Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: xhHS+CRJqdCQQt0wb24kPoCCT2MMPizJ79oIuH56l5E=
Subject key identifier: 49:CE:2C:56:80:CC:D1:78:AD:2C:50:87:56:F5:EF:83:E2:C3:76:3B
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 0197C1925B4DB6C0045790AED55800E9FE87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: C6
Signing time: Mon 30 Jun 2025 16:01:23 +0000
Manifest this update: Mon 30 Jun 2025 16:01:23 +0000
Manifest next update: Tue 01 Jul 2025 16:01:23 +0000
Files and hashes: 1: ZZ126kZc2Gs9amlt5Rc0VmUZOPw.roa (hash: laA9ImB0VtnpNlOC8RmvM5URSIvzaqpg8ewZvS5hOLw=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: Lju9r8qCHRtpCkH0QmgaIUepURxOlZCfVeo53uyUbcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 14:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c1:92:5b:4d:b6:c0:04:57:90:ae:d5:58:00:e9:fe:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Jun 30 16:01:23 2025 GMT
Not After : Jul 1 16:01:23 2025 GMT
Subject: CN=49ce2c5680ccd178ad2c508756f5ef83e2c3763b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:56:47:7f:04:9b:b7:fc:c5:08:30:d5:19:66:
a4:4a:56:89:7f:8e:f0:40:a9:6d:2d:7a:b0:04:34:
37:35:d4:88:38:ba:82:ce:3c:b8:b0:c3:21:0a:be:
7b:19:be:5f:e8:cf:eb:ae:18:7c:b8:8f:a2:8d:f6:
87:26:39:1a:4b:4e:30:15:0a:8d:4b:72:0e:c1:ab:
2e:c5:ac:eb:99:3a:b1:01:ce:cf:2e:f5:e8:99:aa:
3d:61:f5:ed:99:52:f6:81:15:b7:28:dc:c2:08:f5:
44:9c:60:25:03:54:da:ba:90:71:77:11:8c:bb:82:
c2:c2:2c:7f:53:d6:13:b4:0e:03:08:24:e2:f6:32:
12:a6:fa:8d:f5:e3:a6:fe:f0:6c:a2:eb:8e:e5:6d:
1f:07:20:62:22:cf:d1:77:d3:2d:ee:66:a7:f2:ec:
72:15:fa:f2:46:a1:aa:60:d0:b7:05:7f:87:b8:a6:
10:2a:0b:17:a6:a3:a1:a4:0c:76:9e:39:c9:cc:ca:
98:54:2c:bd:c3:45:c3:de:ed:9e:bb:52:05:f0:53:
34:8d:a6:77:99:9e:66:3c:0f:70:37:11:5c:04:77:
24:34:b9:18:0c:a0:0b:2a:a8:0d:4b:28:87:1b:a3:
0b:5d:1b:6e:0d:cc:3d:01:b2:6f:3c:a6:3c:9f:ac:
95:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:CE:2C:56:80:CC:D1:78:AD:2C:50:87:56:F5:EF:83:E2:C3:76:3B
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:6c:b0:0a:70:05:85:e7:c7:63:6b:07:e3:81:4c:b9:40:b0:
3e:2e:e0:b8:c2:1f:e4:5c:eb:ec:cb:5c:09:0a:3a:4b:73:32:
dc:c5:45:bc:83:89:2d:17:45:2a:9d:35:48:3d:cf:19:76:33:
4e:9b:15:ce:95:ff:12:c8:b4:7b:df:49:e8:0b:97:39:13:65:
97:17:b3:3d:84:3d:5f:14:fa:2f:bd:9d:60:35:56:6b:e3:17:
e2:ff:3e:07:c6:7a:c6:fb:f1:4d:d8:8c:f2:21:cf:16:b3:6e:
45:3e:86:de:a4:36:e0:2f:3b:21:61:68:23:b6:c5:25:65:8b:
dd:cc:b5:17:11:9f:53:f1:06:a5:5f:11:a5:52:ed:c0:68:37:
03:76:cd:0a:f0:fd:bf:52:6f:16:80:1d:a8:2f:f2:02:a4:b6:
5e:a1:49:52:f2:89:74:8f:f0:48:20:23:f0:1a:9b:d5:70:0e:
40:b1:33:af:b3:55:45:d6:bf:9a:78:b8:56:47:67:3f:5d:72:
3d:e2:1d:73:91:70:0e:eb:2f:f3:46:6e:2e:c5:a9:f0:64:17:
82:b0:d3:0a:6a:99:80:59:81:24:ff:a4:7a:21:6b:36:c9:c9:
dc:ff:bc:66:e5:f5:20:50:81:90:4d:fa:6e:70:88:79:cd:84:
9c:44:81:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 21:19:18 2025 by rpki-client