Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
File: SU14c0FlEKL7I0bvNCKAFVUicTs.mft (raw, json)
Hash identifier: Q3s2wefgm7j0Jx5FqEJV6Qicjc35IiZuy6H6rH8+gm8=
Subject key identifier: 3F:8E:82:CC:21:7E:65:6B:CB:31:2B:BE:66:9B:1C:45:8A:99:B7:63
Authority key identifier: 49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
Certificate issuer: /CN=494d7873416510a2fb2346ef342280155522713b
Certificate serial: 019749314F7202FBBFD0CD94D7B830A3659E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
Manifest number: 128D
Signing time: Sat 07 Jun 2025 07:00:57 +0000
Manifest this update: Sat 07 Jun 2025 07:00:57 +0000
Manifest next update: Sun 08 Jun 2025 07:00:57 +0000
Files and hashes: 1: B8HrelUy9bYGyo-udBZpXQ76dPg.roa (hash: 1JcwupsyhEziaGEtjnyo+5LdSyy6jIrto6vLWzkI9l8=)
2: SU14c0FlEKL7I0bvNCKAFVUicTs.crl (hash: B8lwcwh6PMdLQML5TicsaxC7XHwstsfE9/d1nLkvr8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:4f:72:02:fb:bf:d0:cd:94:d7:b8:30:a3:65:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=494d7873416510a2fb2346ef342280155522713b
Validity
Not Before: Jun 7 07:00:57 2025 GMT
Not After : Jun 8 07:00:57 2025 GMT
Subject: CN=3f8e82cc217e656bcb312bbe669b1c458a99b763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d1:47:57:6f:03:d2:05:e6:b5:6a:a0:5b:b7:
d6:ce:1d:cc:36:2e:80:b3:39:9e:e2:4a:dd:59:c5:
f8:e8:17:21:74:65:3e:88:e4:54:97:b1:29:db:7d:
0c:62:c6:a3:fc:73:c8:8e:53:f6:fd:b2:a1:1b:af:
9e:10:22:8b:d3:b5:d5:4a:1f:51:c8:9a:b2:1f:87:
94:9b:6d:e5:89:86:eb:4f:fe:a1:3e:f1:55:83:79:
db:a4:b5:21:b2:78:31:32:14:61:a8:03:9c:0a:3d:
a1:bd:36:c2:98:76:0c:33:08:8b:d5:d4:85:13:dd:
2a:77:00:89:04:bc:bd:5d:b4:c9:f3:ee:d1:67:9b:
e6:b1:aa:36:22:9b:67:fd:ee:04:4b:d7:fc:c9:a1:
e3:58:25:cc:de:c6:74:6c:39:e5:61:55:72:5d:20:
83:af:6d:07:b6:09:05:38:39:49:c7:06:e9:ff:6a:
a2:2f:e1:b2:25:f6:80:89:0d:a9:72:f6:63:ce:31:
81:df:b7:03:32:61:b5:8f:02:e5:07:89:7c:ae:64:
70:0b:f5:f1:65:ce:e3:f0:07:38:93:15:b1:17:f0:
8a:be:b3:0c:87:3e:ad:22:2c:e8:64:fa:38:16:b1:
2b:81:3f:66:de:cb:fc:31:40:62:03:9f:85:6b:83:
d8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:8E:82:CC:21:7E:65:6B:CB:31:2B:BE:66:9B:1C:45:8A:99:B7:63
X509v3 Authority Key Identifier:
keyid:49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:57:2a:85:58:2d:6e:6d:f2:48:85:e3:e8:82:6a:44:84:40:
a1:b0:01:1c:ec:01:83:7b:6f:2d:70:99:b0:58:7f:44:91:1a:
00:45:06:45:33:20:6e:3a:5b:c4:38:e0:08:84:37:16:7f:a2:
ad:17:4b:00:24:27:48:55:7a:31:24:0c:ef:d2:6c:3f:d8:e8:
5d:78:fe:93:57:02:50:e0:90:d3:e9:9f:d0:44:fb:3c:e7:db:
3c:7c:a1:ab:49:de:b8:ca:3b:00:1c:e7:5c:d0:66:d2:5a:77:
8a:c4:dd:33:e7:3f:d8:1a:06:e2:67:fc:05:8a:bf:e1:3a:ec:
f2:c6:8a:02:fd:9b:13:85:50:e5:6f:2d:df:a4:c5:66:34:3d:
f4:fd:84:4b:ce:63:3f:81:89:1a:c6:52:ac:89:ac:14:41:fb:
db:50:17:3f:0f:b9:2e:dd:06:e7:69:28:d1:19:62:fd:38:37:
d1:d2:c3:03:22:32:aa:a8:d1:71:e3:91:a6:e6:2c:6d:cb:0c:
fa:ed:f8:f6:42:d3:7b:3d:db:18:89:87:8e:ba:4c:f1:64:19:
c1:34:fb:4e:5e:a9:58:2b:96:f5:0e:4c:b8:64:87:57:1f:b1:
20:d8:3e:dc:d0:6a:56:7d:8e:9d:3a:e5:9f:50:15:a6:ed:94:
93:6c:bb:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:24:29 2025 by rpki-client