Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
File: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft (raw, json)
Hash identifier: un/HBFx9zfhxb9seMdgQrp9JN0GqfcwnPVg6g/xzilk=
Subject key identifier: D9:C5:CC:D2:D9:E7:A8:D0:26:4A:2F:14:FB:26:17:34:F7:90:F2:97
Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Certificate serial: 0197499F287D2E1CEAB010F6CA96C8E7E875
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
Manifest number: 050D
Signing time: Sat 07 Jun 2025 09:00:56 +0000
Manifest this update: Sat 07 Jun 2025 09:00:56 +0000
Manifest next update: Sun 08 Jun 2025 09:00:56 +0000
Files and hashes: 1: 1ofY17NAwbyhAHFj_yBzaevRgc4.roa (hash: FPWNmGXZmy3JcSLxjIHQ6BJRP2baM9xmkXSCswGMYik=)
2: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl (hash: vYdXsJyNy1O4W23GAk0LfrlQjhjwdslZHDltVyb/Dec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:28:7d:2e:1c:ea:b0:10:f6:ca:96:c8:e7:e8:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Validity
Not Before: Jun 7 09:00:56 2025 GMT
Not After : Jun 8 09:00:56 2025 GMT
Subject: CN=d9c5ccd2d9e7a8d0264a2f14fb261734f790f297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6e:e6:1a:97:19:f0:c7:c5:c1:cb:d7:e1:f7:
81:67:0f:34:02:cb:3d:1a:a6:3e:47:35:4a:42:e7:
22:b4:6a:e6:98:3e:01:e2:1d:18:25:55:e9:a5:ac:
9c:81:6b:b4:c2:26:90:77:34:f4:d1:96:20:9a:64:
26:4d:8f:a9:2f:b8:f4:90:d6:6e:8b:b9:28:10:ba:
58:0b:cd:81:4d:20:ab:70:18:93:f3:de:2c:61:3e:
dc:a5:24:b0:6b:cd:fb:98:4b:fc:5e:77:7a:80:72:
5c:fb:e4:00:31:3d:73:ec:77:6b:54:7f:d3:e8:36:
a6:65:b3:b4:ad:0d:df:49:12:ad:d1:36:46:2a:24:
21:4e:10:8a:b6:4c:8f:20:94:02:8c:ed:89:de:8d:
68:bb:a0:aa:f3:71:ef:2b:73:0b:7c:17:22:91:5d:
28:a3:53:ce:fe:7d:1f:8c:39:03:b4:91:07:01:0e:
46:b6:1a:4d:24:7a:28:26:1f:f8:37:f4:68:e1:de:
d2:8d:43:af:92:0b:ab:91:52:e8:65:ac:6c:bb:9c:
37:d8:9a:d7:eb:62:6f:81:39:91:4f:38:fe:f0:f9:
d8:6d:dd:dd:83:c2:46:6b:dc:69:5c:ac:07:e1:20:
af:60:bb:29:20:6f:cb:4c:2b:56:9e:24:34:32:a3:
2c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:C5:CC:D2:D9:E7:A8:D0:26:4A:2F:14:FB:26:17:34:F7:90:F2:97
X509v3 Authority Key Identifier:
keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:6e:83:18:a6:d7:36:8c:d0:e3:fd:03:c8:67:f9:e3:14:70:
dd:b5:65:5c:58:41:c8:e0:bd:b5:d8:0c:71:f8:84:99:99:65:
63:90:8e:dd:89:7c:36:f1:07:9e:2c:64:a8:73:64:b8:54:86:
38:cc:7e:2c:c1:41:26:98:8d:c5:0b:0c:42:39:92:a4:99:2b:
71:80:55:bc:e2:5f:71:7e:3a:2f:41:4b:3f:3a:3a:b4:e4:e5:
8f:8e:ad:43:ea:fe:31:9d:38:9f:05:0e:ff:41:66:8e:c6:65:
10:c0:e1:7d:08:80:c3:85:3c:ad:a2:f9:49:29:ef:fb:5f:0a:
c3:86:b0:26:2b:12:2d:63:22:58:44:7c:a2:29:7c:6c:a2:19:
02:c6:d0:b2:76:1a:65:12:58:34:b7:aa:4b:50:09:2d:03:11:
db:3a:89:83:35:28:17:02:6f:0c:81:a2:04:ce:05:e2:ec:3d:
d2:91:2f:d8:6b:11:47:e8:4d:2f:c3:74:64:b0:6f:a6:2e:2a:
8c:af:c5:45:66:1b:8f:1f:81:51:47:a5:80:f2:35:71:be:46:
4b:a5:55:fe:f5:e0:0a:fd:5e:85:d5:13:a7:92:c4:e3:96:fa:
d1:bd:a5:b8:3b:38:0d:75:4d:10:37:0a:96:22:bf:43:29:38:
f2:0b:ce:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:38:30 2025 by rpki-client