Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: SBOd6xY58IvlvfVvFOmmMzOg3kykTHkW4MRk4ggF4J8=
Subject key identifier: 37:07:E0:F7:61:93:F2:00:1D:9B:93:81:E9:10:68:0D:18:67:9E:A8
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 0197B6A1D0279D309AB0F058070A81959860
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 1402
Signing time: Sat 28 Jun 2025 13:02:27 +0000
Manifest this update: Sat 28 Jun 2025 13:02:27 +0000
Manifest next update: Sun 29 Jun 2025 13:02:27 +0000
Files and hashes: 1: hDoqXFR8UibPRuqFY2xn-m_-15I.roa (hash: qknu8HOpVZZ1hKraF3WMV/fgLgKt1U80KJN/d09ixdI=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: D7wrZWOD4oZjdBNyGhXZxaJdPf/nVwF9A79JPCGrOYg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:d0:27:9d:30:9a:b0:f0:58:07:0a:81:95:98:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: Jun 28 13:02:27 2025 GMT
Not After : Jun 29 13:02:27 2025 GMT
Subject: CN=3707e0f76193f2001d9b9381e910680d18679ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ce:81:80:8e:c8:75:f3:85:26:f2:5d:67:6c:
93:54:b6:c1:e8:4e:7d:7f:27:9d:60:fa:d1:8a:fc:
ac:c3:e2:af:c8:33:0f:79:63:60:f5:c1:b8:20:16:
9c:e1:80:9c:f4:61:be:67:f2:e5:1b:20:b1:8b:81:
d7:df:50:21:e5:69:3e:f8:8a:90:d6:90:51:f7:d5:
c7:c5:90:12:82:35:f9:75:9a:0c:46:d0:20:d6:3f:
c6:e6:4d:1a:ca:68:06:4b:66:9f:e7:c3:b5:19:0e:
95:00:d4:bb:f1:c4:6c:ba:88:15:25:1b:b4:2c:ee:
19:60:7f:36:7b:db:62:b3:7b:00:63:e3:ea:a7:9c:
fe:dc:83:6c:df:ce:c8:e4:4d:44:e3:c6:83:22:68:
8d:4a:0e:a7:d5:a3:e6:f2:1f:2f:a5:2e:73:f6:d3:
42:a8:49:e3:25:2c:cc:e0:43:3e:b7:39:4b:22:3c:
91:19:e3:59:ce:6e:e8:39:67:84:4d:24:38:bd:07:
44:e7:1d:7f:e5:f4:8c:a2:69:0a:38:38:04:bd:2d:
45:8d:ce:72:d1:2e:50:5c:b4:13:f7:5b:e9:01:ab:
41:f7:c8:4d:0f:0a:38:59:c8:3d:cf:6e:25:7a:0f:
c3:6e:84:44:7e:62:b0:ff:9f:2a:a3:88:69:e6:f4:
17:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:07:E0:F7:61:93:F2:00:1D:9B:93:81:E9:10:68:0D:18:67:9E:A8
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:0a:a4:33:42:31:8e:b8:6a:e5:94:5e:39:26:5c:d0:fc:a9:
6f:d8:82:c4:e9:53:e0:79:ad:e3:97:70:b7:2b:05:92:b6:9a:
e6:cd:29:87:18:4a:2b:90:a9:33:28:af:db:6c:e2:31:19:47:
7c:6d:2b:37:24:48:74:fa:3e:76:a2:4d:29:8e:5a:91:dd:0e:
89:53:df:7e:63:47:58:a3:79:db:44:d3:3e:97:28:54:15:c6:
d4:3b:73:f1:f7:34:f1:ad:68:7e:a6:29:b2:70:e6:a5:cc:c3:
ad:44:c3:b5:25:62:e2:c7:9c:4c:ff:49:2d:f4:49:5e:5b:e4:
d3:dd:9c:d0:92:98:a1:f6:75:42:48:ad:ff:04:38:58:ab:90:
cc:13:42:f7:6b:11:da:65:b2:da:9e:df:d1:0a:ec:b1:03:21:
e4:29:f0:0d:09:53:7f:50:f6:ed:fd:36:31:94:d1:14:e4:81:
25:fc:ea:96:03:60:af:d0:86:23:7d:ad:a1:be:0d:2c:b0:d4:
a6:af:c8:c2:42:36:b9:01:97:46:c0:6f:bf:97:5b:4f:d6:af:
15:93:18:bb:e4:f5:c5:16:72:ac:09:16:8e:db:51:be:ed:31:
31:24:0f:60:ec:a8:89:a5:0e:65:26:89:82:58:31:f4:7d:e1:
a3:7c:f8:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:40:25 2025 by rpki-client