Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
File: rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft (raw, json)
Hash identifier: 1NfdoImoDlpTq98rbkTOjGwmPNhqQh1e6GwCRNd12bU=
Subject key identifier: A6:71:9E:AE:87:26:53:4D:DC:EF:EC:FA:F4:A3:89:39:B1:15:18:2B
Authority key identifier: AD:94:79:AF:E3:A9:A1:8E:1C:37:4F:CA:02:2D:1F:F2:A2:55:B1:AF
Certificate issuer: /CN=ad9479afe3a9a18e1c374fca022d1ff2a255b1af
Certificate serial: 0197B820C06E4F83D4A290497EB60117FCDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
Manifest number: 6B
Signing time: Sat 28 Jun 2025 20:00:43 +0000
Manifest this update: Sat 28 Jun 2025 20:00:43 +0000
Manifest next update: Sun 29 Jun 2025 20:00:43 +0000
Files and hashes: 1: rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl (hash: 8KM/Oub0GWmkwC64BHwK+G2IrUeH+9CzEbx7DdOTg3U=)
2: y_jzZWxrMh2AT3qjdH5sDFcbnso.roa (hash: UBOvdV+QBpMo/gPKyJWNtGffNnN28PAA/OvI521Vudc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:c0:6e:4f:83:d4:a2:90:49:7e:b6:01:17:fc:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9479afe3a9a18e1c374fca022d1ff2a255b1af
Validity
Not Before: Jun 28 20:00:43 2025 GMT
Not After : Jun 29 20:00:43 2025 GMT
Subject: CN=a6719eae8726534ddcefecfaf4a38939b115182b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:aa:d6:1f:1b:f9:e0:04:0a:3d:ae:44:81:1f:
72:61:9c:8c:76:cc:45:1e:ad:40:b3:19:96:f9:6a:
19:2f:2e:67:cb:a5:9d:7d:b0:fb:7f:5b:db:cf:5f:
ad:0a:71:d2:47:7d:0f:0a:db:03:6e:56:d5:16:0b:
86:c9:da:d6:cb:7a:4e:57:83:e2:b0:bf:9c:6b:ff:
ec:28:8e:01:3a:e3:a2:50:f3:cc:27:d0:41:02:9e:
af:99:4d:0f:1d:cc:15:4e:47:a8:f1:46:9c:64:65:
a8:f9:74:22:99:e5:16:8e:3a:10:66:5c:b8:72:84:
48:2a:57:a8:47:a8:c5:73:6c:bb:68:71:28:84:77:
d7:7c:a6:20:0c:a0:46:4e:1d:57:3c:cd:02:ac:36:
e3:0d:e9:6d:b0:9a:37:ea:72:1a:d3:8a:d2:92:07:
f3:a0:99:e5:2a:f6:19:50:71:2c:ea:20:83:c4:35:
b0:69:6a:99:52:c9:f4:f0:79:e8:a8:f0:42:22:e8:
47:49:02:da:29:04:30:5f:81:e4:0d:48:02:ff:37:
6a:75:aa:ca:38:f8:6e:7b:ad:17:41:d5:f4:3f:b4:
99:76:7d:68:81:eb:b3:6b:4b:c7:31:d3:1b:34:b0:
cc:26:f2:4e:07:28:ff:df:00:c6:f0:fa:0c:8d:ac:
70:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:71:9E:AE:87:26:53:4D:DC:EF:EC:FA:F4:A3:89:39:B1:15:18:2B
X509v3 Authority Key Identifier:
keyid:AD:94:79:AF:E3:A9:A1:8E:1C:37:4F:CA:02:2D:1F:F2:A2:55:B1:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:be:7c:e9:39:fd:74:c9:e8:4f:f8:60:44:25:ab:dd:b6:27:
8c:16:d5:8a:c9:22:62:fd:1b:9f:07:e0:74:12:ca:64:2d:b0:
e4:81:d7:d6:f0:c9:ea:70:6b:6b:01:27:59:6c:76:0b:4c:e1:
74:5f:4d:64:c8:6d:fc:24:38:d2:4b:a6:c2:1f:21:44:df:54:
9f:db:07:24:ca:0c:19:0b:8d:af:f7:9f:d4:0f:84:19:ce:43:
1e:5f:7a:c6:c3:af:be:ba:b0:82:fc:31:34:3f:46:59:9b:99:
45:73:c9:28:3f:0b:f9:c0:b7:ca:ed:71:48:ed:72:50:ac:bc:
36:18:7c:5e:29:e5:b6:0a:7f:04:01:a1:e5:e5:87:22:c5:32:
3b:c1:86:64:77:96:5d:ed:bd:27:2c:8a:63:bc:42:73:f2:00:
d0:2f:ca:19:18:e3:93:1e:09:d4:79:78:57:03:a8:5f:5c:6f:
42:15:d5:77:3d:c0:d6:ba:ed:0e:b0:72:0c:c8:e5:c9:70:25:
a6:7a:81:7f:ba:10:6a:7a:73:ea:55:5e:03:18:1f:c5:9e:84:
e6:bb:b4:ad:05:68:b7:d7:f9:c2:ae:01:f5:9b:ca:d5:6e:ac:
87:5e:be:33:90:b3:6e:71:b3:f0:39:05:51:28:8a:89:f6:bc:
08:a3:ce:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:51:16 2025 by rpki-client