Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
File: 9iZUZY9nKqzzcTO1xxz0sRwYado.mft (raw, json)
Hash identifier: 86mfGAhx4HssAyi0JXKkD3DDJd2CWswmzpLIRXmlgOg=
Subject key identifier: 06:0C:90:01:6B:7D:43:EC:19:54:54:5C:EB:92:AE:C6:E7:A6:FD:2F
Authority key identifier: F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA
Certificate issuer: /CN=f62654658f672aacf37133b5c71cf4b11c1869da
Certificate serial: 0197B70EEF0E9DA374A5A0B19A56B3DA0848
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
Manifest number: BF
Signing time: Sat 28 Jun 2025 15:01:38 +0000
Manifest this update: Sat 28 Jun 2025 15:01:38 +0000
Manifest next update: Sun 29 Jun 2025 15:01:38 +0000
Files and hashes: 1: 9iZUZY9nKqzzcTO1xxz0sRwYado.crl (hash: aq56VV3qfNTfKBCO9Lio4rwz2sbJ/i62uKKkKNPngcM=)
2: NEPVSXjqT46bRniV4fcHp7pNd9I.roa (hash: cRn+2MSENb6w9bePKCbLQTtEQgCQcGDUoWkOY828NLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:ef:0e:9d:a3:74:a5:a0:b1:9a:56:b3:da:08:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f62654658f672aacf37133b5c71cf4b11c1869da
Validity
Not Before: Jun 28 15:01:38 2025 GMT
Not After : Jun 29 15:01:38 2025 GMT
Subject: CN=060c90016b7d43ec1954545ceb92aec6e7a6fd2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:06:7b:55:67:58:8c:8e:5d:4e:a6:cf:e5:15:
b3:82:2e:d1:b4:d2:8e:6f:7b:32:ca:84:e3:b8:cf:
fb:b6:f1:ab:af:40:dd:07:c6:fe:6e:58:89:ec:a9:
cd:5b:bc:11:f8:d0:02:23:c0:7a:16:1b:0c:b8:12:
39:35:47:e8:a1:de:26:fd:cb:50:6d:7a:82:20:b7:
4a:14:c3:49:e0:6d:3e:dd:fa:9b:fd:ff:f3:f8:09:
e8:0b:00:0a:24:20:f2:47:c7:7b:15:df:f3:54:bb:
35:6a:3e:76:bc:00:1f:37:f0:8f:b2:57:aa:21:56:
01:14:fe:66:6b:08:b3:e9:ab:3c:05:13:b6:c6:d6:
50:eb:15:6a:62:9f:e1:5c:6c:21:7b:4f:79:68:0f:
70:b9:fd:73:ae:74:0b:fb:84:a5:17:3e:23:08:01:
7b:39:9a:a7:0f:10:3d:1e:5c:5a:1f:2f:2b:f7:b0:
27:66:0c:31:9e:2c:b3:56:c1:cf:76:f6:5f:47:eb:
75:1d:51:87:ef:79:16:14:ca:63:7e:d5:59:e2:d7:
71:ef:0f:74:ce:dd:3b:43:bd:c4:cc:03:46:d4:91:
35:d0:a8:67:f2:c6:33:b3:d7:7a:f7:73:62:9b:5d:
a0:42:f7:38:3b:2a:9f:28:3a:34:3a:b0:cb:89:69:
73:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0C:90:01:6B:7D:43:EC:19:54:54:5C:EB:92:AE:C6:E7:A6:FD:2F
X509v3 Authority Key Identifier:
keyid:F6:26:54:65:8F:67:2A:AC:F3:71:33:B5:C7:1C:F4:B1:1C:18:69:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9iZUZY9nKqzzcTO1xxz0sRwYado.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a68e26-92e5-4f49-adb8-664778845b16/1/9iZUZY9nKqzzcTO1xxz0sRwYado.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:68:f3:ed:ab:54:3c:42:42:87:1f:68:52:d8:d5:ac:b5:60:
8d:43:0a:2d:80:d1:75:07:4f:8e:f9:76:dc:ea:b0:e0:9b:f7:
5f:6c:02:39:e3:10:ca:e4:5c:c9:5f:d6:3b:45:bb:f8:f2:e2:
de:31:47:26:89:c1:9d:bd:f2:09:8c:34:44:d7:af:ae:63:86:
55:32:f6:5b:65:cf:c4:84:fa:43:8b:8b:7a:ba:3f:f5:d1:8b:
c8:5e:e6:92:80:ba:76:ea:ec:ad:96:d2:ee:d8:71:cd:c9:dc:
db:4e:ce:7d:7c:5f:f6:ce:98:f7:81:d5:4c:98:f3:98:c1:cc:
7c:db:52:52:8e:ac:9b:c4:a3:b0:b9:89:36:c8:9c:e2:c9:90:
74:f5:56:19:7d:70:34:75:93:50:b3:54:6d:8c:72:78:ad:90:
b9:63:31:d7:55:84:b5:ce:16:bc:c1:88:ba:63:bc:3b:5d:48:
aa:c9:ee:c4:d5:9b:eb:28:c3:98:cc:cf:24:7d:71:e1:3e:ce:
13:26:d7:5d:14:e3:0e:e0:6c:0f:1d:50:66:e4:45:bf:df:ef:
f5:d4:97:ca:c8:8c:0b:6b:df:d9:0f:84:48:93:04:43:5c:e1:
1f:79:15:72:fb:09:78:8d:77:27:97:b8:36:1f:08:78:f5:a3:
bc:78:78:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:06:00 2025 by rpki-client