Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
File: diY1mUnOzyQYxaLbIayrhd2Rk9g.mft (raw, json)
Hash identifier: LdzC+/rxDuRFDCtXShaXiEtrJJI4kLJBDGu8moatY4M=
Subject key identifier: 32:5E:39:D2:62:40:44:FA:94:84:BD:1A:5E:9E:14:10:1B:87:AF:10
Authority key identifier: 76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
Certificate issuer: /CN=7626359949cecf2418c5a2db21acab85dd9193d8
Certificate serial: 0197493132A75C49B72F786653F1FCEA2906
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 07:00:50 +0000
Manifest this update: Sat 07 Jun 2025 07:00:50 +0000
Manifest next update: Sun 08 Jun 2025 07:00:50 +0000
Files and hashes: 1: 808eb-9aLu41roSMSaHO8r-sCJ0.roa (hash: rCM5eGiyr6wuq7y0i6XZdzgH6YJOrFxOSIfhu9ZqAu0=)
2: diY1mUnOzyQYxaLbIayrhd2Rk9g.crl (hash: GP2s7oO+RvzTgNPDMh9z4UnaeBC+oLXrk+c0Y0J+JFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:32:a7:5c:49:b7:2f:78:66:53:f1:fc:ea:29:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7626359949cecf2418c5a2db21acab85dd9193d8
Validity
Not Before: Jun 7 07:00:50 2025 GMT
Not After : Jun 8 07:00:50 2025 GMT
Subject: CN=325e39d2624044fa9484bd1a5e9e14101b87af10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:81:60:9d:a1:6c:8a:a1:a1:d6:df:04:a5:8b:
2b:e9:ac:c5:af:2c:a0:c6:a0:69:e3:f7:d6:da:45:
d9:17:56:0c:3e:10:04:a2:61:bc:db:49:f4:7c:a1:
53:3c:65:f0:95:1a:f2:93:ca:07:69:b0:17:c4:c1:
46:67:0b:72:2f:e8:e6:7d:34:49:ae:69:18:05:ea:
2b:b9:a2:06:59:e4:99:32:df:7e:36:6f:0b:31:e0:
e1:61:54:15:af:28:83:87:95:ec:5f:73:08:70:09:
5a:91:7f:07:6c:ef:0f:fd:0e:e0:7a:16:6d:74:0a:
6a:a6:87:f6:f8:4e:dd:c7:65:ef:5e:47:b6:9f:93:
7c:27:65:30:b4:71:85:f7:2a:89:bd:0a:94:c3:d9:
cc:f2:19:b8:0b:fa:c5:c5:b6:55:68:d1:7a:f8:72:
38:34:19:61:b8:65:38:0e:1f:0b:c7:c2:9d:3c:31:
d1:1b:64:72:ba:28:6d:9a:66:fa:ed:d4:a3:63:03:
47:7e:f8:46:b2:6f:0a:9b:fb:61:fe:a5:d2:d7:d9:
53:86:07:e2:ce:34:7a:7c:80:a4:15:ca:43:89:dd:
89:b7:69:1c:b0:41:af:dc:6b:bc:21:cd:b0:41:6c:
8b:94:88:60:98:56:52:b6:b4:08:a2:ba:bc:14:78:
93:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:5E:39:D2:62:40:44:FA:94:84:BD:1A:5E:9E:14:10:1B:87:AF:10
X509v3 Authority Key Identifier:
keyid:76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:aa:96:a1:90:df:c2:53:1c:45:61:90:ed:76:23:03:19:18:
2f:7a:ce:6f:6a:c8:bf:d1:a3:88:a6:97:39:36:82:58:79:ff:
3e:70:1b:e5:9e:63:96:dc:e0:00:7f:3c:a9:2d:08:d1:69:58:
b4:27:65:04:ec:f0:72:82:24:3e:03:a8:2c:a1:a9:6f:f4:0e:
64:79:81:3a:99:68:d5:35:6f:f8:83:8b:df:b7:6b:15:06:8b:
c4:a0:e5:0b:6a:ec:34:4a:73:77:29:90:55:9a:a8:5a:90:46:
7a:71:d0:d8:7a:ce:02:15:1c:c5:9a:71:ea:5c:80:0c:c1:fd:
ee:47:7e:43:cb:49:07:eb:d1:6e:5c:ef:f8:a8:e6:fc:64:d5:
6b:c0:95:67:b0:9a:93:d8:6f:c7:e2:17:ea:03:de:44:8c:cd:
27:ae:5d:17:9c:39:0d:b3:47:91:77:f7:c7:e8:24:3c:f7:b7:
1a:5f:11:4e:78:85:06:e3:02:79:18:17:9b:1c:77:95:08:b2:
03:d6:87:47:3f:50:94:43:cb:24:c3:a0:97:ff:1a:7c:3c:c7:
97:05:60:1d:8d:ea:f9:27:38:23:86:ce:47:90:55:c7:5b:b4:
e8:22:c6:58:6a:81:e5:b8:39:0a:59:ac:1d:68:04:6e:6e:72:
20:ed:54:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:42:44 2025 by rpki-client