Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
File: 309yD7vOaxVdc1fb5xJspWwevnU.mft (raw, json)
Hash identifier: WfzHaMNyi4yR725ORtTsh63junpMbbWwCIhd+mDZtvw=
Subject key identifier: E7:A5:B2:D5:F1:2F:18:26:A1:D7:4C:87:C9:24:08:7B:52:0B:D7:04
Authority key identifier: DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75
Certificate issuer: /CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75
Certificate serial: 0197CEDFE707235BCCFCB115CBDC95D65088
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
Manifest number: 016A
Signing time: Thu 03 Jul 2025 06:01:09 +0000
Manifest this update: Thu 03 Jul 2025 06:01:09 +0000
Manifest next update: Fri 04 Jul 2025 06:01:09 +0000
Files and hashes: 1: 309yD7vOaxVdc1fb5xJspWwevnU.crl (hash: vdjPT4x92Egmf4vZamDb7QSTMKmRQdZE9Lbyw0lgzQ4=)
2: qjdo-2hELWfZ5X3xR6fmxm2tvRM.roa (hash: KdwciiToM5teWCqBbT0OWprvk5ot6XdBmfBuE2JH8Q4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ce:df:e7:07:23:5b:cc:fc:b1:15:cb:dc:95:d6:50:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75
Validity
Not Before: Jul 3 06:01:09 2025 GMT
Not After : Jul 4 06:01:09 2025 GMT
Subject: CN=e7a5b2d5f12f1826a1d74c87c924087b520bd704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:81:57:b7:98:f8:95:43:8f:6a:8f:70:c3:7c:
03:65:2d:10:b8:b7:a9:ec:a9:f7:3d:45:98:8c:a3:
da:8a:ce:c2:79:7f:f8:22:be:df:67:3e:10:ad:d6:
51:d5:32:ac:34:92:a3:b4:b3:7d:78:d0:86:55:09:
39:12:9d:bc:18:98:12:f3:2a:26:a5:97:fa:0b:1d:
c2:09:38:4d:ef:30:bb:89:89:26:f6:a3:35:46:2f:
22:c9:75:65:9f:9c:6c:d9:53:ad:b1:74:a2:b5:a6:
99:70:ba:c1:d9:46:40:4d:a6:46:66:2c:f1:44:85:
b8:14:fd:4d:fb:8c:e9:f1:ab:6a:68:d4:b9:7c:4e:
12:b4:ea:59:76:f6:54:cf:99:06:ba:85:e7:4a:51:
09:93:99:3d:7d:6f:c8:ed:46:d8:54:0c:53:f1:56:
28:26:d8:53:5f:d9:05:d0:52:12:86:da:d4:0a:07:
de:89:90:f0:ed:4c:f8:4f:00:0b:f7:e2:2b:7f:28:
ff:8d:59:e6:42:8f:4d:22:15:32:98:31:73:76:23:
3a:04:e8:57:06:b2:aa:a4:bb:f2:d9:4b:0b:5a:27:
59:99:9a:c3:1a:dd:25:66:f7:8f:ee:4d:de:72:69:
14:74:22:dd:05:51:11:58:e6:f3:1e:1d:30:1c:3c:
11:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A5:B2:D5:F1:2F:18:26:A1:D7:4C:87:C9:24:08:7B:52:0B:D7:04
X509v3 Authority Key Identifier:
keyid:DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:82:d7:9e:45:71:6f:66:94:e3:74:b0:6d:7d:92:42:18:bb:
0f:de:ef:f2:b2:77:35:9c:f6:57:ac:d4:2f:83:3c:8a:0d:ef:
49:1d:9a:a8:33:1b:fa:aa:e0:2c:4d:0c:9c:8b:34:9b:24:cc:
9e:14:be:21:9a:ce:93:9a:21:2e:cc:e5:58:36:cb:a3:bc:6a:
6c:a5:b2:25:63:fd:db:c4:80:12:d2:02:fe:2d:70:59:0f:a8:
cc:e2:c7:da:e6:12:b0:13:47:40:0b:11:c9:af:0f:6e:ff:d1:
27:52:89:48:ec:1b:a2:63:3c:49:e6:e7:60:52:db:15:f9:bc:
fa:90:14:ee:32:71:26:26:ac:5a:e0:dd:03:18:9a:5e:ee:2f:
cc:14:ec:60:98:d7:72:67:74:be:50:66:73:57:6c:93:a4:81:
20:e4:0a:d4:e2:e1:9e:79:b0:b3:a8:59:28:e9:5f:51:a5:04:
e6:3d:f3:26:85:c7:d7:69:d1:53:f8:15:9b:c3:bb:30:98:5a:
bb:38:ff:94:c5:db:22:41:f0:04:ab:4c:aa:2f:f6:8e:71:98:
d1:6d:c8:0a:e0:b3:fa:f8:2d:75:a5:db:e1:10:35:30:51:07:
27:0d:7a:25:63:54:bb:17:c5:6f:54:25:f2:c8:e2:40:47:20:
cc:7e:56:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 09:49:57 2025 by rpki-client