Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: HrxYCSHMhAy1uWvwLbsYA0QIDw/GojgpV1qK7sSOgu0=
Subject key identifier: 1A:12:B2:AE:C3:96:68:3F:58:28:43:59:2E:91:C4:B3:8A:8C:C3:57
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 0197B77CAD5DD2B6070BBA495821ED5F0856
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 025E
Signing time: Sat 28 Jun 2025 17:01:30 +0000
Manifest this update: Sat 28 Jun 2025 17:01:30 +0000
Manifest next update: Sun 29 Jun 2025 17:01:30 +0000
Files and hashes: 1: ZWC54UPrMHyZ6gth2IDDnRYsMDY.roa (hash: 4Yk1QA2QugshfW9geeysUTQ4Sub4Aja/bv1m3JJnrLU=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: cyN4WTshwH1uJ6Iaq78hnWHiUzk89j4P+8Gpu5D/FL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:ad:5d:d2:b6:07:0b:ba:49:58:21:ed:5f:08:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Jun 28 17:01:30 2025 GMT
Not After : Jun 29 17:01:30 2025 GMT
Subject: CN=1a12b2aec396683f582843592e91c4b38a8cc357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d6:de:d6:c6:62:aa:31:c2:91:77:24:29:67:
3a:a3:d7:fb:2c:9a:a3:30:de:e7:21:72:2a:4c:13:
82:68:b8:6f:76:f1:41:89:58:dc:b1:7d:38:0d:f4:
6c:e3:d8:bc:bc:64:28:2f:dd:90:74:d4:ff:6a:d2:
4c:07:cd:6c:c6:e1:28:ed:31:2a:5d:c1:b3:99:17:
51:22:d1:a5:7b:2d:dd:a2:db:22:4f:c0:35:87:5e:
5b:17:cc:21:06:0f:8a:26:70:a0:20:45:c6:cb:8e:
10:98:aa:36:85:d5:ab:66:37:84:b0:e7:d2:a4:db:
95:25:dd:f6:1f:a7:db:1e:59:cd:eb:02:25:c2:f3:
65:01:62:3b:cc:e2:c2:2d:26:f8:40:11:05:10:1b:
5d:26:e5:c1:da:79:dd:4f:40:45:37:5c:69:54:03:
65:08:98:e5:b8:b5:d2:15:e5:32:79:f7:a0:08:0e:
44:58:b3:b0:9e:43:bb:ef:ba:2a:09:21:03:ec:16:
51:39:54:41:56:07:cf:da:b5:3e:37:aa:c0:39:63:
b9:38:e8:d7:5a:2b:1e:2f:a6:0c:31:c8:93:c1:37:
ed:60:21:66:69:1d:0b:0a:1d:57:d0:16:32:2c:50:
e2:08:ff:b1:b1:53:a3:57:de:12:0c:c7:12:91:54:
54:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:12:B2:AE:C3:96:68:3F:58:28:43:59:2E:91:C4:B3:8A:8C:C3:57
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:33:7f:ac:4f:55:cb:8b:78:df:d4:16:68:14:e2:85:78:61:
f4:1b:c2:17:43:ff:04:b4:51:61:20:51:09:db:a7:9c:55:08:
87:fe:98:da:31:d9:ae:2a:34:03:2d:97:66:76:7c:42:31:24:
c9:bd:bd:97:8e:f4:88:cc:7e:4b:cc:2f:3f:9b:07:3f:43:e4:
11:0a:86:e7:1c:1f:b5:6c:f2:26:af:f7:46:36:ef:fd:c7:32:
b4:39:54:16:08:d6:05:ad:d3:a9:15:5f:b9:52:2b:16:d2:2f:
c4:8a:32:f6:ba:9f:a9:17:68:45:87:fe:09:f8:3c:ea:64:e9:
f3:67:c0:0b:0c:c4:11:d7:a8:8f:ae:92:8d:50:c5:8a:d4:96:
bd:b5:ab:e8:00:cc:6e:d0:08:de:44:78:ea:80:57:fe:f3:cf:
a4:36:6d:9f:3a:56:96:72:18:ba:39:29:2f:16:40:f1:19:1c:
09:03:ff:76:41:e1:4b:d6:1d:67:1d:ae:ce:6c:23:c7:21:e8:
dc:d2:c1:9d:22:63:d4:39:3c:68:84:fc:aa:1c:bf:58:e0:c0:
42:3a:c3:bb:fb:71:5e:59:26:22:a5:98:d9:f9:82:b0:54:6b:
ea:75:89:8e:7b:da:07:2c:1a:cf:ae:28:f9:a7:07:7d:d2:ea:
90:41:c8:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:22:58 2025 by rpki-client