Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
File: sPoMerwQeWkV4zW6GXgORz4CeWk.mft (raw, json)
Hash identifier: 9K40M8nnneDfsqe3WxFj/lLuQkPg3dvbON9+MSdH4v0=
Subject key identifier: E4:0C:34:5F:5A:F2:D6:9C:87:38:5C:B9:43:2A:41:B3:27:63:8C:A9
Authority key identifier: B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69
Certificate issuer: /CN=b0fa0c7abc10796915e335ba19780e473e027969
Certificate serial: 0197B745B9DECD18AAFE98A253EE9916D929
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
Manifest number: 10A7
Signing time: Sat 28 Jun 2025 16:01:29 +0000
Manifest this update: Sat 28 Jun 2025 16:01:29 +0000
Manifest next update: Sun 29 Jun 2025 16:01:29 +0000
Files and hashes: 1: Y9lkKqKsnQqZGmQo1Xo2fiLr5iU.roa (hash: 6A0trmFdZaEK+JW4D/IW96VMnZJTTVLOPMuYPUfapNM=)
2: sPoMerwQeWkV4zW6GXgORz4CeWk.crl (hash: k5ZkMaxW98iIZ4z8lIOpT3rsp27uKNvzj+/C4xYBSGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:b9:de:cd:18:aa:fe:98:a2:53:ee:99:16:d9:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0fa0c7abc10796915e335ba19780e473e027969
Validity
Not Before: Jun 28 16:01:29 2025 GMT
Not After : Jun 29 16:01:29 2025 GMT
Subject: CN=e40c345f5af2d69c87385cb9432a41b327638ca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:69:61:50:54:b6:ff:4b:50:d2:41:da:3f:38:
3f:ce:8e:7b:0f:76:62:f3:52:ad:00:77:cc:20:17:
4e:1b:33:15:48:36:5e:9d:da:4b:98:5c:67:1c:0f:
cd:d4:c9:2e:02:90:ea:e1:46:fb:09:e7:b3:ab:71:
05:26:46:bd:fb:3b:55:69:40:cf:05:1a:f6:cc:85:
a4:39:7d:4e:7e:b0:55:d0:19:5d:91:d5:dc:b1:6d:
fe:23:77:38:f2:9a:97:e2:39:08:cb:8f:15:ee:4e:
7f:9c:c5:ec:4d:4b:3d:23:2a:7f:eb:e9:45:f1:b2:
e1:d3:c6:8e:f7:09:42:d2:8c:c9:7d:59:6f:88:40:
57:4c:d7:eb:f6:db:40:7f:71:3e:5a:78:99:6e:a3:
3c:4b:df:e2:c2:3f:79:9a:f6:6c:0c:6d:d0:9d:a7:
44:54:b9:6d:0d:54:df:22:25:ff:5d:a5:3d:04:36:
2a:1e:ea:e1:ef:92:2b:4b:ec:99:57:32:5c:24:4f:
9c:52:c0:54:b6:04:f5:53:40:cf:05:8c:36:1a:43:
8f:60:6b:ea:12:a2:3c:ec:16:cb:b5:29:32:3f:57:
66:92:db:cd:87:c6:7d:0c:1d:cd:6f:b7:6f:25:c2:
35:22:e0:ce:70:c4:23:28:0f:24:18:50:12:38:48:
d7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:0C:34:5F:5A:F2:D6:9C:87:38:5C:B9:43:2A:41:B3:27:63:8C:A9
X509v3 Authority Key Identifier:
keyid:B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:c4:12:f7:c7:f2:b2:35:01:39:b0:6b:87:30:aa:bc:b7:03:
68:bc:c4:3a:2c:14:05:a4:9c:7c:5d:c5:dc:ed:9d:16:bb:e7:
49:e1:39:1e:de:20:2b:70:c0:55:ec:45:a9:65:3c:16:a8:bb:
6a:fb:10:b3:12:73:5a:88:12:8d:3a:43:69:28:eb:c0:ea:b1:
b6:22:ff:0f:50:42:75:67:f0:b0:47:5f:be:de:4f:47:e3:8a:
42:f9:0e:53:3b:0f:08:80:04:d7:d2:a3:1b:c5:93:5a:77:05:
54:52:61:84:b2:bd:f0:bd:3f:a0:5e:71:71:75:77:22:19:af:
71:8b:58:50:64:54:52:33:23:5b:b3:4d:d1:a9:51:e9:d5:b2:
ad:e9:56:74:49:10:a5:df:b4:38:26:2d:ee:e9:f1:0a:ed:ce:
c9:41:d1:db:9e:e9:b9:4c:db:45:58:9a:55:3c:47:b4:1e:51:
47:e5:8d:0d:3a:6b:e0:16:b1:76:c1:c4:f9:34:ca:4b:f0:a6:
64:c2:98:f7:34:27:8a:7c:04:d4:a3:02:09:3e:43:c6:88:89:
ed:29:e5:e1:37:b8:ae:6d:1b:6b:c5:4c:71:48:ba:13:b1:6e:
a8:eb:ec:4c:6c:ba:cb:88:22:ca:0d:43:ac:3e:02:26:ce:3e:
de:ff:98:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:28:18 2025 by rpki-client