Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: xIDkBXZr5YC9R3SZNPF8PrQbu/KiATrNnHJGLQVIZ/w=
Subject key identifier: 2F:A1:3C:E6:81:08:7A:CB:2A:2A:45:0B:92:78:36:53:45:3C:0D:C4
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 0197B88F201BCC76C0F1F498F46A35D45107
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 15B2
Signing time: Sat 28 Jun 2025 22:01:17 +0000
Manifest this update: Sat 28 Jun 2025 22:01:17 +0000
Manifest next update: Sun 29 Jun 2025 22:01:17 +0000
Files and hashes: 1: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: nBNHzyek6IwpUsBppXPGmsw9+F/l+X5JHsmOariKfGM=)
2: luaqw9G-VvVeUOUerH8hYnJDYmk.roa (hash: cGv6tVYRF/4yXJn3TxE1a8gXuaOG4Us7R7XWbyYOP1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:20:1b:cc:76:c0:f1:f4:98:f4:6a:35:d4:51:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Jun 28 22:01:17 2025 GMT
Not After : Jun 29 22:01:17 2025 GMT
Subject: CN=2fa13ce681087acb2a2a450b92783653453c0dc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0e:96:7c:70:62:04:a3:99:da:55:e7:f7:f1:
f8:4f:f2:2a:5d:04:55:09:98:7d:36:b0:a4:3c:07:
fe:cd:83:84:71:4f:77:1c:55:9b:28:11:c7:76:5f:
18:71:dd:55:5e:08:4f:84:97:84:87:e2:76:a0:5d:
87:49:1a:1a:b3:ef:c2:a1:75:6d:37:39:b9:7e:75:
5d:04:b3:97:fe:54:0d:d7:b4:66:b2:d3:21:4f:be:
b5:ef:f3:27:d6:21:f3:31:43:0d:30:61:61:a9:e2:
b9:ea:83:95:35:b8:5d:50:bf:4a:ca:86:b2:08:74:
3f:51:4b:2b:88:e1:a4:e7:0e:22:c9:b5:36:5c:de:
f5:cd:71:63:3c:ad:d3:d1:ee:b5:fe:40:d7:6c:4e:
cb:8e:dc:5d:ce:bb:6f:af:0a:7b:1a:32:1c:42:4a:
29:94:d1:72:97:df:c5:be:bc:50:69:6b:3e:91:4c:
ec:06:c7:14:82:8f:d8:8c:f3:98:1c:e8:6f:81:ae:
d1:21:f4:01:a2:0e:29:d6:32:6b:99:dc:a9:a0:9b:
02:ed:96:be:c6:22:55:96:3b:b5:a8:dc:5b:f1:75:
3e:58:ca:11:4d:8d:79:d9:87:01:ff:78:08:d2:91:
a2:74:4f:de:70:f3:a7:22:0a:49:79:fe:80:da:b2:
dd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:A1:3C:E6:81:08:7A:CB:2A:2A:45:0B:92:78:36:53:45:3C:0D:C4
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:08:47:ba:d8:1e:fc:14:d3:a1:28:fd:39:e1:2c:ae:32:3c:
99:29:4e:f4:16:d1:76:8b:ac:cd:0f:04:57:63:c3:9c:a1:4d:
02:a8:76:b5:f2:41:eb:07:94:17:cf:e6:64:e4:31:4f:65:e4:
45:4b:df:69:ea:4a:9f:b1:93:64:5c:0a:bc:10:ad:6a:d7:f5:
ab:7d:78:0c:87:2b:be:62:cc:a0:e7:60:67:db:c6:4a:01:30:
37:8e:ef:18:61:cb:32:9c:9e:ae:a5:ba:f2:81:5a:ce:3d:91:
79:18:62:6d:22:9c:0c:18:17:53:7a:67:cc:7e:3a:98:4d:01:
9c:3c:6e:6d:8c:c8:b8:51:91:92:54:85:9a:f7:bf:fc:b0:11:
f9:60:50:c3:8c:25:a0:99:09:4e:85:0b:ac:3a:2f:f4:ae:90:
a0:c4:86:3f:b8:7e:27:93:71:8c:b7:41:06:17:33:96:59:fc:
ca:3f:f7:ac:81:ca:ea:e9:2e:c0:bd:1f:27:7b:c4:d0:63:50:
ea:70:36:0e:88:16:f2:d3:b1:25:66:1b:80:e5:08:43:5b:78:
95:04:ae:69:5f:81:01:f3:8f:ac:ec:3c:a4:3a:a1:d8:af:41:
c8:fc:3f:ed:e1:37:3f:dd:05:04:10:e2:b9:9b:e8:a8:51:3d:
ea:a6:79:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 05:58:38 2025 by rpki-client