Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
File: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft (raw, json)
Hash identifier: 6463t0smEOuNwtD0xXHo5syoe+1L5yZ/fE8ZFjm6Emg=
Subject key identifier: 42:F2:37:AE:F4:3E:4B:67:C2:1B:E7:3F:80:74:CA:07:31:CF:5B:A2
Authority key identifier: A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
Certificate issuer: /CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Certificate serial: 01975121B1A77B5DDF158E2A32FA8A51AD21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
Manifest number: 1284
Signing time: Sun 08 Jun 2025 20:00:51 +0000
Manifest this update: Sun 08 Jun 2025 20:00:51 +0000
Manifest next update: Mon 09 Jun 2025 20:00:51 +0000
Files and hashes: 1: 6nka26L-7vbT-huqQ7zH80Ad2_Q.roa (hash: bi36P0sQvSkI3t0S3Th1jO23VxQKQmTqbcjBaO1g00A=)
2: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl (hash: 13Sg1gg7pLBadzMGuNP7EAfD3KpcoU2zgHo679ThL0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 20:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:21:b1:a7:7b:5d:df:15:8e:2a:32:fa:8a:51:ad:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Validity
Not Before: Jun 8 20:00:51 2025 GMT
Not After : Jun 9 20:00:51 2025 GMT
Subject: CN=42f237aef43e4b67c21be73f8074ca0731cf5ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0d:3c:0c:6d:9e:ba:e4:ef:e6:d7:49:78:16:
c1:84:0f:4b:7d:2f:a9:96:17:23:ab:47:45:9e:48:
b7:0d:44:63:59:6c:5f:cf:a1:5a:1e:5b:7f:58:7e:
84:6d:46:a6:38:4c:ca:0c:de:0a:82:75:4b:24:ab:
67:3d:12:95:62:eb:3f:57:68:e1:09:51:84:71:03:
e5:ae:5d:3b:c1:b4:33:aa:84:05:d9:63:03:2a:19:
84:21:93:b4:8d:0e:83:74:17:92:f6:97:37:87:d4:
74:33:1b:b3:f3:6f:17:d3:fb:8a:40:d9:ac:67:28:
d2:2f:8d:1f:5e:a8:99:5c:83:50:f6:7c:e5:ad:e8:
29:f5:44:14:d3:af:c5:44:6d:18:b3:68:3c:53:73:
ab:f4:de:a0:89:b9:0a:fa:c9:35:84:5e:cf:bd:c4:
21:a6:81:0a:d4:3d:6f:03:f7:ad:e4:b5:ff:ce:62:
d0:31:50:74:5d:da:c0:7b:66:3a:da:71:8a:25:f5:
cd:2d:19:c8:fe:2e:eb:6d:d8:69:80:6b:63:b0:e3:
a0:7f:aa:b2:51:8e:4c:06:9b:58:40:b3:92:19:7c:
58:12:bf:8b:69:63:a4:42:86:5f:4c:3c:15:4c:1b:
5c:3b:ab:a1:ae:a9:80:56:ec:9c:55:1c:97:2d:b9:
a4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F2:37:AE:F4:3E:4B:67:C2:1B:E7:3F:80:74:CA:07:31:CF:5B:A2
X509v3 Authority Key Identifier:
keyid:A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:b3:ed:13:83:9d:4b:fc:c2:c4:13:b1:f0:3f:09:7e:27:7f:
ef:07:5f:87:82:ef:41:4d:6e:6a:25:cd:4f:ea:09:18:a0:e7:
37:f7:85:93:ae:22:f3:32:7a:95:62:08:91:5f:f0:8d:ca:79:
75:d5:3e:36:b4:3e:2b:cf:95:4d:7c:fb:47:dd:5b:39:97:84:
1c:c3:a1:4b:e3:d5:cc:6d:f0:64:49:70:5e:d0:c1:f1:47:39:
38:6c:77:09:ab:ca:ea:40:b5:53:8f:f8:f7:b7:23:83:92:d7:
70:fa:a3:9f:4e:df:39:73:12:39:ea:15:a5:02:14:2f:cf:d6:
bc:6c:e8:fc:d9:e0:ec:48:ad:7d:b2:89:ce:16:a6:a7:a4:a0:
a5:12:9c:a1:d8:af:96:ba:07:df:06:4f:77:ed:c2:98:1b:d8:
ab:51:ce:0b:d3:27:b0:3f:12:17:9c:ce:7a:7f:2d:a6:85:ac:
c7:ff:27:80:6b:0b:6a:e0:a3:a7:ab:0b:c0:3e:25:8b:42:91:
7b:66:94:73:d4:4c:b9:f5:6e:75:f7:53:15:d3:2e:ff:78:ae:
d1:e3:47:13:95:ff:44:83:d8:75:0d:fa:1f:b2:e7:e2:90:f8:
cc:ad:9c:64:af:6d:c4:1a:d1:05:60:a7:e9:8c:39:f9:4a:b9:
40:5d:5a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 04:55:05 2025 by rpki-client