Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
File: 0xryhyw_VQMHOGbf_vSItxeD2rY.mft (raw, json)
Hash identifier: CnnGJSWiREytBwlq+JEbTdH+jxi3i5tUP4wyMX3fBVs=
Subject key identifier: 2A:B4:85:6C:4A:29:CA:81:EE:D0:7F:36:DD:6D:8C:29:BD:D6:E7:FA
Authority key identifier: D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
Certificate issuer: /CN=d31af2872c3f5503073866dffef488b71783dab6
Certificate serial: 0197B7EA910413890B1C34F3AD1638A55BA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
Manifest number: 12B5
Signing time: Sat 28 Jun 2025 19:01:32 +0000
Manifest this update: Sat 28 Jun 2025 19:01:32 +0000
Manifest next update: Sun 29 Jun 2025 19:01:32 +0000
Files and hashes: 1: 0xryhyw_VQMHOGbf_vSItxeD2rY.crl (hash: KrfuW4OKsW6YEZYcjjqH9vnhTNKTriPdf7RBj4ti0QM=)
2: Vr2MHbk4BkpwijegPw7svFXxpY8.roa (hash: J4FlYQ16tBtXCX4bdbpdB9oishsKJVSj1Pc1U4pte9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:91:04:13:89:0b:1c:34:f3:ad:16:38:a5:5b:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d31af2872c3f5503073866dffef488b71783dab6
Validity
Not Before: Jun 28 19:01:32 2025 GMT
Not After : Jun 29 19:01:32 2025 GMT
Subject: CN=2ab4856c4a29ca81eed07f36dd6d8c29bdd6e7fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:6a:e0:77:5f:3b:de:06:a1:05:d3:64:41:98:
15:72:bc:9f:72:1b:72:01:9c:c0:e1:ad:6c:71:11:
82:90:8f:ac:d5:ce:2f:64:e0:ae:a5:a2:09:4b:68:
3f:b3:3f:69:22:04:3d:1c:ea:6d:1a:63:24:ed:7c:
d5:53:4d:88:2e:28:22:56:b2:4d:e2:7f:6a:ef:40:
b0:3b:f9:29:b4:08:19:d1:01:82:c0:9d:de:0a:78:
6e:6f:c6:93:e6:5e:c6:0f:44:82:93:43:cd:0d:09:
19:77:f8:ba:d3:44:63:ea:9f:0d:f0:e7:e5:ce:29:
33:cb:d4:a4:58:62:32:e9:dc:7c:7b:a9:d7:09:f2:
39:f3:36:d4:fb:20:95:6a:ac:19:5c:08:e5:92:d9:
4e:3f:db:42:8c:c0:29:ed:73:2f:fb:11:5a:d0:b9:
f2:86:f2:99:2d:d5:51:b7:e6:f0:57:d1:87:46:dd:
06:a6:db:c7:ad:fe:36:ed:45:0a:dd:c6:01:6b:7b:
d9:67:d8:f8:67:cf:84:71:c9:f2:ff:61:d1:3a:ac:
61:5b:c3:9f:ec:7a:88:68:db:b5:42:5e:84:1b:de:
f4:3d:40:71:bc:53:ce:fa:bb:f7:a7:8a:e2:6a:2e:
16:7d:28:59:bd:cc:85:15:08:9d:46:9e:f7:c2:8c:
ee:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B4:85:6C:4A:29:CA:81:EE:D0:7F:36:DD:6D:8C:29:BD:D6:E7:FA
X509v3 Authority Key Identifier:
keyid:D3:1A:F2:87:2C:3F:55:03:07:38:66:DF:FE:F4:88:B7:17:83:DA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xryhyw_VQMHOGbf_vSItxeD2rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/68b75c-83df-474e-a9fe-01bf1f145c26/1/0xryhyw_VQMHOGbf_vSItxeD2rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:a2:d3:4f:d1:a9:e6:52:42:48:f9:05:c1:28:88:3e:86:43:
99:db:93:8c:c9:d0:e8:e8:fb:9b:25:08:ee:92:44:db:a1:68:
f0:a7:dc:38:a5:99:4a:05:70:30:dd:0e:ca:60:5c:63:ec:c0:
88:ec:b6:f0:89:bd:23:41:fc:91:7c:9e:02:a2:d4:b4:42:26:
49:29:c9:39:8e:10:da:cf:7b:e7:4d:b4:b7:fb:18:c8:ec:ce:
a8:07:a1:82:92:7b:c2:fe:32:de:a7:1e:9f:0e:4e:b6:74:c7:
65:29:ca:12:1a:39:af:8f:1c:78:21:5e:89:2a:52:49:12:2a:
1c:9d:a9:88:89:fa:0a:4d:40:45:17:4b:b5:c7:3e:e7:dc:53:
25:50:32:e2:ce:ae:89:33:a9:5c:a6:98:c5:29:d8:b5:49:e2:
f0:f8:a3:74:2e:1b:da:65:59:75:40:31:c2:3d:34:74:fb:05:
73:ec:df:e8:89:14:ef:a0:fb:57:06:f3:4f:fe:30:5b:fc:56:
b5:b1:e9:6b:ab:bf:c2:1f:ff:28:d9:29:05:45:a2:fd:2d:20:
09:43:ab:ef:ec:c2:7f:ae:bf:bf:7d:5e:77:1d:37:37:6f:fa:
74:b5:24:ed:d6:b8:8f:e7:ee:1e:4c:3c:d4:43:af:5a:7d:37:
13:37:fe:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:07:00 2025 by rpki-client