Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
File: sK3wWv729l-hmmHDCuT7EcfPJbY.mft (raw, json)
Hash identifier: 8qdDuWPZwRb09xgSDxuWwIW42SxX0ypAkX22DZfHyDU=
Subject key identifier: 3C:DF:72:89:BE:A4:D9:13:82:FC:CD:57:53:BF:C6:4A:8F:07:37:08
Authority key identifier: B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6
Certificate issuer: /CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6
Certificate serial: 0197C15ADADBEB28FE6517197EB361D25D9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
Manifest number: 15BC
Signing time: Mon 30 Jun 2025 15:00:46 +0000
Manifest this update: Mon 30 Jun 2025 15:00:46 +0000
Manifest next update: Tue 01 Jul 2025 15:00:46 +0000
Files and hashes: 1: IO0LvnAOcWauTMBpIRocATcgbnc.roa (hash: X7MgkZkBpVtr92LvTB/v/8FDDjBqTMenme65NutXS6Q=)
2: sK3wWv729l-hmmHDCuT7EcfPJbY.crl (hash: lRWnTdwYFm21KPVT6vc8o/7aQgD8cbwbGoW9qckVlds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 14:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c1:5a:da:db:eb:28:fe:65:17:19:7e:b3:61:d2:5d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6
Validity
Not Before: Jun 30 15:00:46 2025 GMT
Not After : Jul 1 15:00:46 2025 GMT
Subject: CN=3cdf7289bea4d91382fccd5753bfc64a8f073708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:48:b6:b5:bf:29:12:cc:97:44:92:b6:7f:35:
56:3a:3e:51:6a:68:36:42:fa:7d:ec:57:d8:05:c8:
e4:8d:e4:62:9a:e1:1b:42:a9:0f:c8:72:e7:b3:d2:
8c:dc:ee:7c:c1:a5:d0:4c:af:58:e7:fa:73:f6:a4:
40:e2:9e:8c:be:5a:e0:e4:14:b0:25:39:75:0b:93:
56:09:84:37:be:a7:8f:8c:72:b4:45:c8:5d:6d:c2:
93:33:c5:85:21:3e:e4:9b:30:71:15:d8:94:bd:d3:
6e:0d:74:77:b0:fe:4f:e5:20:b3:0d:a2:fd:36:56:
45:57:a7:c0:68:69:cd:d0:8d:17:80:c0:f3:ee:83:
d1:44:f5:1e:fb:b8:42:f9:cb:2c:62:6e:b6:39:1c:
db:75:37:ef:d7:82:55:92:53:08:3d:11:ae:f1:67:
67:50:b7:c0:04:54:3e:ec:13:84:e8:83:09:c3:bd:
28:a2:58:18:6d:f3:17:c5:41:cf:63:62:cd:3e:57:
21:18:ff:c9:6c:95:c5:17:c5:a2:50:25:db:03:2e:
5b:40:ea:a7:1b:40:7b:30:e0:1a:4a:b6:dc:e5:06:
7a:a9:d6:ff:e0:2b:c0:59:66:18:14:3e:16:02:4e:
84:2a:8b:4d:53:99:9e:60:95:8c:92:16:d0:9a:20:
8a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DF:72:89:BE:A4:D9:13:82:FC:CD:57:53:BF:C6:4A:8F:07:37:08
X509v3 Authority Key Identifier:
keyid:B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:2f:94:af:89:2b:5a:4d:83:84:e3:3b:c5:1e:08:d2:96:15:
7d:ec:ec:17:e4:c8:39:d5:f9:f0:54:5b:ce:8a:c4:26:83:48:
ea:10:5f:e9:cd:2f:db:ef:80:c1:7d:82:dc:91:50:42:51:9d:
af:67:00:54:f6:b8:3d:91:ff:e6:14:ec:96:50:51:43:fd:e5:
19:b4:cb:f6:72:42:80:cb:d0:7d:aa:63:23:df:b1:ba:bc:e2:
a3:be:a3:24:87:bf:ef:03:e3:26:1d:56:dd:cf:72:9d:50:32:
97:eb:d9:01:23:e4:25:03:2a:57:81:4e:48:84:b1:f7:8f:42:
99:5c:53:86:d2:92:24:ee:ce:e8:f9:b3:ae:ef:ec:8a:36:fc:
5c:e0:93:67:91:7f:1c:30:89:f6:a8:a2:6c:c9:89:f3:a1:53:
5e:34:15:e2:9c:f2:e9:ad:bc:4a:23:1d:80:75:9c:6d:d3:10:
7b:a3:c7:78:22:18:e4:64:c8:3a:4a:fa:e4:68:b7:f0:98:25:
9c:7c:1c:19:5a:11:5b:6c:e3:a3:24:73:2b:2a:c3:02:fc:5a:
b7:c9:db:04:c6:72:60:92:4c:17:c8:d9:08:fa:b7:9b:86:27:
c8:19:32:3f:d7:11:32:77:1e:12:e4:96:ea:d5:a8:ba:f4:ae:
ef:9b:ac:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 23:45:36 2025 by rpki-client