Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
File: bs1crU0zBsT3LEKvwG5c0fuv46M.mft (raw, json)
Hash identifier: jzCuUVEezWKidO1FSfYECJ00SDXMyz05ysOMd6HHt5o=
Subject key identifier: 61:2E:97:38:AF:86:5F:3D:9B:B2:FD:76:95:50:55:90:75:66:31:86
Authority key identifier: 6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
Certificate issuer: /CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Certificate serial: 01974FD817EF0C86605EFB277DFB719F8018
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
Manifest number: 1584
Signing time: Sun 08 Jun 2025 14:00:51 +0000
Manifest this update: Sun 08 Jun 2025 14:00:51 +0000
Manifest next update: Mon 09 Jun 2025 14:00:51 +0000
Files and hashes: 1: IVWLNAUIsWDuNfRfR17vH-v5XfI.roa (hash: OmbLmtXQG4MyTcSNnTCa+QZsFqNmOgdwU2G3Jors4PA=)
2: bs1crU0zBsT3LEKvwG5c0fuv46M.crl (hash: n3aYXRuViBk5RrUfajAAk/JSKQU/UYw3QOuqnHbtXlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d8:17:ef:0c:86:60:5e:fb:27:7d:fb:71:9f:80:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Validity
Not Before: Jun 8 14:00:51 2025 GMT
Not After : Jun 9 14:00:51 2025 GMT
Subject: CN=612e9738af865f3d9bb2fd769550559075663186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bc:82:c3:01:cf:24:a0:2f:80:40:03:87:78:
b0:25:d8:e9:53:dc:23:92:c9:ef:88:6a:4f:cc:19:
1f:f3:8a:fc:8f:c9:8b:91:89:f2:19:37:ec:c7:c5:
41:c9:a3:90:12:f4:6b:8e:82:21:57:fd:f6:0a:55:
ef:f1:99:d2:fc:2e:c7:a4:1b:86:03:22:da:18:1c:
93:49:8c:7b:b7:90:29:f3:58:0e:a6:cd:c8:cd:7c:
67:56:42:8b:c7:ff:64:71:3c:6c:fa:bb:2f:0a:4d:
dc:7d:90:1b:e3:80:ff:73:20:2e:f3:ba:d7:9e:39:
e5:a4:7f:89:2d:10:d8:10:d7:2b:9b:46:3b:3d:d6:
80:d6:fa:31:c9:b2:7e:97:f7:dc:fb:64:25:a3:fb:
75:2a:05:72:a0:54:26:66:2b:4b:dd:3b:18:80:3b:
27:ac:19:9f:01:b4:4e:76:8a:65:fc:d6:13:53:42:
49:e1:72:76:27:46:0e:dc:27:11:c3:b2:a2:4e:65:
09:68:7b:ca:1d:c9:7c:4b:43:e4:12:54:ce:a2:d2:
3c:be:ae:c7:6f:86:b0:48:7f:89:20:56:98:b9:b4:
d8:e1:c4:ab:59:ad:4e:8a:af:f8:e4:27:fc:7c:07:
96:1a:58:14:0f:99:41:8d:ca:04:db:32:3b:e3:8d:
d6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:2E:97:38:AF:86:5F:3D:9B:B2:FD:76:95:50:55:90:75:66:31:86
X509v3 Authority Key Identifier:
keyid:6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:cf:78:2a:41:33:a0:b3:3f:fb:f3:b8:00:74:81:1b:7c:04:
24:e3:94:26:e5:50:79:f7:32:95:2e:80:24:30:77:bf:ad:53:
9d:74:a8:84:0f:7c:34:45:f8:30:a7:85:53:2b:ff:36:9d:dc:
09:43:10:01:62:41:47:f4:bf:d2:99:89:09:13:46:4c:cc:a9:
eb:8f:07:93:68:ea:e8:3c:67:be:2f:91:c1:85:9e:8a:29:35:
96:fa:3c:a1:0e:5b:33:2c:b4:83:de:7e:21:2a:5d:49:0b:7c:
37:1c:08:e6:1e:ed:94:c4:e3:e9:8c:04:4a:10:9e:cd:6c:fb:
e6:1a:1d:b2:a7:52:a1:bc:55:48:a6:6b:28:1f:02:fd:83:b7:
56:e4:59:f7:f0:b4:33:96:3e:b4:a6:8b:ec:5b:6b:ad:98:fb:
1b:98:5c:b9:92:2b:8a:9d:bf:20:95:a7:65:0c:7e:f6:e6:cf:
b6:8d:50:ec:72:81:fe:91:0a:07:f4:8a:1a:27:7e:15:b5:67:
a7:65:90:5d:8b:6a:7f:f9:e9:23:67:c7:3d:55:c9:7f:3d:0d:
14:e5:d4:93:5b:e6:43:b4:6c:bb:20:c2:ca:f1:55:39:69:58:
f9:59:e4:a7:31:a7:df:6d:14:89:81:61:24:12:93:89:17:d0:
8b:5c:68:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 16:11:20 2025 by rpki-client