Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
File: cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft (raw, json)
Hash identifier: aSak12Oq+QZrttESRbwLvbiusIuqm7ncRv+dYUZpkr4=
Subject key identifier: 95:27:DF:96:6E:E0:2D:18:AC:E9:8B:C7:EA:1E:BD:BE:7D:92:E2:50
Authority key identifier: 70:A0:B5:AC:A7:31:EA:71:F2:6D:63:D2:3C:22:C1:23:B2:BB:12:0F
Certificate issuer: /CN=70a0b5aca731ea71f26d63d23c22c123b2bb120f
Certificate serial: 0197B820F170F6458E81DAC982A6A22B2FAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
Manifest number: 08EE
Signing time: Sat 28 Jun 2025 20:00:55 +0000
Manifest this update: Sat 28 Jun 2025 20:00:55 +0000
Manifest next update: Sun 29 Jun 2025 20:00:55 +0000
Files and hashes: 1: 5K2zlrIHADlFytOUhc54zx-uCAw.roa (hash: VJ3nEApsPTUcM1XeIb75bGQ+CbjZ/H8pdnWKdP3UYOg=)
2: cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl (hash: fhOviwzGpxQerBUH+E1J0kT0LWRXbJHrw7evXDbrUnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:f1:70:f6:45:8e:81:da:c9:82:a6:a2:2b:2f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a0b5aca731ea71f26d63d23c22c123b2bb120f
Validity
Not Before: Jun 28 20:00:55 2025 GMT
Not After : Jun 29 20:00:55 2025 GMT
Subject: CN=9527df966ee02d18ace98bc7ea1ebdbe7d92e250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:31:b9:1d:a2:c7:0c:f6:74:ef:0e:db:fc:11:
55:62:d3:8a:03:ee:15:94:86:d2:f4:8e:a6:2d:45:
04:97:a7:3f:8d:3a:98:81:40:ba:0d:db:ca:52:5d:
29:c4:14:0b:8d:cf:00:9a:6d:cc:83:6e:20:d4:03:
2b:39:46:35:fe:fa:6c:82:5f:6d:78:e0:9f:a7:0a:
ed:54:9d:82:59:46:cf:64:21:45:bd:df:ee:21:4a:
51:f3:78:9e:a1:60:1e:06:fd:b9:a0:08:c1:5a:55:
0c:fd:db:19:bf:fb:e5:c0:ae:e4:4d:01:a4:e2:fa:
67:e0:10:98:98:33:69:31:d6:73:8e:4f:75:31:9f:
9a:6f:bd:aa:56:8e:d4:f7:ed:b6:80:63:d3:c0:22:
f0:d3:1d:5b:24:cf:98:17:c6:d6:b7:86:a9:74:4f:
7e:7f:c1:68:37:de:13:fa:0c:86:6e:5b:04:af:dc:
93:5e:ac:66:77:a5:25:b8:19:db:64:a8:36:be:2d:
99:76:5b:e2:9e:5d:30:53:f1:ce:ff:1f:05:88:12:
0a:58:5b:c3:c5:0e:90:63:90:c5:91:2e:e2:31:85:
bb:0f:d0:a8:a5:16:0f:9d:3e:8c:fa:ca:fa:bb:64:
4d:02:ec:f1:ad:92:ca:3b:55:a1:d6:ff:b2:c1:20:
52:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:27:DF:96:6E:E0:2D:18:AC:E9:8B:C7:EA:1E:BD:BE:7D:92:E2:50
X509v3 Authority Key Identifier:
keyid:70:A0:B5:AC:A7:31:EA:71:F2:6D:63:D2:3C:22:C1:23:B2:BB:12:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:b6:0b:8a:0f:56:d8:44:8d:2b:94:61:e9:7d:cb:08:b7:f7:
39:d6:03:05:b1:55:64:a6:92:46:9a:5b:ba:e3:9f:25:a0:a4:
19:3e:a5:cd:4b:1b:d3:2c:f6:5f:bd:e4:78:9c:19:70:13:d4:
20:34:8c:28:ee:3e:a6:ef:33:e4:6f:0e:cd:16:2a:8b:ae:1a:
86:9a:15:1b:f5:1e:90:23:80:9a:fb:e1:d6:c5:06:b5:17:91:
05:55:95:b3:56:d5:7c:ad:49:03:8d:75:6d:a8:66:50:a4:ff:
bd:76:ea:b4:28:fb:cf:2b:b4:0b:a9:62:5a:89:8f:67:c8:9e:
f8:c5:25:38:c8:99:ea:db:2f:06:47:0f:4a:1a:5c:03:7c:aa:
1e:de:2a:e1:01:24:41:00:66:3d:fe:7f:01:24:e3:dd:1a:19:
79:44:08:35:b6:2c:f5:1f:cd:a4:ca:ba:84:13:63:32:c6:af:
d3:05:8c:e2:83:19:09:73:63:ca:92:01:c2:07:3f:8e:37:36:
9c:99:2d:ad:86:7b:db:c2:5a:3b:2e:82:c6:17:fc:54:c4:b5:
33:9e:2c:7d:55:fa:54:2d:24:d9:1d:fa:8c:ab:d5:f9:83:be:
d2:9e:71:6f:fb:9f:09:20:8d:49:73:a4:f4:f4:55:16:7c:85:
09:f3:a0:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:07:01 2025 by rpki-client