Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
File: md6y4fhaF9okDPyBbZcsheQR5iQ.mft (raw, json)
Hash identifier: depgN2eROvzwLOAgOssen3PqQuW0+jn/bzzXwzuFacA=
Subject key identifier: 20:96:FE:E3:85:4E:DE:83:5A:21:B2:3F:88:56:50:6D:A1:F2:CE:63
Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624
Certificate serial: 0197B77BF5BA2E4612F4EA840045A641871B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 17:00:43 +0000
Manifest this update: Sat 28 Jun 2025 17:00:43 +0000
Manifest next update: Sun 29 Jun 2025 17:00:43 +0000
Files and hashes: 1: G9mF37Fb91r0jC33-YcK9r4IAmk.roa (hash: MaEVR8Nlqavgaakwb2T4C4sUXoGT+mVODKAXw14Vucs=)
2: md6y4fhaF9okDPyBbZcsheQR5iQ.crl (hash: LmJbXahz01PfmjxlHOpPThfE6M4Lhd+WK/xfA4D8bYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7b:f5:ba:2e:46:12:f4:ea:84:00:45:a6:41:87:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624
Validity
Not Before: Jun 28 17:00:43 2025 GMT
Not After : Jun 29 17:00:43 2025 GMT
Subject: CN=2096fee3854ede835a21b23f8856506da1f2ce63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3b:cb:df:3d:a7:3b:3f:a3:f5:91:89:9a:e6:
e4:39:d3:2e:a3:ad:ec:fc:35:7f:d2:11:5b:d0:97:
a5:6c:45:fe:a2:41:10:c4:58:33:39:db:70:60:4e:
9b:a4:38:59:19:ac:81:5e:f3:3a:d1:26:0b:8a:a9:
67:ef:6b:d5:32:30:1d:e4:b9:a0:ee:9c:c8:40:be:
b0:3a:a9:d5:a7:ad:99:ba:0f:bb:36:1e:eb:61:8e:
d4:84:22:e9:3a:1d:f0:43:c7:98:19:12:dd:2c:fb:
02:1b:76:88:c2:7e:41:4b:b3:6f:13:db:81:87:6b:
0e:8d:24:0b:34:b3:bf:99:54:0e:ae:01:ae:37:0a:
f7:4b:ab:49:60:0f:96:a9:8e:02:5a:fc:15:35:48:
7e:b1:e5:d7:b3:a9:c8:f9:da:49:4a:cc:cc:76:0c:
12:5e:57:6f:ee:8f:1e:b0:1f:f9:b7:42:1f:2b:3f:
20:f4:47:75:1f:c4:8b:58:bb:5a:79:f1:43:ba:89:
8b:09:fc:2f:32:2c:5b:04:ba:70:ec:ae:3d:e1:4d:
9d:b6:b9:80:6e:12:d0:b1:e6:8f:81:9b:71:98:c2:
1f:8a:73:10:50:c8:52:48:1b:8b:2a:da:cb:50:0e:
4e:46:44:92:21:a1:c1:81:3f:23:47:f0:76:f9:a2:
e8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:96:FE:E3:85:4E:DE:83:5A:21:B2:3F:88:56:50:6D:A1:F2:CE:63
X509v3 Authority Key Identifier:
keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:cc:86:b0:82:43:95:ef:30:8a:e3:8c:86:c6:c1:32:21:68:
61:94:9a:63:0e:5a:7c:5b:0e:1f:80:02:66:f8:fa:37:b9:49:
d7:ea:27:17:65:7b:d3:5d:6e:00:d7:ec:25:a5:37:e9:ba:36:
26:2a:fe:e9:5d:26:1c:a0:76:d8:81:8e:f4:0b:dc:7c:9b:53:
13:1c:08:c0:c3:9d:c7:bd:24:13:dd:a3:da:f8:7e:a0:b8:85:
9c:cf:d4:d9:fd:cb:35:fd:35:1e:74:bd:05:f5:b8:af:92:38:
15:4e:d9:cf:5f:72:b8:b3:e5:96:eb:57:2b:aa:bd:eb:98:c8:
bc:4a:cf:f0:d3:b7:d3:cc:28:c1:07:b7:07:bb:8d:ea:ba:63:
12:ca:83:a8:24:d5:b7:e5:d3:f1:e6:83:01:ac:ad:bc:6a:60:
47:be:1f:dd:b4:a2:8d:a3:6e:d9:cf:f7:00:b5:5a:0b:76:35:
cc:1e:dc:6c:fd:af:20:69:37:38:58:d9:2c:c3:b0:af:48:9f:
93:56:ac:8a:f4:b1:07:c3:3e:b6:4b:73:66:e1:5a:e8:fb:6e:
0b:18:46:fe:46:9f:cd:e0:ba:e4:f7:7a:37:d0:1e:3b:ec:c3:
dc:c9:09:39:e8:b4:84:e1:ea:94:4a:15:b8:9e:8b:17:03:a1:
ab:1d:a7:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:41:59 2025 by rpki-client