Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: vN6xmMfTcwJIKzX4yCAfy9VUkm7AfzekdQBILhtNdwI=
Subject key identifier: 16:0C:4F:4F:15:F5:01:38:D4:BA:B0:A7:45:35:A6:22:F1:9B:5C:58
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 019747795D43C20B42294EB3C8D69BFA22AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 0224
Signing time: Fri 06 Jun 2025 23:00:25 +0000
Manifest this update: Fri 06 Jun 2025 23:00:25 +0000
Manifest next update: Sat 07 Jun 2025 23:00:25 +0000
Files and hashes: 1: ZWC54UPrMHyZ6gth2IDDnRYsMDY.roa (hash: 4Yk1QA2QugshfW9geeysUTQ4Sub4Aja/bv1m3JJnrLU=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: rcWnlV+RhfX8oj6nVYjhSzglcBH+FGQapV7prLO9fKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:5d:43:c2:0b:42:29:4e:b3:c8:d6:9b:fa:22:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Jun 6 23:00:25 2025 GMT
Not After : Jun 7 23:00:25 2025 GMT
Subject: CN=160c4f4f15f50138d4bab0a74535a622f19b5c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:cd:13:38:18:1c:47:ac:e4:dd:5b:57:f4:f3:
8d:aa:bf:fe:cb:bb:dc:0f:59:06:62:9c:69:30:ce:
24:bd:12:01:ce:40:3e:c8:cc:b7:6b:f7:d5:b1:fc:
7a:06:a7:a6:09:3c:5a:6e:3c:74:6c:3c:b6:ba:ee:
13:30:b8:b1:f9:f7:03:d3:59:63:6b:bd:c9:38:12:
a8:0b:d2:00:c4:ac:0d:8d:74:d3:4e:d6:23:ad:da:
51:b5:94:d6:f3:7d:6e:b3:34:78:bc:a2:87:a4:2e:
31:ee:a0:96:9a:17:1b:1f:fe:23:28:f0:b8:d9:24:
f4:70:38:db:2b:19:b2:89:66:ff:62:ee:6f:d4:9e:
11:b1:1c:9f:65:56:a4:a2:38:ba:4b:a4:aa:9b:3b:
26:8e:d6:44:01:26:3e:11:68:09:39:c9:ca:9e:db:
e3:2c:9b:b0:33:b2:d0:5e:be:9b:67:44:d8:f4:2a:
ad:85:7c:eb:0b:a5:9c:13:bc:24:8c:16:9f:db:49:
80:94:c3:a1:f0:f9:69:99:c9:53:8f:a3:4b:79:7d:
b0:75:3b:8d:f2:8d:84:5f:6b:bb:ce:05:5f:52:8c:
5a:6e:f3:0d:70:b3:ec:3b:27:94:43:ef:cc:05:69:
72:c3:04:da:d6:ab:53:e7:3e:16:21:82:ee:9e:21:
eb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0C:4F:4F:15:F5:01:38:D4:BA:B0:A7:45:35:A6:22:F1:9B:5C:58
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:7f:2c:c1:06:58:86:23:07:15:ec:1f:5d:b9:dd:a2:e2:a1:
ef:56:f9:e2:a2:c7:f5:99:0a:07:6d:c8:48:fc:0a:62:1e:b4:
09:e3:a7:da:80:de:62:5e:43:ec:42:6d:9e:d4:74:f0:73:70:
f6:03:51:a0:5d:93:18:76:21:14:3d:fa:4d:fa:06:a7:1d:a1:
a4:b9:dc:d2:24:09:2a:04:3b:00:4e:87:a4:31:6e:99:98:55:
a4:9a:e3:fa:cb:ce:38:c8:2a:a9:1f:52:a2:cb:be:4a:56:31:
ac:31:b3:17:1b:28:4e:26:a1:e4:d4:28:e7:ca:14:8f:c6:cb:
c8:88:7c:b8:f4:7d:18:04:2f:d3:fb:bc:30:4f:b2:aa:65:ee:
d3:96:0d:59:a8:9a:7f:31:2f:30:a1:72:d2:c2:2b:79:31:38:
c3:5d:8a:33:f1:1b:44:81:b3:3a:3b:63:90:e1:c8:63:e1:52:
66:1c:37:1c:d7:26:53:09:27:ee:c6:14:a1:3d:f3:d5:0c:cc:
bc:2c:7a:ac:15:db:a2:b3:a9:5d:f6:bc:09:6b:e3:ea:64:92:
9a:f6:ff:0f:1e:62:c4:22:75:c6:53:5f:0f:f5:58:c8:71:8e:
e7:30:e8:f6:b0:22:3c:fd:22:e4:72:e4:09:3a:51:f2:ea:3c:
82:a8:80:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:55:41 2025 by rpki-client