Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
File: cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft (raw, json)
Hash identifier: YvVDSAGvO0s2ICzvAspp6/HEFLpEONZkt8LewPD0drw=
Subject key identifier: 8D:FF:6C:99:8F:92:8A:26:EC:04:C0:B1:10:EF:FF:62:D7:E8:3D:05
Authority key identifier: 70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F
Certificate issuer: /CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f
Certificate serial: 0197B8FCFB61B0239A7BBF374E1F570BCC86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
Manifest number: 15B7
Signing time: Sun 29 Jun 2025 00:01:16 +0000
Manifest this update: Sun 29 Jun 2025 00:01:16 +0000
Manifest next update: Mon 30 Jun 2025 00:01:16 +0000
Files and hashes: 1: cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl (hash: c7zKKFUdDabtEsc9m195NciO7vAbqsvX0q5sL70UU9Q=)
2: gEcPKMyXsq8EnU4MPoFeY2Uidb0.roa (hash: 43PR1hTJL7tXyu9/IcMkUlMdJ9SOinPx2dKMQk9nNKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fc:fb:61:b0:23:9a:7b:bf:37:4e:1f:57:0b:cc:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f
Validity
Not Before: Jun 29 00:01:16 2025 GMT
Not After : Jun 30 00:01:16 2025 GMT
Subject: CN=8dff6c998f928a26ec04c0b110efff62d7e83d05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7a:b1:67:d1:fb:3f:49:24:12:ff:a0:6c:0d:
8b:29:a9:44:c3:47:e9:14:26:25:a4:b3:74:8c:80:
3b:d8:7c:7b:8e:da:87:fd:c2:a3:0f:dd:ac:fd:bb:
08:16:a1:99:07:c9:75:0d:89:c3:cb:2a:f5:4c:5a:
95:3c:43:94:5c:1d:c0:73:24:c2:1e:fe:0c:f7:85:
08:57:5e:96:3a:58:92:55:87:6b:e7:02:c9:a3:a6:
0e:36:45:1b:e1:c2:2d:a8:7a:5b:f4:fe:de:e7:93:
e1:9f:ec:93:89:5b:f6:17:4d:ea:b0:b8:6a:76:3c:
87:c2:d0:73:bc:24:b5:e9:cb:38:84:f1:82:61:6f:
08:d3:c5:bc:83:6d:14:d0:76:23:5d:6a:65:00:70:
0a:e9:a8:fa:5d:01:43:45:4d:86:a3:d4:68:88:e9:
be:ef:12:af:88:d6:0e:f8:73:dd:59:b5:18:27:77:
a7:fc:94:39:f9:f4:d2:19:07:cd:8a:6c:1c:98:81:
12:44:c1:27:26:d0:a0:7f:fc:d7:72:bd:85:ef:56:
cb:1e:e3:dc:0d:69:76:ea:d9:13:45:d9:a8:49:53:
b7:9f:3d:7b:e3:ec:76:6c:99:59:b7:a8:40:a7:ae:
37:41:5a:44:92:a6:d5:a9:0c:8e:4e:44:ee:a9:9f:
b3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FF:6C:99:8F:92:8A:26:EC:04:C0:B1:10:EF:FF:62:D7:E8:3D:05
X509v3 Authority Key Identifier:
keyid:70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:1b:8a:a5:2c:91:2e:f4:7d:82:17:04:b5:14:f4:e9:2a:bc:
99:23:d5:a1:12:55:0d:97:8d:00:2a:e4:96:c2:29:e3:69:92:
3a:4c:1b:64:08:76:ac:27:a6:61:f5:56:bd:5f:b8:4f:28:89:
79:53:ea:86:a3:36:f3:e2:c0:44:a9:0c:bd:03:0f:e6:3e:11:
6a:50:d1:de:9c:68:0a:cb:90:91:9e:4e:6f:c7:ce:82:c5:8d:
3f:d2:47:d8:7c:55:16:8e:64:31:c1:74:9e:06:0d:5c:be:68:
b6:83:c2:ff:70:eb:7b:6e:5a:27:b3:82:9e:14:59:80:59:24:
13:b5:38:5d:ba:e8:59:ff:fa:da:2b:9f:63:d7:53:ab:b3:c0:
f5:dd:da:6a:0a:6c:43:89:79:1f:87:d0:6c:19:09:cd:f3:3c:
1a:8e:08:09:ae:ed:0b:a1:c5:7f:e6:3d:7d:09:7b:7b:d0:da:
ec:1f:99:a8:eb:fb:d5:1d:94:d3:b8:99:92:81:01:9a:e1:0b:
82:e3:9f:c2:55:1a:a3:af:82:9f:ef:b2:77:2d:dd:e6:1f:67:
a2:da:f6:1b:cf:d5:66:c0:29:12:7e:36:d4:28:43:b9:8a:e0:
20:ef:bb:9d:84:f8:30:eb:99:cf:7c:d6:4d:e4:9b:25:20:f9:
10:6f:58:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:35:49 2025 by rpki-client