Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
File: rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft (raw, json)
Hash identifier: azLrUNQa5Dz7INgv2HjGeuMNwzu11ixEZQjAfvIbWzY=
Subject key identifier: 10:29:7F:DB:BF:18:40:DB:92:81:34:EA:74:73:07:53:02:4D:E4:76
Authority key identifier: AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8
Certificate issuer: /CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8
Certificate serial: 0197B70F21D698739C6777061F8552DBEDCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
Manifest number: 122F
Signing time: Sat 28 Jun 2025 15:01:51 +0000
Manifest this update: Sat 28 Jun 2025 15:01:51 +0000
Manifest next update: Sun 29 Jun 2025 15:01:51 +0000
Files and hashes: 1: r6C99vK2TllFCTWcqpJRSg5MRPM.roa (hash: 3+br3Wh/zPJPiW24ubp7XOxLj4qW7AeahE4kU9GEl1U=)
2: rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl (hash: EK8CydMaLQAjnEO8v54cBWWhoxFpmqdNxYu4IPBTk8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:21:d6:98:73:9c:67:77:06:1f:85:52:db:ed:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad8dd17a768e3b6fbfa7a7009a7007ebe65b45c8
Validity
Not Before: Jun 28 15:01:51 2025 GMT
Not After : Jun 29 15:01:51 2025 GMT
Subject: CN=10297fdbbf1840db928134ea74730753024de476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e3:50:0f:7b:e7:7b:c9:ac:e6:34:d8:03:52:
67:0c:ad:cb:07:a9:80:6f:eb:79:99:f0:6c:14:96:
85:fe:62:f8:a2:fc:c7:25:f6:2e:14:6d:92:85:36:
35:a7:f4:73:47:41:ac:ea:ad:fd:29:98:f6:33:9a:
67:26:ef:72:ce:71:af:6d:f0:6c:51:28:fe:52:e1:
9e:04:f1:9f:7c:67:e2:81:87:cb:cd:30:22:d6:fc:
6d:1a:df:b3:d6:25:89:f7:4e:7e:81:79:26:97:67:
2e:4a:7b:76:49:32:9c:e1:aa:6e:9b:4c:13:eb:4e:
bf:91:78:71:e7:62:2e:99:70:08:fe:f0:08:44:5e:
5c:ec:3f:3d:35:e9:84:b7:4f:a0:ef:fd:c0:63:73:
be:12:f5:cd:8b:cd:74:8f:a2:49:54:94:b7:bc:cc:
2a:f6:e9:ce:c2:68:fc:82:a2:3d:4e:99:7b:8c:54:
82:48:87:a6:6e:fe:33:f3:db:58:7d:d8:17:47:6e:
03:73:2a:9f:5b:bf:ee:6b:98:c7:d6:a8:be:09:56:
e2:5f:ca:79:7a:42:c9:48:82:f2:6e:fb:37:57:a5:
19:51:44:fc:b4:c4:e2:b2:58:c4:43:f1:15:f1:58:
16:ea:2c:a7:85:63:23:c8:4b:ff:54:f6:1a:55:b2:
6e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:29:7F:DB:BF:18:40:DB:92:81:34:EA:74:73:07:53:02:4D:E4:76
X509v3 Authority Key Identifier:
keyid:AD:8D:D1:7A:76:8E:3B:6F:BF:A7:A7:00:9A:70:07:EB:E6:5B:45:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rY3RenaOO2-_p6cAmnAH6-ZbRcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/98b35b-945e-40c5-bb95-9eadd351fc79/1/rY3RenaOO2-_p6cAmnAH6-ZbRcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:92:0f:cc:a8:6f:63:50:7e:75:03:26:0b:7f:96:9d:56:59:
e6:b1:2d:fa:8d:af:a8:f5:1a:72:7f:49:ab:c6:e6:ed:90:19:
93:d6:87:1c:cc:66:cd:2d:ea:1a:93:0e:5d:98:3c:0f:34:77:
46:02:88:44:d5:3b:22:db:66:98:6b:09:6c:3f:6f:ec:bd:da:
cf:b2:b3:bf:1c:13:06:8c:ed:67:fd:1c:e8:ce:33:a5:00:af:
df:62:9e:5e:5e:8c:93:e8:0e:7e:11:26:cb:49:fb:1f:76:af:
f4:a9:d5:76:0b:81:8a:a4:d3:2a:61:53:3b:04:fc:8b:c6:51:
2c:a8:9b:36:4a:7c:3c:7a:67:ff:dc:d4:bc:2c:82:a1:cb:38:
71:2b:db:e9:67:d3:74:62:6e:ed:08:13:d4:ed:48:59:04:6f:
88:55:d1:0f:c2:ae:76:61:0a:b5:fd:86:ac:be:f2:c2:2f:10:
c7:f3:02:61:2a:f2:1d:b8:45:6e:d5:b3:ab:9e:02:46:37:40:
27:00:82:31:4b:e6:8d:31:76:a8:64:21:d1:b9:12:3d:e8:57:
3c:04:92:9f:9b:09:9c:04:1b:ca:13:d4:bc:f8:16:b6:1d:99:
58:e1:66:e6:2b:9e:f4:54:8a:e0:9d:5a:62:40:9e:9d:88:a7:
e7:72:7f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:12:50 2025 by rpki-client