Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
File: d8Bx2YnlMJrDyzwLCNOsslIRErY.mft (raw, json)
Hash identifier: MoTbDosRVdZgoAfS2TdoqCKYvKknGYzcYl8tX1UWFB0=
Subject key identifier: 0E:B2:33:F7:CC:D0:F6:DB:55:F7:59:A3:9F:6A:17:48:8E:E3:09:A7
Authority key identifier: 77:C0:71:D9:89:E5:30:9A:C3:CB:3C:0B:08:D3:AC:B2:52:11:12:B6
Certificate issuer: /CN=77c071d989e5309ac3cb3c0b08d3acb2521112b6
Certificate serial: 0197CACBE7A6650704C0347E30C31464722C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8Bx2YnlMJrDyzwLCNOsslIRErY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
Manifest number: 11E6
Signing time: Wed 02 Jul 2025 11:00:49 +0000
Manifest this update: Wed 02 Jul 2025 11:00:49 +0000
Manifest next update: Thu 03 Jul 2025 11:00:49 +0000
Files and hashes: 1: Le5vpyY48HdbIpkDIdpXFhjYz0Q.roa (hash: Myyoy3T8AQaNeHj3CEH6lMEU7kAImPu/7Rglv2KrnL4=)
2: d8Bx2YnlMJrDyzwLCNOsslIRErY.crl (hash: Vaok1dJi1IzytJtbkoIxAYhGkn3nOZtidjCOAWyhY+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d8Bx2YnlMJrDyzwLCNOsslIRErY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:cb:e7:a6:65:07:04:c0:34:7e:30:c3:14:64:72:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c071d989e5309ac3cb3c0b08d3acb2521112b6
Validity
Not Before: Jul 2 11:00:49 2025 GMT
Not After : Jul 3 11:00:49 2025 GMT
Subject: CN=0eb233f7ccd0f6db55f759a39f6a17488ee309a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:68:20:de:5b:78:b4:ca:48:1c:f7:29:76:90:
80:b0:d3:00:e2:68:7d:c6:5e:23:ab:f0:c7:65:a8:
ee:56:29:4a:d9:4e:9d:a5:2d:eb:24:7b:d5:6c:52:
be:57:0f:e8:a6:a9:9a:79:46:ed:b4:59:d2:83:e6:
3a:3b:ad:1e:7f:b4:ff:aa:09:74:5c:dc:7d:6b:eb:
18:7d:22:47:4e:e6:40:ce:ba:cd:9d:a6:6b:fd:f8:
2e:17:c9:f4:af:61:09:9e:1b:3f:b5:dc:43:08:85:
e8:5f:e3:eb:07:78:d0:df:36:b3:39:ee:dc:7c:23:
bb:da:a7:66:5e:fa:01:fe:ce:ef:f2:79:70:61:81:
48:9b:e5:a7:99:29:26:dd:55:ef:f2:e0:76:2f:69:
43:87:6e:be:c5:b4:35:fd:78:39:65:1e:f1:82:e5:
92:2b:a7:96:6d:24:7c:c4:e6:5e:0c:ba:4e:1c:21:
49:5b:6f:b1:f9:eb:f1:62:5b:52:58:59:02:09:62:
55:0f:f7:fb:14:d4:c9:a1:ba:d3:e6:59:92:da:56:
cb:81:a0:17:15:96:91:f4:83:22:3e:12:b3:98:85:
05:07:bc:54:d9:e8:01:c0:72:ba:3d:90:28:d6:c9:
bd:0f:6f:a0:f8:5a:a7:e4:32:98:d1:59:c5:e9:bc:
d0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B2:33:F7:CC:D0:F6:DB:55:F7:59:A3:9F:6A:17:48:8E:E3:09:A7
X509v3 Authority Key Identifier:
keyid:77:C0:71:D9:89:E5:30:9A:C3:CB:3C:0B:08:D3:AC:B2:52:11:12:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8Bx2YnlMJrDyzwLCNOsslIRErY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:fb:d7:44:d8:c8:47:85:41:7b:c2:d0:97:58:09:94:06:0e:
85:1a:f6:c5:f2:b9:e7:34:93:1a:48:ee:19:3c:3b:9d:7c:6a:
f2:e6:96:85:a8:a4:d8:fc:8e:92:98:87:b3:9e:a4:c2:65:19:
9a:8b:74:74:94:90:25:7b:4e:69:0c:53:2a:24:e6:2c:72:1f:
8f:fe:5b:b0:1e:7c:38:2b:8e:47:38:cb:45:ba:85:d3:22:41:
28:df:23:16:40:f6:f6:d7:df:4a:75:14:a0:a6:b4:fd:0e:cb:
f0:cb:97:6e:35:d8:41:de:50:5f:36:06:3d:a6:16:2f:09:78:
ef:21:fe:70:3c:8e:6d:43:66:c8:3d:91:40:35:5b:79:60:1e:
9e:41:fc:4d:f1:cd:8a:52:f0:16:2b:be:b7:42:10:65:3e:aa:
02:a0:60:db:44:88:7f:da:b7:95:d8:88:01:7b:8c:2d:4c:f0:
d8:b0:77:a4:81:fc:01:15:df:5c:bc:b9:70:4d:fd:30:f2:ae:
61:2b:9d:ba:82:48:f7:dc:34:e0:de:2a:fc:98:7f:84:70:e8:
bd:39:1d:69:d6:23:5d:a5:80:9d:9b:86:1c:97:19:0e:48:8b:
fd:23:6c:d5:61:65:4d:f5:d3:08:f3:89:dc:4c:38:d8:23:60:
54:e1:7f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 16:04:49 2025 by rpki-client