Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
File: CBg0SlIKOZknm7gkfheeiEBuNXg.mft (raw, json)
Hash identifier: kJI/917ma3sKJCFq1WdaVIe29u+lyIqhTHjBtDcf6G4=
Subject key identifier: 9A:12:B5:56:AE:19:75:BF:12:8D:FA:35:60:42:7E:2D:EC:23:E9:5F
Authority key identifier: 08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
Certificate issuer: /CN=0818344a520a3999279bb8247e179e88406e3578
Certificate serial: 01974064F2D7349B36516344F14E23FD23D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
Manifest number: 0845
Signing time: Thu 05 Jun 2025 14:00:46 +0000
Manifest this update: Thu 05 Jun 2025 14:00:46 +0000
Manifest next update: Fri 06 Jun 2025 14:00:46 +0000
Files and hashes: 1: B-j6lkFyqvjbC_PQncwIGbX8TJo.roa (hash: UphQUvnVM6eEU6Z6D8ssHUSQvyAzogcc5pnYk33x3jA=)
2: CBg0SlIKOZknm7gkfheeiEBuNXg.crl (hash: DGRTEjt1lcyzXQ4c+mxGxQhykBX5KDeJCqpHlomQ7Yw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:40:64:f2:d7:34:9b:36:51:63:44:f1:4e:23:fd:23:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0818344a520a3999279bb8247e179e88406e3578
Validity
Not Before: Jun 5 14:00:46 2025 GMT
Not After : Jun 6 14:00:46 2025 GMT
Subject: CN=9a12b556ae1975bf128dfa3560427e2dec23e95f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:67:6a:07:4f:b1:c0:5b:ed:16:c7:b3:f9:ad:
2a:56:7c:0f:61:49:f0:28:c1:ce:b9:ca:42:76:84:
d2:9c:c8:49:90:54:bb:89:ab:3c:e3:1a:6b:e4:b2:
7e:0b:b6:65:e6:d4:72:35:61:c9:2a:1f:84:06:a3:
1f:48:38:a7:7f:a6:67:02:3c:cf:09:5f:90:7c:ee:
8e:f4:c1:e1:6e:4c:6d:94:0d:74:c1:83:ab:36:ee:
82:bf:5c:8c:c0:8e:45:b0:5c:e0:c8:68:c9:01:38:
dc:38:8b:9a:d9:1c:fd:99:7d:3f:d8:b8:b6:de:a8:
04:a7:15:de:7a:fc:fc:31:66:8e:43:1d:dc:e3:5a:
e7:64:54:33:5b:59:d3:44:bc:ae:b7:90:8a:52:4f:
b1:95:63:f0:03:77:ce:ef:a7:6e:ef:9f:10:30:d7:
af:3d:5c:0d:b5:d5:ba:b4:0d:85:9f:df:4b:fa:61:
2b:bf:c0:cb:89:06:7a:96:91:67:c6:09:e0:22:a8:
a8:7f:fb:2b:ba:f7:d2:eb:b1:4a:18:36:3a:1f:80:
c4:0e:23:fc:2d:b8:ac:94:8d:fc:20:53:00:04:63:
89:f1:85:21:d0:9d:c0:45:58:2e:d9:53:03:da:fb:
bb:73:26:76:e5:9b:d0:39:45:a4:8f:e8:c4:5e:c4:
0c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:12:B5:56:AE:19:75:BF:12:8D:FA:35:60:42:7E:2D:EC:23:E9:5F
X509v3 Authority Key Identifier:
keyid:08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:11:80:8e:2f:3d:d0:8b:f8:1b:eb:08:8c:fa:77:1f:9c:15:
10:69:9f:a5:71:9f:2d:ff:01:7d:0b:85:07:21:b4:01:c8:99:
77:1d:f0:73:09:4c:0d:9a:95:bc:6d:d6:e1:20:ff:af:5f:31:
b9:41:b5:45:cc:73:5b:fe:89:a8:7b:c3:2a:e9:b5:75:fa:b5:
f5:33:e0:4a:7b:f7:8b:5c:83:87:7d:4c:94:a9:51:78:70:36:
ff:26:c5:ed:22:1e:03:b0:14:06:b3:84:09:d3:d8:5b:82:36:
54:ea:7e:05:c9:98:8c:ae:f6:aa:5e:06:cc:08:03:0e:f9:a9:
a2:52:eb:57:d7:9b:ca:0d:83:0d:c6:b1:18:82:03:13:df:a4:
38:f2:ab:c3:c5:5f:97:1d:05:ab:e7:23:ec:71:3e:5a:59:aa:
96:9d:59:7f:bd:e6:7d:e9:71:b0:2f:29:b2:c7:a1:b7:8b:64:
d0:d3:a7:35:23:f1:bf:eb:ea:ca:87:b5:76:d9:e4:2a:0c:ae:
27:4e:d2:74:9e:68:4b:77:70:ab:d9:a1:40:a3:86:8e:89:3d:
de:c1:d2:29:dc:ba:42:1f:ac:5f:25:e6:08:c7:bb:c1:02:fa:
81:70:71:cb:71:b1:f0:16:07:99:7b:97:06:f7:99:51:ee:7e:
07:cf:eb:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:13:19 2025 by rpki-client