Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
File: drTT6JcTIsZNegRYurdFqJreTeU.mft (raw, json)
Hash identifier: J9BBbZGy9voGokL7jWlz/L2tzCjsbAS6qRwBonQKSB4=
Subject key identifier: B7:AF:7C:2D:8A:B4:7E:31:1B:CA:F2:35:12:90:D3:CF:16:53:91:C6
Authority key identifier: 76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
Certificate issuer: /CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Certificate serial: 0197B6A24F49244B6722890B6F5E98374203
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
Manifest number: 0238
Signing time: Sat 28 Jun 2025 13:02:59 +0000
Manifest this update: Sat 28 Jun 2025 13:02:59 +0000
Manifest next update: Sun 29 Jun 2025 13:02:59 +0000
Files and hashes: 1: ZYX1Qhws2vdCl-u2QXbSsdG6zUs.roa (hash: 1Yas72g5IvT1A6G5CoyKopOr6adZNC8arOgG6BPNF2I=)
2: drTT6JcTIsZNegRYurdFqJreTeU.crl (hash: b7ZT+hjKeUBHt+KfKYyLOq0kWubToMg1IWYNG2eSjZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:4f:49:24:4b:67:22:89:0b:6f:5e:98:37:42:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Validity
Not Before: Jun 28 13:02:59 2025 GMT
Not After : Jun 29 13:02:59 2025 GMT
Subject: CN=b7af7c2d8ab47e311bcaf2351290d3cf165391c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ed:6a:ee:8d:26:9d:a9:52:31:0c:3d:09:31:
9f:74:f1:1f:4e:fd:1c:34:8e:d3:71:c4:a0:96:3c:
13:21:d4:1e:63:3b:62:4e:e2:e9:0d:d1:de:59:06:
20:36:d1:42:01:4f:ed:41:65:65:b9:f1:94:9b:65:
d0:fc:04:95:f7:b3:4d:a4:96:70:ba:6a:01:64:bb:
c4:13:eb:b9:3c:50:67:6e:1c:ef:50:8d:be:a5:3f:
bd:c2:f8:e7:94:e0:e7:1d:68:12:8e:bc:12:8a:54:
41:ad:c2:20:5d:d4:33:56:15:d1:fa:5e:f1:81:09:
c9:bf:31:90:ea:e4:c3:d5:17:04:be:45:e3:95:60:
ef:25:d0:d2:3f:0f:b5:b6:19:a8:55:c7:fb:42:7c:
10:39:eb:78:22:89:96:dc:10:2b:f9:e5:ea:f8:f5:
01:73:42:63:27:71:fd:66:d3:99:d5:16:b8:bc:24:
1f:1b:8d:e8:62:12:29:6b:ae:1b:21:5f:8e:a1:fa:
4b:a2:ff:ad:56:49:fa:ef:f1:80:2c:a0:06:62:9a:
ad:a0:4b:0f:a6:d7:08:14:3e:f6:11:85:26:64:99:
25:9a:29:9e:6a:36:e2:33:04:88:d6:14:e8:25:db:
e7:f8:9c:b2:15:c1:ea:ab:e1:36:80:e2:fc:a8:21:
92:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:AF:7C:2D:8A:B4:7E:31:1B:CA:F2:35:12:90:D3:CF:16:53:91:C6
X509v3 Authority Key Identifier:
keyid:76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:7b:db:9f:93:e4:ac:97:14:5a:6d:8c:96:9c:6a:9a:1b:e1:
78:9b:da:2a:a8:06:e4:89:99:29:7b:fc:af:7e:e9:38:b7:bb:
92:dd:ac:68:a2:57:1b:48:66:bd:23:23:af:06:d2:d7:63:06:
fd:7f:75:c2:51:7f:84:b1:87:e8:9c:f0:56:d5:30:0b:d9:ca:
37:32:a3:4d:c1:d2:aa:66:58:f3:f0:cf:3f:7c:ec:e8:60:6c:
0a:24:a4:6b:6e:40:a1:e8:8d:80:44:cd:37:33:b4:69:af:42:
de:46:9a:66:0d:16:9f:25:4a:ae:1d:3c:c7:e3:58:91:c0:53:
f8:cb:75:74:f0:00:b3:92:34:1b:4b:2b:ee:3d:ad:7b:89:16:
c4:43:46:c9:43:c9:93:f4:2c:67:97:a9:6b:60:e5:f5:41:4c:
92:f8:ac:5b:78:61:06:75:dd:9b:bc:c8:f8:04:b9:09:88:e8:
53:34:59:21:0b:1c:b9:b3:24:da:8c:2b:5d:5f:b1:f8:f1:82:
c3:95:c8:3d:31:3d:00:44:4c:96:19:12:93:ea:59:f6:cc:b0:
d2:9b:ed:af:cf:da:41:5b:cb:77:e7:84:70:2c:8b:84:7b:98:
0a:7f:3d:7c:64:f1:1e:59:75:0c:e1:e5:45:6a:aa:82:b5:56:
ea:d2:11:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:09:03 2025 by rpki-client