Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft
File: soWZKSpjJCl-Av_zxRGb7gsxdUg.mft (raw, json)
Hash identifier: KgivFXzI1VSok5dE1/Bwt2QeLNdRfhHVCrPeZoGVUDU=
Subject key identifier: 39:CD:55:7F:F0:41:54:EE:DB:5B:68:5D:FF:30:92:36:30:C4:D4:3E
Authority key identifier: B2:85:99:29:2A:63:24:29:7E:02:FF:F3:C5:11:9B:EE:0B:31:75:48
Certificate issuer: /CN=b28599292a6324297e02fff3c5119bee0b317548
Certificate serial: 0197B8FD2988A1BAAF00DD47CC891AB01F9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soWZKSpjJCl-Av_zxRGb7gsxdUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft
Manifest number: 15B8
Signing time: Sun 29 Jun 2025 00:01:28 +0000
Manifest this update: Sun 29 Jun 2025 00:01:28 +0000
Manifest next update: Mon 30 Jun 2025 00:01:28 +0000
Files and hashes: 1: soWZKSpjJCl-Av_zxRGb7gsxdUg.crl (hash: GMEsaQDLxNj8cipRxg0jV7w00/PRxbx4bGMmf0HFnoo=)
2: yVvkuO-jgpRX6XN3GXN1npWJJ6g.roa (hash: 1v07ddxL5rWksw0TtZmPMhkBlMfB2KOWe+9tKgMQP40=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft
rsync://rpki.ripe.net/repository/DEFAULT/soWZKSpjJCl-Av_zxRGb7gsxdUg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:29:88:a1:ba:af:00:dd:47:cc:89:1a:b0:1f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28599292a6324297e02fff3c5119bee0b317548
Validity
Not Before: Jun 29 00:01:28 2025 GMT
Not After : Jun 30 00:01:28 2025 GMT
Subject: CN=39cd557ff04154eedb5b685dff30923630c4d43e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:69:a7:c2:73:16:5e:b0:a8:e1:05:ae:3c:6f:
0e:21:6a:4a:5b:d3:e8:66:b8:26:8e:e3:fc:2d:34:
63:1a:67:ff:f1:78:d8:05:d8:7e:56:e4:5f:11:a1:
ab:07:d8:23:0b:63:e4:25:b3:f3:52:98:73:f2:4b:
90:f7:01:25:ba:7a:19:b6:a3:1f:7d:23:61:22:06:
5b:e2:f2:6d:84:19:97:c9:2e:1a:8b:6b:b9:c5:d4:
83:f0:c4:ae:5d:60:f8:90:2a:36:4b:61:d3:32:1e:
95:94:91:ff:98:c2:9b:36:36:c2:be:54:8b:b2:26:
f3:74:ef:dc:bd:38:aa:e9:3e:48:12:66:8d:20:38:
24:6d:a4:12:d1:d3:33:08:1e:92:48:bc:89:b0:c3:
16:d8:5d:e6:69:6f:ff:55:21:df:99:39:11:4d:31:
91:43:65:1e:11:78:5a:0d:ef:d3:28:96:96:bf:6a:
e6:9d:76:19:5d:64:30:29:c4:5b:e3:22:4f:87:81:
f4:20:4a:8f:4a:be:b4:d6:be:12:f2:60:b7:48:6f:
d5:5a:2b:88:d0:24:4a:6d:54:4b:bc:97:54:81:4f:
4a:db:bf:ec:ee:c2:01:18:6d:ee:20:a8:b2:71:ee:
fb:c4:bc:78:5d:21:f6:53:d7:35:bc:6d:a9:09:0c:
34:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:CD:55:7F:F0:41:54:EE:DB:5B:68:5D:FF:30:92:36:30:C4:D4:3E
X509v3 Authority Key Identifier:
keyid:B2:85:99:29:2A:63:24:29:7E:02:FF:F3:C5:11:9B:EE:0B:31:75:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soWZKSpjJCl-Av_zxRGb7gsxdUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e552f4-96ca-4259-a82a-e35a67e5d9e2/1/soWZKSpjJCl-Av_zxRGb7gsxdUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:e6:58:82:7c:de:78:6c:5f:8e:43:bc:78:56:25:c3:99:5f:
3e:fd:60:97:e4:b4:c5:b2:03:22:c3:b0:67:69:9c:a7:b6:00:
b1:ed:78:01:48:9d:37:78:73:8e:10:43:b8:68:48:67:b8:11:
79:e6:49:bc:94:fd:af:f9:a4:da:f8:3b:3a:ca:27:24:fb:23:
1b:ed:03:66:94:84:06:34:17:ac:93:1b:ba:e5:57:2a:d8:3f:
c6:48:82:04:72:78:91:94:22:83:f9:0f:6e:7d:c3:82:b4:47:
b2:3b:61:30:64:b0:08:94:35:4c:4a:3a:e5:38:60:39:19:94:
b0:08:17:59:5f:64:97:a8:56:f6:41:de:b5:f3:27:fd:1a:87:
aa:05:98:5e:81:8b:b5:02:48:de:e2:83:50:05:fe:fa:9a:f3:
f4:f0:58:e9:ac:4f:7d:30:23:67:d3:34:c4:e8:17:9b:e5:bb:
ab:27:32:6d:62:77:e5:27:b2:52:1a:b0:c8:a4:ba:93:2e:aa:
c5:43:38:f2:4e:95:80:a2:4a:5f:10:c2:e5:91:ed:ea:94:17:
08:4a:72:5a:00:dc:e5:40:79:2b:5f:93:8c:66:53:d2:b1:c9:
f7:a0:4c:27:5f:cf:80:37:22:11:18:7d:c7:11:5c:ba:4f:67:
c4:29:55:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:29:45 2025 by rpki-client