Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json)
Hash identifier: OPTBc3v1u55b15b0uwtXfhtWWu1Eb5LX8cMsENr3qpM=
Subject key identifier: E9:D0:90:9B:B7:DD:52:5E:A9:7A:1F:27:0F:DE:2E:D4:79:AF:38:13
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 0197B6D7BD00E8024D188E198C0C568BFBC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 14:01:21 +0000
Manifest this update: Sat 28 Jun 2025 14:01:21 +0000
Manifest next update: Sun 29 Jun 2025 14:01:21 +0000
Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: VjokYQXIIVtJT6/H/lvGEXgz+Mp8HxbQwRvY2kLJdQQ=)
2: bRo1FpRQdGW3rrEgf9LP2ZyYMbs.roa (hash: ZwgslFPNqU25lgzTk3XOIv2Nozx6fjcmPWKTGmYvfPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:bd:00:e8:02:4d:18:8e:19:8c:0c:56:8b:fb:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: Jun 28 14:01:21 2025 GMT
Not After : Jun 29 14:01:21 2025 GMT
Subject: CN=e9d0909bb7dd525ea97a1f270fde2ed479af3813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c0:d0:b7:79:41:cd:00:3e:af:ab:e3:13:69:
3b:57:e5:19:37:d3:82:7a:80:f7:97:94:0a:ac:f8:
c3:a6:e4:0a:96:05:40:eb:cd:62:25:3c:be:14:ac:
97:4c:ed:b0:76:33:74:b1:49:83:33:7b:49:df:81:
60:ee:da:2c:e1:50:f3:8a:4f:18:41:34:e6:65:7e:
e1:1b:d3:a5:b2:69:54:0a:25:72:c4:49:ea:36:9b:
50:91:e4:63:59:ae:f3:93:a1:1d:57:6c:c4:ca:7b:
e9:81:23:97:2d:aa:df:dd:38:6a:d5:2b:c6:35:90:
82:f7:ef:f8:88:7c:07:d5:0f:17:33:01:8d:16:94:
e0:5e:36:22:ea:b4:e0:6a:df:86:c1:d9:d4:77:aa:
63:d2:ac:5a:0a:b0:aa:ad:36:97:ba:90:98:8b:c0:
03:5e:70:d2:eb:a5:7f:16:7f:a0:41:57:16:8a:ae:
86:e4:65:47:84:e6:57:2a:87:7d:d0:bd:b4:22:4e:
23:e3:2b:04:62:b5:19:f8:d3:ac:e2:77:f0:e7:80:
84:5a:79:8e:ab:07:d3:95:a1:c9:49:40:53:08:7a:
56:8a:ce:5e:b3:7f:7e:29:a8:05:87:af:32:e9:df:
10:65:ac:b1:58:cb:e4:d6:a5:db:4b:0c:fa:65:3e:
5c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D0:90:9B:B7:DD:52:5E:A9:7A:1F:27:0F:DE:2E:D4:79:AF:38:13
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:8e:3d:72:51:68:fd:1f:56:0b:25:5f:97:8e:39:c9:ba:3a:
ec:70:82:b6:eb:71:f7:f0:23:1b:84:d9:b1:49:86:d5:72:d9:
50:f1:e4:c7:64:6a:33:ef:69:8d:60:70:84:39:55:c4:33:5d:
9a:32:b1:65:17:fa:06:33:a7:f5:02:ce:de:90:59:de:05:71:
8a:19:9a:4f:81:3c:91:7f:e8:09:ac:b6:2b:b7:81:5a:56:20:
d4:2b:e0:61:45:b4:2f:74:68:58:ab:90:c4:e7:95:7d:19:f0:
24:64:5c:b4:5e:de:f6:36:26:d4:d6:27:23:35:3d:e7:b2:15:
96:0d:cc:36:91:32:68:7e:95:1c:39:77:38:fa:c6:42:4c:e4:
20:58:31:98:48:ab:f8:b3:39:61:e6:86:dd:bb:a3:11:d7:e4:
b7:5b:f6:e8:e6:e0:4f:dd:f2:8b:c0:17:eb:4a:a5:72:50:58:
c4:0f:d8:c1:5d:b8:17:9d:e0:b2:84:27:f0:f2:e3:67:0c:18:
47:a1:71:37:c4:b6:1c:db:20:7f:e7:51:f3:e4:5c:3c:df:f5:
31:e1:2a:83:73:49:a4:57:af:43:01:40:46:f0:0d:7d:30:d1:
c8:b1:87:b7:8c:62:4a:0c:8b:cd:2b:b8:36:03:1f:31:80:cb:
f2:f6:09:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:09 2025 by rpki-client