:43:d2:35:81:fe:81:0d:5c:b6:75:95:
c8:1d:b1:ed:9e:7b:76:83:7b:df:98:29:34:ae:db:
bd:41:30:93:9a:8d:5e:28:9b:90:19:df:3a:07:fa:
f4:90:32:a2:2d:05:f3:7e:c7:d2:4b:2e:63:a5:b5:
51:91:45:3e:37:41:26:9f:89:41:32:5f:17:5d:c8:
d5:c6:7a:49:18:85:0a:ad:5f:46:37:43:10:f4:de:
d5:9e:80:9c:68:6c:d6:bb:80:fb:9a:58:50:29:d0:
94:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:7A:96:D7:3E:0A:BF:17:29:F8:1C:5B:DE:1E:E7:50:B8:32:9E:1C
X509v3 Authority Key Identifier:
keyid:6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:0b:3b:e5:42:3e:1f:ef:45:0a:eb:9d:fa:49:9c:06:0a:94:
6f:ad:4b:65:4a:dd:34:6f:9d:d6:5e:c4:ac:c8:31:90:e6:0e:
f6:c1:41:7c:61:ae:2b:bb:f2:11:18:60:ae:38:a7:c8:d1:dc:
3c:1c:75:19:3d:bd:e7:e7:87:39:ea:af:49:78:5d:bd:e3:33:
05:8a:50:ad:86:93:1b:6a:dd:1e:02:87:c8:e0:60:f6:d9:01:
a0:de:a1:cf:5c:ca:8a:b9:20:f0:52:6c:89:02:3c:41:90:2c:
0d:19:75:91:c5:3d:9f:22:96:37:e0:69:59:3e:ce:37:fe:1f:
23:f1:5d:ee:41:bb:4e:40:12:c0:5e:9f:47:88:70:b7:c0:44:
5f:1e:0b:b5:92:e1:08:3f:43:29:8d:12:13:43:74:1c:f5:56:
16:6a:97:a0:49:ee:bc:c2:f4:43:bb:61:1c:98:fa:f4:7d:7a:
df:7d:1f:dd:19:9b:3c:f2:0d:e7:ca:76:25:d0:c9:f4:26:3a:
83:2f:a7:d2:d1:e5:ce:47:67:31:e2:2c:8d:da:5f:70:50:a8:
91:18:cd:54:23:39:f1:71:d1:a5:d8:39:27:45:7e:67:2a:16:
ae:5a:cf:8c:c3:c9:fe:03:e9:e5:b9:1f:ae:0b:03:1e:4d:31:
40:54:01:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:20:07 2025 by rpki-client