Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: UrcVAmGDrwyfvAXFKv4gaXo1vfaxHlDWNqx7/wepoY0=
Subject key identifier: BE:84:70:DD:4E:02:2D:5C:83:25:83:D8:ED:B0:7F:95:EB:32:C9:83
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 0197469DAF20999D7F576625D6A0C04B03D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 1039
Signing time: Fri 06 Jun 2025 19:00:28 +0000
Manifest this update: Fri 06 Jun 2025 19:00:28 +0000
Manifest next update: Sat 07 Jun 2025 19:00:28 +0000
Files and hashes: 1: 0CceuujOUN7fI6SJWiU4I3JvZeo.roa (hash: ReNIag9nA9bjr82rfcj5JjzPGdjpj3RK7GRwiAamY6Q=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: 44nVfIXOq5WLk3faMvyeHH4iIR1VCsWICi0UOdOU2pI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9d:af:20:99:9d:7f:57:66:25:d6:a0:c0:4b:03:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Jun 6 19:00:28 2025 GMT
Not After : Jun 7 19:00:28 2025 GMT
Subject: CN=be8470dd4e022d5c832583d8edb07f95eb32c983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1b:75:2a:66:09:da:85:db:cd:ef:a9:d7:0f:
4b:82:2d:25:2e:cd:88:78:e9:99:34:26:12:56:88:
f5:eb:97:1d:1c:b1:d9:22:b0:77:c1:b8:85:ca:89:
34:66:0a:68:86:06:90:b0:50:59:27:97:98:23:2b:
39:8c:22:4d:2b:1f:42:bd:a2:2b:3f:7c:9d:54:e0:
fb:e7:37:ce:ee:1a:34:f7:19:2d:34:bc:8d:ad:0f:
f9:d2:82:da:7d:94:41:ab:af:4e:ef:df:4f:1d:fd:
34:39:16:94:5b:58:00:60:ca:71:ff:cc:36:d1:ca:
d6:32:7a:c7:a8:6c:d2:e1:a1:6a:13:fb:8f:d7:76:
06:26:2f:cc:75:7d:e9:83:93:0d:2a:09:d7:f1:b0:
d7:1b:48:2d:6c:fb:a7:89:06:c4:25:32:9c:ef:46:
f9:cb:70:b5:d0:64:2c:08:e8:a1:88:83:35:86:3e:
95:29:fd:4c:90:0e:07:2d:bd:02:e7:09:a3:49:d9:
de:2a:d7:3b:f4:d7:1b:4e:bd:a6:91:ec:e9:60:df:
4c:df:a5:5f:7c:e8:6a:24:f6:81:0d:59:b5:8f:8f:
21:c9:86:14:88:cb:88:1a:6e:ea:0c:65:34:94:8e:
04:03:ae:25:0a:a0:33:52:ce:0d:8c:51:5e:87:dd:
21:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:84:70:DD:4E:02:2D:5C:83:25:83:D8:ED:B0:7F:95:EB:32:C9:83
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:dc:63:be:d4:7a:ad:49:0f:fc:78:35:92:af:aa:07:30:52:
44:8e:e3:13:c6:da:cf:3f:b0:00:bc:6c:86:36:e5:6c:1a:1b:
d5:b6:90:45:ae:e4:12:56:ca:d3:bc:52:93:09:f0:76:e9:1e:
cc:f6:62:b9:55:82:a3:a5:eb:5a:6a:d3:f5:86:ee:7f:8d:9f:
46:d0:8e:73:f2:a3:93:bf:bb:81:16:6f:88:2a:e6:83:67:c0:
8d:52:23:96:c1:21:25:a9:15:d3:ce:5f:9b:d8:af:2c:2b:58:
62:bd:10:14:0b:58:cc:56:84:db:ac:a5:40:f1:a2:11:5c:5b:
06:ac:2e:87:23:ff:2b:85:0f:69:6f:2c:63:d4:b2:4a:29:3f:
d3:dc:74:88:47:79:6a:47:73:00:86:6c:af:ca:f7:41:67:47:
a5:27:5c:25:59:91:d6:df:b7:69:06:03:22:5b:6b:36:38:35:
ba:f3:e6:3d:59:52:19:95:7c:c8:78:00:39:d8:75:b3:02:81:
c5:98:c3:d1:9f:1d:ac:5e:af:d6:8d:83:36:3e:d1:eb:53:d8:
7b:f9:e3:6e:74:72:17:b9:21:54:26:85:7b:10:04:03:68:27:
7b:85:4a:0e:53:ef:3a:8c:6f:16:25:d9:83:1c:19:75:de:fb:
c1:73:4c:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:17:55 2025 by rpki-client