Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
File: stCgxoogOf8MpRQCQRUnHIoEZgg.mft (raw, json)
Hash identifier: A6OhvObPU6oJUWFl3XKiYUtpXGPiJHPnVO1DIz/6SsI=
Subject key identifier: 66:A5:D7:25:A2:86:E7:47:DA:13:4D:8B:6D:02:DB:9A:42:5E:6F:20
Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Certificate serial: 0197B820D1D28E3CE911A0A32E3CBE928115
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
Manifest number: 1545
Signing time: Sat 28 Jun 2025 20:00:48 +0000
Manifest this update: Sat 28 Jun 2025 20:00:48 +0000
Manifest next update: Sun 29 Jun 2025 20:00:48 +0000
Files and hashes: 1: 98pSG03PsWjsaovooO14-BTQ9Vo.roa (hash: Nos0vMcOhKzLe90FJjKrPfa+9LXdDpzz5DlngxI3jBk=)
2: stCgxoogOf8MpRQCQRUnHIoEZgg.crl (hash: y41mECVkjbcTFPLFXItuKmtSHYHgYDdzg5MfwlznwOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 20:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:d1:d2:8e:3c:e9:11:a0:a3:2e:3c:be:92:81:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Validity
Not Before: Jun 28 20:00:48 2025 GMT
Not After : Jun 29 20:00:48 2025 GMT
Subject: CN=66a5d725a286e747da134d8b6d02db9a425e6f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:49:3c:a1:fe:d3:c3:88:ef:3a:c7:11:55:3d:
bc:11:49:dc:d6:1e:00:a5:a7:ae:7f:f2:2d:fe:ef:
1b:6d:f1:b7:5a:c4:c5:a2:1b:22:15:8c:92:8f:af:
18:90:d4:80:cd:22:18:4f:ad:a6:e3:8e:56:a3:f4:
36:b8:cf:5c:60:7c:8e:e3:62:52:77:de:18:35:83:
99:47:93:82:52:ca:21:7b:d4:59:c6:92:54:27:69:
f2:7f:98:50:93:4b:ad:34:6e:1c:11:07:29:e4:55:
58:96:f2:62:55:14:da:9e:45:8f:3c:44:2c:f9:e5:
98:95:df:1f:eb:87:88:17:aa:70:76:17:98:dd:9a:
38:32:3c:1a:70:0e:ec:4b:27:24:cb:d3:8d:2c:8b:
57:a2:db:10:79:6e:73:95:83:98:f2:18:a8:ba:e4:
20:40:45:b8:d3:ba:8f:0e:98:9b:fa:0d:8f:bc:06:
80:e8:1e:36:6b:6c:9c:c4:1d:6d:14:f7:3b:fa:db:
a3:18:36:57:80:a8:5e:a5:70:de:2b:8e:b1:fe:89:
21:50:ab:89:ca:8f:83:0b:f7:72:18:c3:01:17:43:
52:be:c7:6e:bf:a8:46:a5:11:9b:1d:ac:d0:06:de:
b0:d0:f3:69:44:4a:f2:b0:f1:a0:58:bd:23:64:22:
9d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A5:D7:25:A2:86:E7:47:DA:13:4D:8B:6D:02:DB:9A:42:5E:6F:20
X509v3 Authority Key Identifier:
keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:23:68:66:89:9e:99:af:77:1a:57:b0:7b:90:06:13:91:4f:
d4:0e:00:53:d3:f2:b2:36:39:08:99:f7:4d:26:41:6f:01:58:
25:9a:27:81:49:c1:44:18:d7:35:57:6c:70:df:66:06:39:fc:
fb:b6:40:ad:b1:a2:1a:77:58:d4:94:f2:8e:e4:5f:8c:1b:ff:
d0:fb:67:2a:83:13:ed:89:b9:19:ef:05:27:a8:ab:2f:a0:c6:
4a:38:ee:c7:74:25:02:6c:b2:b7:96:30:9f:56:12:62:1b:9b:
0c:02:8e:53:96:4e:04:08:f9:2e:60:e3:b8:34:33:55:d8:8c:
62:15:74:dc:ef:69:1d:2a:21:c6:17:b9:d5:9e:6c:ba:ef:2e:
d6:da:7c:c7:74:29:54:1c:db:8e:45:a6:c7:f8:8b:5c:85:b5:
04:50:54:37:29:17:d3:40:68:6e:79:b0:e2:7c:88:16:cf:0d:
e9:e9:4c:58:fd:27:30:3d:48:8d:3f:da:53:27:df:c7:a1:93:
87:84:9e:a3:e9:d4:dd:29:62:1c:01:95:2b:1a:45:78:68:e2:
a9:d8:b9:6c:89:76:c2:ed:cd:46:b5:26:a4:1b:c1:25:b1:28:
8a:9e:80:7e:4e:64:64:eb:e1:84:73:17:a1:b1:c5:5a:c5:8a:
f2:f2:9f:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:18:54 2025 by rpki-client