Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
File: mRyTTgj1egPvTro2taTaeYolIgc.mft (raw, json)
Hash identifier: fIxKznzUvdjCcZx9y/sohjpcNeatNwlcx2u1tkQg9lY=
Subject key identifier: FB:A1:FB:66:E3:5F:CE:34:D2:D4:41:B6:06:09:DA:43:6B:6E:28:5B
Authority key identifier: 99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
Certificate issuer: /CN=991c934e08f57a03ef4eba36b5a4da798a252207
Certificate serial: 01974EC55C8DFFA67FBB61C43EF72E81869F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
Manifest number: 157C
Signing time: Sun 08 Jun 2025 09:00:46 +0000
Manifest this update: Sun 08 Jun 2025 09:00:46 +0000
Manifest next update: Mon 09 Jun 2025 09:00:46 +0000
Files and hashes: 1: db9OeH46tzqgA4Lx9Y7WIwYTuDM.roa (hash: FuLyiACFaT6BITOZPeoXwp9XiYIYBsR3kP7HfHr2tYI=)
2: mRyTTgj1egPvTro2taTaeYolIgc.crl (hash: KTa+7h3i3DqMFRAPAivASTt0u4py7PwrTv04BS7pU8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 09:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:5c:8d:ff:a6:7f:bb:61:c4:3e:f7:2e:81:86:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991c934e08f57a03ef4eba36b5a4da798a252207
Validity
Not Before: Jun 8 09:00:46 2025 GMT
Not After : Jun 9 09:00:46 2025 GMT
Subject: CN=fba1fb66e35fce34d2d441b60609da436b6e285b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:68:54:ed:41:99:16:0b:a2:7a:09:93:60:90:
31:f1:46:34:32:e1:8e:fb:48:08:eb:b8:c9:44:6b:
d8:7b:4d:0d:d9:13:f5:61:76:8d:ba:7f:8a:06:65:
a4:ea:27:a7:eb:f4:38:3a:32:92:37:19:27:e7:35:
73:dd:3e:af:f0:37:1e:6a:b8:48:e6:6f:54:9b:a6:
c6:2b:2b:b5:ab:0f:a9:79:3b:67:f4:67:e1:11:81:
20:d2:93:2e:ea:c4:92:9d:09:b5:b8:9c:16:1f:fc:
2b:95:4f:d3:94:c2:23:ab:c0:ff:66:10:36:01:96:
ed:5b:c5:91:ea:fc:d9:75:0c:53:d5:43:6c:0f:be:
cc:5d:a9:e9:0f:ff:48:58:3b:df:49:2d:1b:62:90:
9f:71:d1:42:9f:0f:af:22:5f:4e:18:8c:81:1d:e0:
b3:40:86:cd:f4:8d:3a:b0:df:eb:ff:e8:87:08:dc:
c4:3c:91:c5:e3:85:e6:e3:54:bf:3b:af:cf:03:5f:
5a:86:49:f5:1c:ad:bc:b1:4d:13:67:94:81:55:e3:
00:c1:16:03:e0:52:02:4e:d3:db:26:ff:11:02:90:
b4:85:56:45:da:71:fb:f6:93:4e:b5:14:2b:a2:9e:
b0:28:b1:54:c8:c3:0d:bb:9a:2a:d7:2f:1d:5e:8d:
8a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A1:FB:66:E3:5F:CE:34:D2:D4:41:B6:06:09:DA:43:6B:6E:28:5B
X509v3 Authority Key Identifier:
keyid:99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:0b:6e:ef:6a:59:53:d0:39:bf:15:5b:37:6b:99:17:0f:c9:
76:5e:ac:ea:35:79:b8:44:ab:c8:45:a7:2a:20:b9:fe:39:94:
fa:63:91:f2:10:fd:cf:8f:f4:bf:cf:14:42:dc:75:16:2d:11:
de:47:fc:8e:ac:50:9b:79:a0:a8:d1:1b:27:2e:7d:b4:93:8c:
68:a8:75:f3:ef:77:29:29:6b:53:c2:8b:2f:0a:32:6c:97:34:
cc:6c:fb:4f:f1:83:53:c4:ec:c3:ae:5e:3f:90:7d:c2:98:ae:
97:e2:ef:51:b9:22:0e:eb:14:25:29:39:18:14:cf:ff:11:f8:
02:71:4f:53:38:6f:c1:67:7a:44:06:67:5e:4e:7e:bc:b8:bc:
a3:1b:b9:0b:89:95:d1:de:57:2c:d6:b8:c0:8f:dd:a9:8d:75:
c2:3e:3a:3a:f4:a0:bf:9d:d5:a4:1c:cd:e7:33:19:00:17:40:
7b:f0:61:8e:0e:08:a7:78:77:31:3c:61:9f:36:71:19:b2:22:
ff:d7:2a:dd:ac:f2:61:f1:1f:01:5b:16:69:ff:fb:c6:d0:84:
7e:8c:24:5e:e2:2c:1f:4c:46:95:ff:26:e4:94:e9:03:6f:d8:
8d:ae:80:7a:05:16:bf:86:78:e6:4a:9e:76:82:df:47:47:e6:
fa:8a:f9:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:15:53 2025 by rpki-client