Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
File: 59aKnrhqgmTp3cMSKEm4DMNC9dw.mft (raw, json)
Hash identifier: G9hWyf3w7ln9uXvPHA7hzRj9oUNUDYPwLBtVTUmdZTE=
Subject key identifier: 69:F7:8A:88:98:06:71:0A:F3:5D:42:9F:A8:47:85:14:BF:17:78:B3
Authority key identifier: E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
Certificate issuer: /CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Certificate serial: 0197B7B320C84192DE87CAD5FAC2BE7FC851
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
Manifest number: 12CF
Signing time: Sat 28 Jun 2025 18:00:59 +0000
Manifest this update: Sat 28 Jun 2025 18:00:59 +0000
Manifest next update: Sun 29 Jun 2025 18:00:59 +0000
Files and hashes: 1: 59aKnrhqgmTp3cMSKEm4DMNC9dw.crl (hash: 9+/Z35n8WR3OOkN0vCD1SZB+9Hl1B674aMziB2Uv5DM=)
2: qetS73-OE2CSttiMvug0TDfkr54.roa (hash: f7CQ5AXCS66V7YOxpVoih8o6XmqrwIeswAWr26eRNls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:20:c8:41:92:de:87:ca:d5:fa:c2:be:7f:c8:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Validity
Not Before: Jun 28 18:00:59 2025 GMT
Not After : Jun 29 18:00:59 2025 GMT
Subject: CN=69f78a889806710af35d429fa8478514bf1778b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:61:2b:63:64:32:ad:7d:31:96:e9:65:92:80:
81:04:57:b7:20:99:7e:20:39:4f:3f:df:88:28:48:
07:a9:02:e8:7e:8e:0c:85:15:2d:ad:19:75:15:5d:
45:89:43:f0:b3:15:aa:c5:29:15:6c:0a:e6:ab:9d:
80:63:08:c1:9d:09:f5:0b:c7:4c:49:0b:39:33:cb:
f8:1f:32:22:7e:97:80:af:14:62:f4:ca:46:d5:03:
ae:0f:1b:1b:26:8e:ef:c3:fa:a5:88:36:58:01:01:
fc:d3:1d:ad:aa:e8:5d:9e:f0:fb:8a:22:6b:b7:08:
85:64:ed:60:93:36:66:ad:f4:e0:1a:7e:66:12:95:
46:c5:9f:7f:1c:e8:e3:1c:5e:b4:72:b1:0f:c3:7c:
19:39:2b:f1:50:e0:08:bb:21:f2:c7:ca:21:20:3a:
bb:51:5c:45:e5:0a:28:b0:39:8e:d1:d5:f0:13:7b:
0b:56:91:a5:00:3c:02:c1:7b:14:a5:82:1f:67:c6:
8e:0b:93:b8:cf:8a:3d:20:a5:92:5a:92:b3:7d:49:
0d:68:16:7e:95:40:ad:13:88:be:a2:81:d4:2f:55:
6c:6b:bb:e0:ae:f7:8a:d0:3c:47:fd:a5:84:23:da:
2e:45:4d:19:b6:2c:63:68:e1:b1:b9:d9:31:d7:7a:
97:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F7:8A:88:98:06:71:0A:F3:5D:42:9F:A8:47:85:14:BF:17:78:B3
X509v3 Authority Key Identifier:
keyid:E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:9b:16:27:f2:47:94:90:5d:0e:33:fe:73:0e:02:a4:a4:8e:
2f:19:38:db:81:ed:aa:f6:33:94:7a:bb:fb:09:d0:1b:93:b6:
bc:ca:42:84:34:bf:a2:b7:66:10:7e:76:0b:b1:cb:62:5f:0e:
85:cc:43:d4:4a:95:a3:f1:0d:b4:59:82:db:2b:a4:b1:a6:84:
8c:2a:71:2e:61:39:f1:88:dd:af:78:06:30:1d:bf:bb:08:61:
1d:01:d9:74:46:7f:77:a8:39:06:27:52:09:27:b3:ee:76:85:
08:44:e0:07:94:fb:0e:24:0b:0f:73:b7:a8:e0:7a:c4:2c:61:
5b:0a:d3:dd:2a:b4:75:06:18:2f:6f:0f:0e:59:b9:a1:03:15:
c5:4f:ec:e9:21:85:b9:a3:ec:71:ca:15:13:59:10:35:67:98:
da:a8:90:71:46:23:0f:7e:8e:fd:48:4e:6c:af:89:f3:56:96:
1c:3b:b2:78:62:8e:cc:8a:5a:0c:8c:00:87:10:04:c9:cc:22:
7c:72:f2:de:a9:8b:97:7a:ce:1a:75:a5:b9:23:48:39:41:74:
22:10:16:19:96:62:40:bc:98:87:ef:f1:99:e9:cd:75:13:af:
b4:76:d9:f9:33:28:d9:0e:e4:ee:5f:1b:e7:55:89:c1:d5:1e:
05:08:b3:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:00:44 2025 by rpki-client