Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
File: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft (raw, json)
Hash identifier: 6wmMguvuY/V3IB8ZFKG4UMFZHkju/LbJYYZaZH8fySY=
Subject key identifier: C3:34:0F:D3:7B:F4:67:EF:F8:2C:2D:04:EA:90:C4:AE:51:65:0A:3F
Authority key identifier: 77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
Certificate issuer: /CN=779fbaaac6541ab318529eb025613c6520e47646
Certificate serial: 01974E583CE44A500AC009BC60DEED29BCA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
Manifest number: 0431
Signing time: Sun 08 Jun 2025 07:01:34 +0000
Manifest this update: Sun 08 Jun 2025 07:01:34 +0000
Manifest next update: Mon 09 Jun 2025 07:01:34 +0000
Files and hashes: 1: bKhEoTi8VyX_Q5KODWRSQwgQwKY.roa (hash: xvVp0HHxMjOmKvNmsan4is7a0Z8jz8EK1PXrOk2MzSo=)
2: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl (hash: 2j0yVoadPkYmcTvUulslmHi8TgCuO7+e9wgGihVANQI=)
3: k3MkBKIkrmXV8hBuw2gGPp_sASw.roa (hash: kkGwe02sJUGG5OVjC1fC3C/lnFwMVxsODhInEGGgNMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 07:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:58:3c:e4:4a:50:0a:c0:09:bc:60:de:ed:29:bc:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779fbaaac6541ab318529eb025613c6520e47646
Validity
Not Before: Jun 8 07:01:34 2025 GMT
Not After : Jun 9 07:01:34 2025 GMT
Subject: CN=c3340fd37bf467eff82c2d04ea90c4ae51650a3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:28:96:81:91:38:fd:16:0a:a5:7d:41:fa:28:
07:ec:26:17:65:11:e1:51:44:b5:0e:36:4e:ff:2b:
44:04:5f:45:7a:d8:40:9c:6f:b2:db:57:fa:81:cc:
cd:38:40:19:82:83:23:43:68:f8:4b:8f:27:5e:73:
e1:f9:30:e3:dc:b9:f8:b8:f5:65:3f:a9:39:aa:5b:
12:af:63:ab:d5:97:40:93:51:32:7c:e4:52:df:d1:
09:15:8d:1d:6e:7b:b2:1f:3e:9c:5a:05:21:06:4b:
d9:33:c0:38:4e:e0:67:df:ae:52:c2:27:3a:61:0a:
a9:e8:ac:b2:c8:78:a5:f0:f1:7d:45:9c:b2:c7:8b:
75:5a:43:10:fe:4a:87:24:5d:79:0e:92:7c:a6:32:
8c:e5:e8:39:49:18:c1:ac:56:6f:23:36:1c:86:ae:
87:74:5a:54:b8:0e:31:4f:2a:e8:a5:52:22:d9:79:
49:0e:08:91:1e:e7:59:40:fa:28:21:ee:ea:63:36:
aa:57:46:b1:e3:ca:3c:c3:c5:e3:57:f4:31:c9:77:
d1:0f:84:4f:df:bc:9e:58:38:22:42:8d:63:c7:9f:
7b:2c:f8:ac:1b:bd:e9:74:88:33:6c:2e:1e:03:f8:
36:e4:7f:33:f1:80:cb:f5:0f:0e:00:a8:c5:fc:6f:
d6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:34:0F:D3:7B:F4:67:EF:F8:2C:2D:04:EA:90:C4:AE:51:65:0A:3F
X509v3 Authority Key Identifier:
keyid:77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:57:1f:67:4d:21:fa:3e:63:94:11:21:9a:ad:81:35:8a:9e:
9a:ae:c0:6d:17:8b:14:c9:06:c2:57:08:80:a8:c2:af:dd:a2:
22:39:c5:68:88:2e:f8:3c:df:f2:42:76:51:9c:bc:89:49:e0:
37:51:d2:d3:cb:43:71:3c:02:b5:da:44:ca:00:9a:37:c2:f2:
f1:f6:50:c1:d0:15:65:7b:97:80:f8:36:19:74:bc:dc:22:6d:
6b:8d:1b:42:61:3a:9c:ec:b9:fe:7c:37:d8:78:52:60:ea:d5:
fa:4d:86:2d:4f:48:05:ec:09:02:4c:41:8e:a4:d9:28:af:51:
44:93:ad:03:bf:cc:f0:67:42:be:8c:d9:10:79:dd:81:3d:e6:
2f:13:94:86:d3:1e:16:1e:f6:8d:1b:ff:6c:ff:13:9b:ad:d2:
8f:f7:01:fe:29:f2:4d:7e:3d:e5:6f:fe:d6:99:4c:f7:27:f2:
8e:54:08:3b:b8:78:cd:01:74:ba:00:38:1b:00:cf:1f:2d:56:
c8:29:f1:49:ea:9e:7d:76:e3:41:76:ed:59:8e:67:20:92:fe:
be:47:c6:7d:3f:81:40:48:c3:3f:20:8d:eb:80:78:ab:eb:d1:
4a:1a:23:d4:ec:ec:dd:e2:10:49:19:33:4c:02:2a:2f:fc:c4:
f2:05:de:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 16:00:36 2025 by rpki-client