Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
File: rfDfdxFHQeE6F9chPmlWv5YntVg.mft (raw, json)
Hash identifier: A9PHlcEnNuaU21heI2QfOiLwO11Tn8/utBO28wcrKZs=
Subject key identifier: 96:EA:C1:32:7A:12:0C:BF:CC:D1:FA:7F:5F:1E:20:1C:58:BA:B1:B8
Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558
Certificate serial: 0197B77C7583A04846A45F35E90C69EBF66B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
Manifest number: 1469
Signing time: Sat 28 Jun 2025 17:01:16 +0000
Manifest this update: Sat 28 Jun 2025 17:01:16 +0000
Manifest next update: Sun 29 Jun 2025 17:01:16 +0000
Files and hashes: 1: 53yfdczv1so3h7m6p_kJKapwYb0.roa (hash: 8fm3UETmOMmwp3oE4jpSkcDNkIYvAEXotF2eKRsyjLw=)
2: rfDfdxFHQeE6F9chPmlWv5YntVg.crl (hash: 8tDY0fX8xIv7daiCHG/Crv9/cjQT3u1Cg0KRcl8IMMc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:75:83:a0:48:46:a4:5f:35:e9:0c:69:eb:f6:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558
Validity
Not Before: Jun 28 17:01:16 2025 GMT
Not After : Jun 29 17:01:16 2025 GMT
Subject: CN=96eac1327a120cbfccd1fa7f5f1e201c58bab1b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d9:cf:86:b2:e8:da:e6:69:da:19:73:53:88:
81:2f:ba:43:4e:7e:04:5b:44:ba:48:d3:30:ce:55:
b2:6c:2a:da:f8:ba:87:80:69:46:43:91:56:46:78:
0d:41:1a:f5:a9:75:6e:67:15:10:47:c2:59:44:5a:
a5:fc:89:99:49:48:9c:ae:2d:f0:c8:1f:9b:a2:1d:
b6:41:27:f3:12:d7:9d:c8:b2:31:22:b3:be:ff:a9:
0c:a1:5a:25:b2:90:91:52:cd:62:13:2a:26:82:88:
f2:2f:71:b6:db:4a:63:27:a4:6b:c5:69:14:21:ca:
0d:61:d8:42:ae:30:13:ec:89:49:53:f5:5c:93:f1:
f0:6f:10:4a:6b:aa:09:17:a0:63:0e:90:27:28:01:
4a:3a:3d:32:92:b9:70:88:c6:4d:4c:bc:38:05:2a:
61:88:26:7a:5a:15:4b:4b:fc:b9:b3:cc:96:08:b2:
92:25:98:13:71:27:44:91:44:ec:25:bf:b0:91:fc:
50:ab:f2:29:45:25:c5:c4:24:62:94:2f:45:d7:de:
cf:a3:18:12:7e:d2:bd:86:c2:31:a2:6b:7e:3e:9b:
80:16:35:7e:a9:5a:bd:ac:2f:65:35:99:3a:a9:24:
77:92:fb:f6:29:7c:fd:5c:e1:8b:0d:24:d6:74:a1:
1f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:EA:C1:32:7A:12:0C:BF:CC:D1:FA:7F:5F:1E:20:1C:58:BA:B1:B8
X509v3 Authority Key Identifier:
keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:c0:57:c7:6d:78:f3:06:e6:a0:06:eb:9d:c3:e8:47:d8:e7:
d0:5d:cb:29:5d:47:2d:b6:44:c5:b4:ed:de:95:43:c9:1c:49:
90:a7:bc:3d:d0:f7:c1:35:be:d6:89:b4:f4:40:69:5e:7b:bf:
9f:b5:01:06:45:e3:bb:58:46:75:6a:75:0e:0f:7e:fa:7e:8d:
e9:cb:1d:5c:c9:ce:72:68:9f:c0:db:17:5a:18:b1:3d:bc:cc:
de:2b:2c:2f:25:2c:4c:df:6c:f6:31:f0:66:44:ff:5d:a6:83:
be:b9:11:42:25:f5:16:3a:c9:00:8e:40:b0:6f:ae:69:75:fb:
15:07:81:80:d5:cd:61:31:40:f9:ea:78:09:6e:d2:be:aa:e0:
d4:0e:16:e7:1f:9f:1f:ee:a7:7d:d4:ba:5f:15:6f:d4:0d:2c:
c0:cd:00:3f:6f:e9:5b:1d:ec:9a:27:32:0b:e6:53:77:71:e5:
f5:eb:51:92:70:5e:9a:bd:11:1b:d8:54:33:f8:56:7d:63:b0:
32:da:ea:84:fa:b6:a8:bc:9b:56:fc:37:b8:f3:06:5f:b1:05:
a7:6b:2d:ce:bc:2f:85:38:a9:97:0d:89:84:5f:bb:f4:5a:1b:
7f:13:d3:f4:0e:1a:17:ff:df:b4:5e:0f:78:fe:c2:58:65:aa:
10:9c:65:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:39:42 2025 by rpki-client