Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
File: d_u84sIID4H1oPmPJ5Ipgm3khQs.mft (raw, json)
Hash identifier: huEd7QmgSH7EmRYX1mrqvit3Nwe6O5KdiFYhj0wXFf8=
Subject key identifier: 14:AF:B9:7D:47:92:3A:CC:62:A6:3A:DF:FC:A8:44:DD:CE:D3:53:4B
Authority key identifier: 77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
Certificate issuer: /CN=77fbbce2c2080f81f5a0f98f279229826de4850b
Certificate serial: 0197B77CB8EC23A7D881E55327DA8C61F016
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
Manifest number: 0CDA
Signing time: Sat 28 Jun 2025 17:01:33 +0000
Manifest this update: Sat 28 Jun 2025 17:01:33 +0000
Manifest next update: Sun 29 Jun 2025 17:01:33 +0000
Files and hashes: 1: AOhn7xhM2kSUfRAFFhvDCxU-O20.roa (hash: 1VAhBGtFhGjWFmWSsORfWNgJJ1LUT2F54ZQ/3ep5zho=)
2: d_u84sIID4H1oPmPJ5Ipgm3khQs.crl (hash: EZjIMwo2t88Z2cFeoykZwDcoCboj9hf/F6VvSiaw0bI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:b8:ec:23:a7:d8:81:e5:53:27:da:8c:61:f0:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77fbbce2c2080f81f5a0f98f279229826de4850b
Validity
Not Before: Jun 28 17:01:33 2025 GMT
Not After : Jun 29 17:01:33 2025 GMT
Subject: CN=14afb97d47923acc62a63adffca844ddced3534b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:07:ac:bb:c4:0a:ab:8b:80:6d:75:5a:87:67:
54:ce:3c:93:f6:66:9f:b8:33:28:43:e3:a6:88:cb:
1b:cf:e6:4b:81:f8:1c:f0:ea:38:73:c9:4b:77:9c:
2c:9a:79:90:65:6b:8e:33:4b:50:27:84:8c:02:31:
03:c1:c6:41:f3:d3:f4:2a:33:ae:f6:2f:72:98:14:
0d:0a:e1:c4:0e:46:91:66:62:ff:7d:13:35:23:51:
8b:ce:57:90:1a:40:e9:8b:d6:01:bb:22:15:78:51:
db:ab:65:a4:b1:7a:9b:d8:81:6d:79:02:18:5f:61:
60:dd:87:9c:10:da:b9:e1:91:41:eb:3c:29:12:ba:
4b:5e:78:0b:4f:7a:20:d3:69:f0:8f:2a:e9:ea:3f:
77:a3:20:86:e8:c5:f2:12:15:87:2c:99:30:03:95:
9a:e9:fb:fb:50:8d:4c:0a:c5:fb:32:ec:8b:3e:c7:
24:37:8b:bc:49:ae:d3:b8:39:db:62:73:98:85:6f:
ad:85:7d:04:32:7c:9a:82:2a:92:49:e6:2d:51:c6:
67:05:fe:e4:b9:94:c8:52:9e:88:36:25:36:ce:e3:
b6:b6:9a:13:a8:8d:03:26:fd:16:dc:9d:b2:7a:6a:
ab:b3:8f:68:3d:75:4a:81:07:06:c9:38:64:ae:a6:
18:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:AF:B9:7D:47:92:3A:CC:62:A6:3A:DF:FC:A8:44:DD:CE:D3:53:4B
X509v3 Authority Key Identifier:
keyid:77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:c0:b1:90:d9:18:99:b1:fc:d1:37:46:88:e4:c9:92:8b:9d:
c0:6e:d8:80:17:e3:98:31:e9:89:6a:d1:b6:35:49:63:22:14:
20:91:9a:44:6f:6d:15:2f:12:af:17:a5:dc:47:9b:58:e7:7f:
61:5d:de:05:c4:99:54:4c:71:3c:d3:f4:e0:50:65:21:b4:bf:
e7:ad:a8:75:e1:0c:a1:0d:0a:cf:2f:46:ad:2e:76:d6:8f:4d:
a2:ee:d4:08:88:11:78:e5:01:99:bd:53:2d:84:1c:78:22:0f:
c3:7a:be:07:f7:ed:28:c2:18:30:2e:e4:8d:29:45:db:64:9e:
db:08:df:37:2d:83:16:fc:88:d4:49:29:4e:27:58:bc:dc:78:
34:05:0c:6f:90:bd:ae:25:bb:fb:83:7d:cc:7c:6d:df:3f:3b:
81:05:dd:36:80:bd:91:2c:35:70:f9:95:e7:17:aa:93:b8:82:
ff:01:88:13:0b:e6:b3:f1:03:05:d2:e0:4f:2f:2c:7d:9d:50:
2c:54:cc:12:6c:50:bf:46:99:67:87:6a:4c:f8:ef:bd:73:7c:
20:41:2f:4a:13:89:d8:af:cf:1c:ed:f6:e8:a3:9d:eb:51:7e:
17:5e:b4:0d:fa:4b:e5:76:45:31:45:59:3b:2f:ce:4d:c7:ea:
a9:51:3f:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:45:23 2025 by rpki-client