Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
File: d53x3kOsymHuwDTOomi0ZUzBXKw.mft (raw, json)
Hash identifier: p0BaKC0xlCCj+GVxgsga1srDMnX4us3OlboasRQKBqw=
Subject key identifier: 14:1B:B7:CB:F8:0A:69:04:60:4F:6B:5D:BF:40:57:85:85:07:19:37
Authority key identifier: 77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC
Certificate issuer: /CN=779df1de43acca61eec034cea268b4654cc15cac
Certificate serial: 0197B7EA6C6C3592B8C4F7F9A25C62053D22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 19:01:22 +0000
Manifest this update: Sat 28 Jun 2025 19:01:22 +0000
Manifest next update: Sun 29 Jun 2025 19:01:22 +0000
Files and hashes: 1: 0vZUeITqxhjYTZ09-IZPJQyJrFs.roa (hash: XWy8JIsvHPb13TWVq0G62lkPYB9FumkdweR7BRskWwI=)
2: d53x3kOsymHuwDTOomi0ZUzBXKw.crl (hash: /EZ12xIwPOihDY3yyfE0ldZeZKt480pab+hPhgOuvSI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:6c:6c:35:92:b8:c4:f7:f9:a2:5c:62:05:3d:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779df1de43acca61eec034cea268b4654cc15cac
Validity
Not Before: Jun 28 19:01:22 2025 GMT
Not After : Jun 29 19:01:22 2025 GMT
Subject: CN=141bb7cbf80a6904604f6b5dbf40578585071937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:be:97:99:f8:de:d6:28:aa:62:16:18:33:2e:
c2:0b:60:a6:b1:e7:3f:33:e2:4e:64:75:69:b5:b2:
49:de:cd:25:c0:e8:a0:2e:c0:69:f6:87:77:16:07:
06:e2:1d:ce:05:50:87:6d:3c:ce:71:76:e6:13:d5:
91:b9:85:73:f4:89:f2:e8:2f:96:d0:4c:58:2b:65:
e5:eb:40:e1:23:3a:e4:46:b6:83:b6:84:6c:1f:6a:
ba:4f:ca:1d:d3:68:e6:9f:7f:0b:5d:cf:24:97:9f:
4a:cf:35:15:77:f0:5d:ee:f0:8e:ca:d6:e6:19:fe:
59:cb:33:5d:63:25:b9:ab:aa:a6:d2:e7:05:18:1b:
70:fc:2d:cf:28:e2:46:cb:db:36:f2:02:3c:83:66:
1c:a6:49:ec:77:da:37:53:bd:48:b3:f7:d5:a5:19:
4e:b1:60:49:cd:01:69:c0:3d:f3:ce:3c:c6:e1:33:
3e:b7:f0:45:5e:b7:8d:44:ba:e8:e5:a4:e1:e3:3e:
e1:1d:24:b4:01:e3:5e:6e:4d:95:80:ab:c1:a9:c0:
70:b7:25:e8:3a:15:fe:f1:37:2a:6b:30:53:7d:61:
9f:61:cd:3c:59:46:b0:45:52:1c:9f:ea:71:d6:1b:
79:55:88:d0:6a:65:93:1b:70:f5:78:02:88:f9:62:
1d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:1B:B7:CB:F8:0A:69:04:60:4F:6B:5D:BF:40:57:85:85:07:19:37
X509v3 Authority Key Identifier:
keyid:77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:ad:8d:77:cd:c5:39:f0:4f:94:37:c2:c1:c5:d9:31:51:7e:
ee:1f:1a:f6:61:33:7d:a8:f1:a4:f3:ad:99:b1:45:7c:e0:e5:
1f:af:6d:42:a2:3b:ef:59:20:b9:30:5f:97:4d:94:01:af:2f:
73:ea:4c:ec:13:9d:32:03:43:ee:6b:90:53:ab:4a:11:61:61:
54:32:a3:f2:9a:54:cb:d5:22:ff:1b:57:e6:11:3c:ee:19:1d:
f5:d6:1b:e2:47:28:3d:85:0e:5b:8c:47:ca:58:2c:ec:6d:a5:
c4:9c:f7:68:bf:ae:67:cd:7a:dc:89:c6:2b:9a:04:56:b6:da:
f9:c0:fb:af:4f:5b:19:b0:ec:05:86:ed:9f:80:d2:97:06:4b:
cd:50:1c:9e:44:65:d3:e5:98:9b:09:9c:f9:af:91:9e:db:df:
60:ae:e8:80:e6:be:cd:c5:bf:36:42:1e:7a:33:2e:d1:dc:ae:
be:2d:28:b7:43:ab:61:9f:e7:f5:1c:df:88:3c:60:99:3d:3b:
32:c4:00:d8:76:e7:aa:eb:81:72:12:a1:d4:4c:b9:7f:78:92:
81:cb:73:55:f7:47:1b:5d:52:36:e8:d0:fc:7b:5e:38:dc:46:
cc:7c:2e:c7:93:58:04:f2:cd:5e:6e:87:57:08:2c:d6:d1:07:
7b:9f:d8:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:51:24 2025 by rpki-client