Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
File: sFcIRcI56ZkcibxcUEMekIeGDE0.mft (raw, json)
Hash identifier: jWS/Z+dUKYERzIYVCgiL6BARhmJeBS/n71eprs4EBKw=
Subject key identifier: A0:A2:45:3B:D6:8D:D1:5C:34:C6:D0:D3:E5:28:F2:E6:01:22:CF:7F
Authority key identifier: B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
Certificate issuer: /CN=b0570845c239e9991c89bc5c50431e9087860c4d
Certificate serial: 0197B6A089DD70961F99D5D64C26F95B41A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
Manifest number: 2E
Signing time: Sat 28 Jun 2025 13:01:03 +0000
Manifest this update: Sat 28 Jun 2025 13:01:03 +0000
Manifest next update: Sun 29 Jun 2025 13:01:03 +0000
Files and hashes: 1: eJajOeAl1dpXoVMyo-TWasmE78U.roa (hash: e99jaZ34t9Puj9JUGgjuVC8Wtl17GlIfWvReIVg3Lrw=)
2: sFcIRcI56ZkcibxcUEMekIeGDE0.crl (hash: 1j+MPkOaKK0hJdP7hhkWXkzQCj/vRmvM3AnI2LhhO2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:89:dd:70:96:1f:99:d5:d6:4c:26:f9:5b:41:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0570845c239e9991c89bc5c50431e9087860c4d
Validity
Not Before: Jun 28 13:01:03 2025 GMT
Not After : Jun 29 13:01:03 2025 GMT
Subject: CN=a0a2453bd68dd15c34c6d0d3e528f2e60122cf7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c5:cb:a8:07:5f:d0:ff:40:84:e0:85:88:35:
54:85:1c:a7:4b:46:5f:6d:8d:2a:e7:65:9f:cd:37:
ae:5d:d8:e6:53:8c:88:36:40:ec:23:93:23:9f:10:
42:67:3e:dc:4a:15:48:d6:9a:53:1d:fc:0d:c1:72:
79:4a:a4:55:df:da:7b:2e:69:88:bd:09:c0:e1:15:
dc:f9:db:57:e3:cc:b2:0e:25:a4:17:0a:04:a2:1b:
a5:2c:71:40:f1:32:e9:85:f6:a6:dd:9f:35:23:9a:
48:81:49:c7:17:76:3f:51:91:e6:ac:dd:11:23:c9:
7b:93:59:4b:5b:0e:73:21:5a:b3:d2:78:c9:f0:8f:
a1:ad:0e:8b:30:07:7a:43:0c:b3:a0:24:55:eb:b8:
9a:d5:a9:e7:86:8a:f3:eb:6d:f5:93:f7:e6:76:67:
aa:f0:ee:3a:7c:9e:89:71:f9:2f:2e:47:a7:e4:cb:
88:6a:c5:4c:99:36:de:25:19:c1:6f:18:65:44:14:
6b:33:a2:d7:66:6e:ed:05:1f:8a:ba:fa:b0:e7:3d:
40:06:22:91:d2:7b:12:b4:8f:a1:0b:33:c1:45:fe:
be:25:b6:32:42:b3:e5:7f:36:8b:c3:83:50:d8:1f:
c6:fe:6f:fb:c0:22:52:17:b7:9e:b0:0c:91:5c:9c:
a6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A2:45:3B:D6:8D:D1:5C:34:C6:D0:D3:E5:28:F2:E6:01:22:CF:7F
X509v3 Authority Key Identifier:
keyid:B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:8b:99:4a:0d:bd:fd:16:95:61:9b:0e:1e:58:a1:7d:95:71:
48:76:75:c5:70:18:14:7e:3d:7f:48:67:0f:a2:60:cd:32:ca:
75:a3:fc:76:23:d4:3c:94:de:3d:ce:9d:a5:bb:c0:61:fa:3e:
81:8c:20:8e:6f:5d:b9:5f:d8:81:7e:8c:6c:57:3b:c6:33:39:
90:24:fd:fe:92:b8:c0:c9:23:c3:1e:03:ea:01:02:38:4a:d2:
89:b9:10:1f:ac:44:50:47:fc:5b:be:14:4f:e7:d1:91:f5:5d:
c6:9a:5f:26:91:f8:99:db:28:58:65:ee:18:7a:05:da:27:d0:
bc:9e:07:1b:73:57:eb:9b:65:4b:e7:59:03:eb:2e:76:14:8b:
04:e7:1d:39:df:b4:fd:4c:46:9c:8f:a0:c1:9c:48:d0:f0:2e:
55:a4:8d:e6:74:36:7b:3b:b2:fd:22:e8:86:e9:d6:05:2e:3b:
7c:9b:49:b3:e9:11:e7:92:fb:e6:d6:20:2e:72:4f:c4:0a:b0:
bd:29:49:49:24:54:88:72:7d:3c:e9:4d:36:c5:2b:da:d0:1b:
9c:4e:30:d9:ad:ce:43:52:2d:f8:83:b8:99:59:12:66:ab:86:
f0:52:b3:79:18:07:a0:8b:49:45:e8:ae:4a:35:17:8b:28:a2:
d4:f0:54:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:03:50 2025 by rpki-client