Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json)
Hash identifier: NQTRBpCWu5R3VsiW+ejEW+A4LGGQkXZzhxMBKOVwOBw=
Subject key identifier: 1F:C8:F5:F4:6F:4F:89:EA:D0:B9:2C:14:81:C5:6C:1C:50:5B:5F:1A
Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d
Certificate serial: 0197B7456A350834B80502BB9EA3DE39A15B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
Manifest number: 01AF
Signing time: Sat 28 Jun 2025 16:01:09 +0000
Manifest this update: Sat 28 Jun 2025 16:01:09 +0000
Manifest next update: Sun 29 Jun 2025 16:01:09 +0000
Files and hashes: 1: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: X+dK/e39YkhTHVEO12mnWFRv5bgt9PeUgAufR/wSAHI=)
2: As2aEQ-Qc40w6qz5lbdZOvfcUl4.roa (hash: wBu3pTqJ+Uf9xdHuwPeUbe92Udv+KfCa1hQtrwjxXdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:6a:35:08:34:b8:05:02:bb:9e:a3:de:39:a1:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d
Validity
Not Before: Jun 28 16:01:09 2025 GMT
Not After : Jun 29 16:01:09 2025 GMT
Subject: CN=1fc8f5f46f4f89ead0b92c1481c56c1c505b5f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:38:11:0c:26:d5:3b:01:76:8f:7e:f6:87:c8:
dd:c4:79:8b:a9:28:cb:6c:2f:2d:03:d0:f4:a2:99:
25:0a:d2:92:75:df:55:ef:92:c6:09:67:83:37:8a:
a1:d7:da:51:24:81:f3:b4:ce:55:8c:3b:2b:81:b1:
ce:73:0d:e9:47:4d:ea:7e:14:a7:9b:34:34:e8:0e:
6f:6a:be:e9:ef:8d:bf:b6:a0:d0:b6:3a:21:88:59:
ea:f1:85:41:3e:23:46:dd:e3:da:99:d9:b2:10:30:
c5:f0:7c:67:64:76:a2:d2:17:49:bf:23:78:8e:ef:
e0:8c:7c:d8:e8:cd:51:62:c7:d4:88:ae:4d:dc:e8:
1c:cc:56:3c:8f:90:2c:72:52:97:53:93:85:0f:6e:
f4:da:bb:f9:7e:b1:cd:ba:76:ba:37:b6:99:55:0a:
dd:00:ee:29:66:d3:01:b6:27:c9:e3:c7:aa:59:2a:
f5:e8:e5:25:fe:6a:dd:b8:f0:39:f5:ba:77:86:84:
fe:5b:ef:a6:16:c0:9b:47:5f:b2:5a:f9:94:c1:4c:
78:c2:fd:00:a7:f5:e9:ec:13:f9:4f:32:29:e6:78:
da:1d:42:2e:22:c0:95:c5:82:df:b3:d7:e1:06:e5:
16:4a:b6:79:8a:20:67:ed:e2:e4:f5:42:a8:3a:0c:
fa:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C8:F5:F4:6F:4F:89:EA:D0:B9:2C:14:81:C5:6C:1C:50:5B:5F:1A
X509v3 Authority Key Identifier:
keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:a2:e8:c0:52:fd:40:f7:70:2a:a2:7b:ee:e1:89:d5:85:cd:
42:04:6e:d6:79:60:b7:15:e4:5c:95:bc:e0:70:9e:02:6a:78:
42:f0:56:a5:63:02:cf:a5:cc:ab:ad:14:1f:28:01:45:8a:5b:
f8:22:b1:56:e5:70:df:60:2c:d3:75:e0:06:b4:4f:e5:3b:d7:
89:fb:4d:ab:bb:2b:32:1f:16:50:b0:2a:cb:f6:51:04:69:42:
04:5a:2b:af:80:c5:3c:71:bb:48:bc:c2:73:39:fe:fd:59:25:
a8:c0:d9:99:ac:04:6b:6a:41:c7:08:a1:f7:47:e7:95:52:bd:
85:9b:c1:de:5e:58:f5:24:62:b5:61:88:27:15:55:2e:23:8d:
51:90:87:86:29:3f:56:91:ab:c3:47:2c:25:27:15:8c:c0:a0:
98:b0:d0:70:b6:fe:7a:ee:e7:bd:34:ca:11:75:15:e7:f3:7f:
6a:ca:73:0e:e5:7e:ec:d6:df:72:84:f2:0b:f9:3e:f7:d7:95:
b0:04:ad:db:89:cb:3e:2d:0e:c7:36:13:5e:e4:b0:0d:4f:f2:
e3:52:bc:b2:4d:e7:c1:57:a6:ac:2a:d8:16:be:d2:7d:7a:af:
9d:48:dd:5f:5c:c1:ce:9a:ca:a1:af:a2:d7:fa:0f:fa:42:fa:
03:50:7e:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:17:35 2025 by rpki-client