Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
File: rKZqWTivVnqeKbT3bxFWB8K4qiA.mft (raw, json)
Hash identifier: 44cc0gkRXS6t3TPVF/S5Jwa2R34tQleEWDdDIKXOWm4=
Subject key identifier: 35:0F:A3:D0:88:6B:3A:0C:74:00:6B:A4:C1:FD:D9:72:29:B1:6B:B1
Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Certificate serial: 0197C38050316CF4167029D0C3EC8479D120
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
Manifest number: 15D3
Signing time: Tue 01 Jul 2025 01:00:55 +0000
Manifest this update: Tue 01 Jul 2025 01:00:55 +0000
Manifest next update: Wed 02 Jul 2025 01:00:55 +0000
Files and hashes: 1: A6WXTZEzXmIQ_NgfUonzU2PUwgA.roa (hash: woiA9rRwDxAjmj0pEa4K5XOpCIKapMbaEdUIwATG6G0=)
2: nna5EA2g1qX6KviopTAzfZKYgqM.roa (hash: +1+cT+lcsXs8CMprSc3uLnHvYXXY0ACjWW6HRhv0N78=)
3: rKZqWTivVnqeKbT3bxFWB8K4qiA.crl (hash: staX5LnlCqdNJ+mt5x8FC3f1itE2Mf3Q3AxyH0OY3rc=)
4: tteeEx_UHwSzotofaQO5wxZ_ugA.roa (hash: 6J8PWS09Iv6b8y8k1LDtC9qNTp2Y/khQlLJjRszf4aQ=)
5: xNEUjA7ITLvBkxdzmbme9661TlQ.roa (hash: 1h+l7pX24LlIz83Xj6rt/K305QYrLmEd1uwS9wbn8l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c3:80:50:31:6c:f4:16:70:29:d0:c3:ec:84:79:d1:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Validity
Not Before: Jul 1 01:00:55 2025 GMT
Not After : Jul 2 01:00:55 2025 GMT
Subject: CN=350fa3d0886b3a0c74006ba4c1fdd97229b16bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ec:bb:c0:4f:d4:00:99:e4:04:72:64:81:81:
94:86:5e:ab:3a:1a:a8:bd:5d:b5:e1:b7:b3:9a:eb:
39:1f:51:52:1c:9b:62:2a:27:f0:af:b7:0b:ae:96:
12:a2:69:41:45:49:d9:d9:9b:92:60:37:79:77:6b:
86:b2:7c:3d:c7:6a:86:ec:24:ef:1a:99:6a:53:8b:
c7:fe:a0:c1:96:7d:0f:12:93:04:ce:6e:d1:91:ab:
8d:33:fe:74:ad:ed:96:89:52:1e:e7:4e:fd:73:de:
bc:b7:43:23:73:75:ed:a2:49:79:f3:ce:87:90:45:
e9:30:79:ea:7d:18:62:72:af:35:8b:99:94:a7:dd:
bf:08:da:87:f0:ae:fb:c5:d2:ad:77:13:fb:66:64:
ad:18:f7:95:d2:7d:98:13:4b:b2:ac:a9:d2:c3:1d:
0b:fb:c1:13:25:18:2e:85:16:31:f9:e2:c4:55:17:
9b:04:da:b7:82:89:e6:ee:7a:a6:f9:23:96:42:77:
69:07:14:f8:cf:7e:1f:e4:a8:5a:09:9a:1f:0e:2e:
47:38:3c:27:d8:4d:5c:eb:ae:75:e9:df:ed:f9:05:
4e:c5:f4:8d:f6:4f:0b:d1:64:17:2b:70:fb:1b:2b:
2f:46:b1:28:18:1f:62:4f:f5:29:5e:20:3d:9c:e4:
cb:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:0F:A3:D0:88:6B:3A:0C:74:00:6B:A4:C1:FD:D9:72:29:B1:6B:B1
X509v3 Authority Key Identifier:
keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:bf:1a:5c:6f:34:f2:fd:10:b7:eb:20:00:60:cf:0b:1d:31:
6f:0a:13:49:71:ed:ad:ed:5d:80:3c:d4:0c:21:82:d4:7b:a3:
a0:25:36:5a:0e:73:3b:f3:12:26:29:fc:c3:a3:89:08:07:81:
c9:a6:e5:99:d0:17:c7:49:3d:34:6f:e2:3c:d7:32:27:fb:51:
a6:d4:00:4c:42:28:2e:8a:74:c7:10:ba:03:d3:1e:6b:3b:4c:
bb:3e:10:c8:bd:0b:be:4f:d1:d6:d7:eb:f0:34:ac:f6:b4:46:
a0:6e:3d:43:15:2b:2f:be:13:84:3e:0d:c6:1d:b7:cd:d4:7e:
74:c0:05:14:81:00:05:3e:cf:79:ee:c5:27:85:d4:39:c3:0c:
a1:6d:18:11:9c:74:3e:a8:dd:81:f7:cc:7a:40:c2:89:a1:84:
2e:7e:87:18:58:13:20:07:61:3c:46:3f:46:aa:3d:e4:f8:a9:
52:61:03:3e:f8:df:2d:4a:7b:18:0a:45:72:21:ba:67:9b:4b:
e3:bd:ec:c6:cf:25:b2:41:98:48:7b:12:e5:fe:38:25:b5:37:
ab:5a:0e:b2:46:36:49:23:e6:8d:12:e7:c1:22:12:46:cd:35:
3a:03:5f:6e:32:5a:b0:6a:fd:e6:a5:ca:3a:14:7f:eb:f6:88:
b7:d3:c2:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 07:17:07 2025 by rpki-client