Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
File: mRQlj7nTZXszdhQr_GPazk-CEcQ.mft (raw, json)
Hash identifier: g5JC3eUsgQO4rxPnPmSiJvy9BvjssIaSIcoRoGx4/+g=
Subject key identifier: 95:1F:B8:E1:BC:16:D6:17:CD:C4:23:68:DC:92:DD:54:27:E2:C3:0E
Authority key identifier: 99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4
Certificate issuer: /CN=9914258fb9d3657b3376142bfc63dace4f8211c4
Certificate serial: 0197BA0F59E1F39CFB6509CEC3CC0BB265C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
Manifest number: 15B6
Signing time: Sun 29 Jun 2025 05:00:57 +0000
Manifest this update: Sun 29 Jun 2025 05:00:57 +0000
Manifest next update: Mon 30 Jun 2025 05:00:57 +0000
Files and hashes: 1: 2JXcaA80r7d-EIDaMijpbBPasoc.roa (hash: gf95/nywAYIZdNJbfxynwrtY4coqSX3R7aiF8YJONgo=)
2: mRQlj7nTZXszdhQr_GPazk-CEcQ.crl (hash: gngpXcp7ySACmaMpZaFKn7AixdEI9mzCvYwsreflWOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:0f:59:e1:f3:9c:fb:65:09:ce:c3:cc:0b:b2:65:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9914258fb9d3657b3376142bfc63dace4f8211c4
Validity
Not Before: Jun 29 05:00:57 2025 GMT
Not After : Jun 30 05:00:57 2025 GMT
Subject: CN=951fb8e1bc16d617cdc42368dc92dd5427e2c30e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:21:86:60:2b:b6:17:50:9d:7d:80:0b:45:cf:
07:9b:61:29:f8:ac:54:00:02:48:10:72:1f:77:d2:
70:94:68:c9:2a:b9:fb:4e:cc:75:66:fc:3e:26:fe:
f6:b9:86:4e:37:c7:57:b0:57:f1:ed:66:57:cd:8f:
19:dd:db:d2:af:16:16:d7:83:85:92:86:0c:a2:b5:
61:6d:a1:b2:a6:ef:ed:e7:5e:99:4a:44:f4:e6:41:
3b:4d:3c:84:eb:0e:e0:0c:26:16:ab:79:43:05:f8:
8f:31:16:bb:27:7c:62:b3:63:e7:d1:47:ab:af:62:
42:5a:d0:71:39:cb:89:86:54:02:7e:84:a0:0c:ff:
8c:1b:2c:d8:58:07:8c:6b:81:88:0b:38:04:90:bd:
db:56:b6:ab:cf:5b:07:d9:60:de:75:51:2b:6b:31:
40:6a:95:70:e3:8c:b2:0c:d8:9e:aa:15:6d:11:c7:
a9:4f:5c:84:ca:52:f1:c6:7f:e6:39:af:f9:73:68:
c0:57:9a:36:41:48:f4:ed:67:1d:ff:79:da:4e:65:
2c:00:58:e1:3f:b9:34:6c:ae:06:78:33:3e:99:ac:
86:0c:2c:da:a7:57:88:bc:a8:b8:f6:bb:41:a0:a7:
2d:bd:95:5d:cf:e8:a6:e5:c2:ac:64:19:60:87:fd:
ba:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:1F:B8:E1:BC:16:D6:17:CD:C4:23:68:DC:92:DD:54:27:E2:C3:0E
X509v3 Authority Key Identifier:
keyid:99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:41:6e:8f:83:4d:0b:4b:e6:af:71:fb:97:f4:f9:66:32:70:
64:03:ab:13:c0:64:4f:33:c2:b5:df:6e:f3:9b:ef:17:16:cb:
e9:5a:e2:92:d0:7f:a2:ce:9b:13:8f:79:16:ab:2f:da:0c:69:
81:3f:d8:b2:63:22:cc:23:5d:ce:9e:b9:e5:88:c5:2a:43:61:
b7:a3:f3:de:e0:38:19:10:72:9b:1c:75:98:4b:4c:43:a0:49:
b8:b8:a1:dd:98:49:c7:ab:5c:b6:c1:09:f5:b9:2f:98:18:5a:
d9:29:8b:f8:aa:95:37:a6:c9:bb:31:6d:3d:55:fa:79:f6:62:
47:3e:75:26:4d:77:4e:31:d8:4e:44:5e:10:4f:dd:1d:89:b2:
2d:73:1f:3d:d3:65:2a:d8:e0:e6:58:1f:be:38:a0:dc:64:02:
aa:cc:e0:78:43:2f:8f:75:5b:d8:01:e7:04:e4:34:e4:41:9c:
ac:5a:5c:1b:7b:08:55:8b:f4:52:b1:c8:14:b4:9d:d0:78:8b:
b5:24:e2:71:9c:83:36:d7:4b:fd:ae:db:90:91:15:67:cb:ee:
f8:bb:ba:30:31:ec:de:52:e8:ee:35:ab:99:00:19:da:04:b9:
82:9e:dc:90:b1:06:39:cc:c4:74:b7:e4:6d:9d:8b:a5:4d:7f:
a6:7a:6e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:04:23 2025 by rpki-client