Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
File: mq5G4hNZMNomjAZNzlrbtjoM7DY.mft (raw, json)
Hash identifier: 1DsKRNHbgLzpxUN4GaLGliHOhmr+Ubur8ZuASalcEvg=
Subject key identifier: 8D:B4:80:A9:2D:8F:A2:F1:CE:50:27:E9:5F:4B:98:2D:4A:DB:E9:D7
Authority key identifier: 9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
Certificate issuer: /CN=9aae46e2135930da268c064dce5adbb63a0cec36
Certificate serial: 0197469DC759F050E697351E0C45D3DC746E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
Manifest number: 0F46
Signing time: Fri 06 Jun 2025 19:00:34 +0000
Manifest this update: Fri 06 Jun 2025 19:00:34 +0000
Manifest next update: Sat 07 Jun 2025 19:00:34 +0000
Files and hashes: 1: STbkSsaZ4h0iV7Ywpice3xeLm7Q.roa (hash: OYYfvGM7goZ9gxelNf2ly9w5B8haX1abcCwOvQfYiPk=)
2: mq5G4hNZMNomjAZNzlrbtjoM7DY.crl (hash: aTARL9Y7hStWWSjme0wgmlRSYoMbTjGmDltNEIU7x/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 19:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9d:c7:59:f0:50:e6:97:35:1e:0c:45:d3:dc:74:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aae46e2135930da268c064dce5adbb63a0cec36
Validity
Not Before: Jun 6 19:00:34 2025 GMT
Not After : Jun 7 19:00:34 2025 GMT
Subject: CN=8db480a92d8fa2f1ce5027e95f4b982d4adbe9d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:12:ce:ce:b4:51:ca:28:71:3b:44:be:94:93:
9c:c2:73:47:f2:47:cd:4a:85:f2:4a:46:c4:6c:1f:
39:6f:e2:30:f1:34:99:25:f0:54:97:3d:92:7a:84:
c8:ca:33:0a:a9:6f:14:ec:aa:db:ad:55:4b:6b:68:
eb:68:7e:da:b0:5e:53:d4:fb:ad:9e:48:e4:a8:e2:
4e:7d:eb:ef:b5:aa:1e:01:fb:8a:4c:da:32:01:1f:
d4:24:e4:cc:67:e2:43:f2:44:5c:c6:b9:e1:2a:78:
ca:c3:51:6e:8a:e3:c1:be:2a:b2:77:c0:4c:24:b5:
9d:c4:d9:72:e1:48:b3:e5:ed:00:d8:0b:74:f9:28:
00:8e:2b:aa:98:ca:1c:a7:27:f9:aa:eb:7a:f6:b9:
81:6b:32:a0:3a:33:81:ea:7a:4d:d7:63:d0:90:1f:
3f:10:47:fe:b2:d1:1a:37:02:fe:e1:e5:65:14:81:
29:8e:b1:3b:e0:a9:b3:45:76:ba:ec:40:55:6c:b8:
9b:10:18:4a:a4:b8:a1:9d:80:14:97:48:20:9e:12:
13:03:41:c6:bb:e4:a0:4b:9e:da:89:b1:91:09:20:
b8:b5:47:77:61:68:e1:d7:db:60:a9:84:b1:23:d3:
1c:34:f6:9e:0e:82:1f:38:54:26:07:09:52:47:6d:
0c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:B4:80:A9:2D:8F:A2:F1:CE:50:27:E9:5F:4B:98:2D:4A:DB:E9:D7
X509v3 Authority Key Identifier:
keyid:9A:AE:46:E2:13:59:30:DA:26:8C:06:4D:CE:5A:DB:B6:3A:0C:EC:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mq5G4hNZMNomjAZNzlrbtjoM7DY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/d8fc78-a51b-43dc-b50a-8ae43081aa36/1/mq5G4hNZMNomjAZNzlrbtjoM7DY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:9b:59:4a:03:c0:f2:ab:04:83:17:25:d2:64:7c:e6:6d:81:
49:6f:8a:ed:a5:04:f0:17:50:29:19:af:b8:49:63:c8:c6:b8:
37:46:1d:9d:c9:4b:56:5d:96:ef:c2:26:55:7d:5d:79:c4:c8:
8c:05:dc:6c:3b:69:93:cc:95:36:ed:a2:86:53:24:0a:e0:aa:
ee:a9:e1:0f:22:55:0b:7c:1d:52:bf:35:28:31:b7:cb:22:49:
3a:40:e9:30:7b:fb:17:86:70:78:f3:de:4e:65:55:fc:ba:74:
5d:c0:3c:72:07:18:14:3c:cf:26:88:6d:76:ad:87:12:2e:e7:
5c:ad:21:7c:b6:dc:d8:33:f8:32:46:16:28:52:61:ef:8f:43:
ae:6e:52:1e:bb:89:6f:b6:3c:a6:f5:28:fc:2d:fe:dd:84:12:
2d:97:a7:84:29:4e:4c:d3:8c:8d:2a:2f:73:ce:f3:ce:b5:68:
2c:45:7d:81:54:ec:55:1d:a4:5c:72:fa:fc:62:85:9f:44:78:
d5:96:74:f7:43:63:53:7c:c7:b9:3b:e3:a8:5b:45:e8:79:92:
bc:a1:9d:aa:7c:cc:4e:58:4d:81:74:cb:5d:2e:70:1e:57:23:
5e:81:22:96:2b:e2:17:43:f1:1f:cf:e4:74:a6:f4:10:6e:3e:
ce:07:14:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:23:46 2025 by rpki-client