Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
File: cd9sdT6ghb7zcrOSYw90uldpbuU.mft (raw, json)
Hash identifier: G6NCDa1Uu9oUtiil9dIdI0zvU3VNIeNWE2MiYCV1Mkw=
Subject key identifier: 66:B2:EB:04:6F:B4:C4:17:29:12:26:4C:84:B2:0B:E1:BF:5F:50:22
Authority key identifier: 71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
Certificate issuer: /CN=71df6c753ea085bef372b392630f74ba57696ee5
Certificate serial: 0197B6A11EC7E521CCF7C3F6519E96697175
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
Manifest number: 12C6
Signing time: Sat 28 Jun 2025 13:01:41 +0000
Manifest this update: Sat 28 Jun 2025 13:01:41 +0000
Manifest next update: Sun 29 Jun 2025 13:01:41 +0000
Files and hashes: 1: 26OroNSilLDsLnRmS90OawnRg8M.roa (hash: 2vZiL1ss373Q0TX+B8Q8SMDZKCr1m9fpyjjeqgVg0rI=)
2: cd9sdT6ghb7zcrOSYw90uldpbuU.crl (hash: Vbun3ot0uwGoBtjh/ra9urO2O3H+74EQPzQBKbrso4c=)
3: yFq0JfOaNjdhRiNZMahKgBz5pBs.roa (hash: HLvs21UJM8ndMu/vC6YjvpshtGffGUPV1RHDv0ERCAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:1e:c7:e5:21:cc:f7:c3:f6:51:9e:96:69:71:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71df6c753ea085bef372b392630f74ba57696ee5
Validity
Not Before: Jun 28 13:01:41 2025 GMT
Not After : Jun 29 13:01:41 2025 GMT
Subject: CN=66b2eb046fb4c4172912264c84b20be1bf5f5022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b4:78:2b:00:c4:24:92:81:4a:14:63:60:40:
c6:40:70:5f:c2:7e:63:fd:f4:58:db:8a:b1:e4:ea:
aa:b5:ad:86:3c:ee:af:4c:6f:57:06:2c:df:24:41:
0c:2d:43:a1:20:f2:3b:19:dd:b5:34:39:cc:37:37:
b3:2b:33:13:6e:df:1e:93:38:bd:81:09:18:6e:e9:
31:b8:bd:05:c7:c8:4e:92:bd:87:4d:0f:78:ef:45:
dc:d8:08:7c:42:55:93:8d:d9:33:ab:4e:a5:c3:0e:
c4:7c:43:b9:17:eb:8e:bc:41:ab:60:33:89:06:11:
0c:fc:eb:6f:4a:cc:31:b8:5f:2f:ba:e6:1f:74:b7:
82:f2:6d:ec:cf:5f:c4:3e:74:c1:77:6c:b0:e5:bf:
d5:85:83:b1:70:55:1f:1b:cd:38:a7:98:67:f3:8b:
6e:1f:d5:c9:51:a2:73:43:14:f7:f2:82:dc:89:9c:
b5:51:a3:2a:17:d8:2a:a5:ee:25:65:6d:56:73:d6:
40:b6:c9:33:9e:5b:ff:2a:24:63:18:74:99:61:e8:
75:71:a8:7a:2a:59:ec:dd:c2:b3:4b:5c:25:c0:7e:
14:91:c1:c9:71:3a:f4:5f:c1:0b:2f:33:ed:85:a6:
5e:49:c2:9d:66:76:52:02:4d:e3:18:f4:2e:9a:e3:
37:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B2:EB:04:6F:B4:C4:17:29:12:26:4C:84:B2:0B:E1:BF:5F:50:22
X509v3 Authority Key Identifier:
keyid:71:DF:6C:75:3E:A0:85:BE:F3:72:B3:92:63:0F:74:BA:57:69:6E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd9sdT6ghb7zcrOSYw90uldpbuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/c59484-b07a-4ca1-abcd-a83845caac21/1/cd9sdT6ghb7zcrOSYw90uldpbuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:92:64:32:f2:b8:0c:8d:97:57:7e:5c:2d:bf:f9:e1:6f:56:
23:90:2c:2e:a7:28:90:75:98:54:ac:e6:e9:a0:70:de:2d:f0:
16:6b:ba:05:48:e9:c1:7a:58:58:c5:05:0c:9f:88:70:33:5a:
18:0c:9f:76:c4:7c:0e:18:24:fa:0c:73:60:fe:4b:1f:6a:29:
58:ae:a7:d5:3a:02:07:35:67:88:02:0e:90:89:23:c2:55:ee:
dd:a3:f0:c3:3f:91:98:60:5b:e0:77:ac:e3:68:0b:ff:62:f5:
1f:59:66:73:20:be:ff:9a:a4:5a:33:3b:5d:15:b1:61:a9:7c:
66:7c:7d:fe:0c:00:dc:a5:aa:d4:97:0f:93:be:b8:77:bf:bc:
07:0e:ae:e1:8f:7f:00:cf:73:ea:ff:ca:1f:ed:2f:49:78:99:
f9:2f:a8:cc:86:de:3c:39:c7:ce:d5:5d:2f:d8:78:14:aa:3b:
5d:45:d6:b3:20:ad:03:c0:e7:b1:51:87:b7:73:23:79:99:9e:
d7:c8:0a:da:05:99:92:bf:32:35:97:42:64:8a:5d:2b:d5:1a:
af:3a:d9:b3:9a:a8:a5:70:92:b2:ab:f2:2d:f3:71:ba:ac:51:
a1:6e:4b:a4:24:cd:32:d3:4c:34:cf:13:9b:0b:89:e8:ed:c2:
b9:ef:68:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:07:00 2025 by rpki-client