Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/684df4-7257-4cca-824e-d85ebc5ea98d/1/9PpnFz_1YpCIuXCWGuG-dGldxmE.mft
File: 9PpnFz_1YpCIuXCWGuG-dGldxmE.mft (raw, json)
Hash identifier: 8HQsa5CGup6VA1vZmYY2EZoA1shuQfOf0UlRP5WDyto=
Subject key identifier: 43:BF:20:9D:F6:06:15:14:8F:86:95:86:F1:23:5A:80:79:3B:15:C2
Authority key identifier: F4:FA:67:17:3F:F5:62:90:88:B9:70:96:1A:E1:BE:74:69:5D:C6:61
Certificate issuer: /CN=f4fa67173ff5629088b970961ae1be74695dc661
Certificate serial: 0197B6A1079AAD8A5111B38B55843970F4EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9PpnFz_1YpCIuXCWGuG-dGldxmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/684df4-7257-4cca-824e-d85ebc5ea98d/1/9PpnFz_1YpCIuXCWGuG-dGldxmE.mft
Manifest number: 15B1
Signing time: Sat 28 Jun 2025 13:01:35 +0000
Manifest this update: Sat 28 Jun 2025 13:01:35 +0000
Manifest next update: Sun 29 Jun 2025 13:01:35 +0000
Files and hashes: 1: 9PpnFz_1YpCIuXCWGuG-dGldxmE.crl (hash: MFulCzHqDoDhm2z7J79HD7Qwlpn+Mb5Zaf0TRLk0mSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/684df4-7257-4cca-824e-d85ebc5ea98d/1/9PpnFz_1YpCIuXCWGuG-dGldxmE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/684df4-7257-4cca-824e-d85ebc5ea98d/1/9PpnFz_1YpCIuXCWGuG-dGldxmE.mft
rsync://rpki.ripe.net/repository/DEFAULT/9PpnFz_1YpCIuXCWGuG-dGldxmE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:07:9a:ad:8a:51:11:b3:8b:55:84:39:70:f4:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4fa67173ff5629088b970961ae1be74695dc661
Validity
Not Before: Jun 28 13:01:35 2025 GMT
Not After : Jun 29 13:01:35 2025 GMT
Subject: CN=43bf209df60615148f869586f1235a80793b15c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:18:75:da:2a:e9:84:40:54:32:70:1e:1f:5e:
1b:03:70:e2:76:68:a6:6b:67:f5:d8:c0:a4:51:dd:
67:4e:4a:d0:34:13:d1:ad:5e:ef:60:52:e0:c6:34:
14:0e:7c:d8:a7:f8:5d:fe:26:9e:d5:46:c6:76:be:
1c:b8:48:04:be:9a:1a:c6:23:8e:7a:fb:99:f8:93:
f8:72:64:86:da:76:a0:3c:d7:15:d7:20:5c:f5:f5:
5a:fa:8c:c6:91:84:6e:9c:4a:11:b5:f2:b3:21:7b:
14:3a:5a:73:25:43:60:11:5c:48:bf:f1:c5:83:2b:
40:a8:ab:6c:33:4a:00:b9:9a:c6:34:e4:d9:4b:6d:
9d:2b:01:f4:ed:18:b3:9e:e7:9a:55:3c:79:fa:7b:
68:e3:64:14:24:77:ce:e6:22:f3:8e:43:e3:a3:5c:
6f:85:81:96:da:0a:0c:3e:20:b2:b9:ce:b0:26:3d:
4c:ad:b4:c3:83:9d:14:09:df:5a:93:b4:b5:c3:ee:
c2:ac:db:8e:60:64:d0:a1:f9:ea:3d:a7:a1:97:49:
14:53:84:38:7b:d1:25:a4:30:7b:bc:76:16:13:89:
7d:40:8b:c3:73:31:e5:38:84:e8:91:e0:da:60:6f:
1b:6b:d3:4a:2d:3e:a9:52:5e:02:cb:e7:0e:58:1b:
06:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:BF:20:9D:F6:06:15:14:8F:86:95:86:F1:23:5A:80:79:3B:15:C2
X509v3 Authority Key Identifier:
keyid:F4:FA:67:17:3F:F5:62:90:88:B9:70:96:1A:E1:BE:74:69:5D:C6:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9PpnFz_1YpCIuXCWGuG-dGldxmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/684df4-7257-4cca-824e-d85ebc5ea98d/1/9PpnFz_1YpCIuXCWGuG-dGldxmE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/684df4-7257-4cca-824e-d85ebc5ea98d/1/9PpnFz_1YpCIuXCWGuG-dGldxmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:94:d1:44:d4:9a:61:c5:fd:90:08:e2:d2:c1:ad:28:6c:69:
49:a1:1d:bd:0e:e7:7e:d4:f3:15:eb:52:18:a3:ee:4b:48:d2:
92:a9:ab:ee:08:73:4c:4c:b3:ee:b6:4b:28:ad:08:19:e3:79:
6b:e0:3d:c6:4d:9e:b9:e6:4b:6c:8d:bf:84:11:ea:b9:9f:6f:
91:10:b4:0d:09:d1:ea:4b:e8:4b:ba:a8:67:36:32:be:6b:3c:
1a:eb:59:28:31:ef:48:6e:9c:26:3d:30:ed:b6:9e:fc:61:ec:
97:e4:9a:b3:3b:47:64:e7:92:dd:26:81:4b:d9:09:77:a4:17:
76:4a:5a:6f:f7:79:db:8f:6d:25:5c:e3:e0:65:9d:53:7e:a3:
5c:d7:12:87:9f:9e:3d:6b:de:63:2e:0d:ba:d9:8b:4f:21:28:
db:5c:3b:4e:d8:4a:74:59:ee:66:83:5c:20:ef:7a:81:92:bf:
15:f7:30:86:89:16:3e:7c:8c:36:43:56:fa:51:35:ed:9c:48:
5d:ef:1a:b8:91:6a:8a:ed:af:2a:45:69:57:2c:f6:b0:7f:8d:
2a:a3:e0:20:15:e8:ef:5e:d7:77:5f:d7:51:f3:66:7f:54:4e:
24:d7:f4:dc:c3:93:60:b0:63:84:f4:36:d6:da:2d:4d:de:ed:
68:dd:47:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:24:30 2025 by rpki-client