
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json)
Hash identifier: oK+bP2/8I8flwP78HQTLJ6U3WLA8UTewOMc3sgXvHSk=
Subject key identifier: CB:61:E5:DC:2A:82:A4:6A:70:CE:3C:F8:C0:F8:6D:0E:A5:8B:67:E9
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 01975459822EA515CCC47AB52A46A9A239CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
Manifest number: 1584
Signing time: Mon 09 Jun 2025 11:00:41 +0000
Manifest this update: Mon 09 Jun 2025 11:00:41 +0000
Manifest next update: Tue 10 Jun 2025 11:00:41 +0000
Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: H5SlURzPAJ+atQuG11RY+8v4WzuivP+8EHCpPZdNHis=)
2: bRo1FpRQdGW3rrEgf9LP2ZyYMbs.roa (hash: ZwgslFPNqU25lgzTk3XOIv2Nozx6fjcmPWKTGmYvfPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 11:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:59:82:2e:a5:15:cc:c4:7a:b5:2a:46:a9:a2:39:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: Jun 9 11:00:41 2025 GMT
Not After : Jun 10 11:00:41 2025 GMT
Subject: CN=cb61e5dc2a82a46a70ce3cf8c0f86d0ea58b67e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:99:2d:41:89:f9:c0:bc:c0:1b:7c:0b:93:bb:
85:0e:6e:f0:a9:ba:d2:aa:01:a6:c0:3a:55:8b:08:
13:1e:fa:c9:a0:f8:bb:e1:7a:f0:02:a0:9b:75:84:
74:52:40:bf:3d:68:eb:e6:4d:3a:f2:4f:dc:41:45:
2c:ca:3e:ea:84:97:51:29:2b:0f:25:d4:00:f5:c8:
28:87:be:05:c1:4c:d8:7b:94:46:d7:e5:95:09:56:
05:a9:61:d4:26:5c:0c:79:a6:7e:ad:d0:40:1e:9d:
5c:36:9d:bd:61:37:3e:fc:cf:7c:16:96:1a:fb:b4:
f6:d4:46:23:ca:ef:35:15:ff:c1:d3:ea:b2:c2:74:
22:71:71:fd:82:c3:86:01:c3:c3:2a:c1:ef:18:30:
92:60:15:03:db:ad:a6:68:bd:1b:5f:6f:4b:07:e1:
34:39:a3:89:72:f7:99:4c:68:70:1a:42:03:43:aa:
52:a9:c2:d2:c2:19:0b:8d:ef:6c:9b:01:9c:17:81:
6a:f0:45:23:b1:1c:6f:57:b3:76:62:7a:20:4b:e2:
d5:90:7d:b6:3d:60:69:eb:71:74:5d:13:2e:5d:0c:
eb:97:2c:97:1c:c4:6e:86:f3:e9:d7:1b:ec:de:8a:
19:23:ac:95:b5:36:93:66:af:6d:80:9b:4e:18:8e:
fa:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:61:E5:DC:2A:82:A4:6A:70:CE:3C:F8:C0:F8:6D:0E:A5:8B:67:E9
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:a9:4c:2e:97:42:81:c2:75:c1:20:f7:01:8b:e4:ea:4d:d8:
ed:88:a6:3e:cd:c9:cc:e8:8d:f0:c6:25:f9:71:17:c3:bb:91:
d7:45:ba:5e:80:9f:1e:2a:0a:4a:d0:af:a0:18:f3:ea:4e:ef:
04:b7:8b:94:c9:dd:f2:2e:21:40:2f:41:f6:52:12:04:5e:2f:
4c:ad:fe:00:32:50:ab:84:84:a8:5c:e3:23:ba:22:03:c0:77:
eb:a3:32:9f:5e:54:a7:7c:99:e8:77:82:91:eb:e9:8e:87:6b:
3a:9b:6f:12:91:85:0b:3e:1a:2b:d9:42:a1:43:e9:ac:90:61:
20:45:f3:c1:fc:3e:81:8d:1a:df:22:45:e3:a1:f6:cd:c3:85:
0b:a6:88:44:b6:f0:4b:bf:cd:58:05:82:b3:95:1b:47:92:0c:
30:b0:61:34:24:43:26:43:a2:27:ae:0d:8e:9d:bd:e5:a5:59:
84:19:f3:59:e7:35:b4:f6:70:91:54:af:4d:e0:be:85:b5:21:
b1:ca:96:01:d6:bf:c9:73:18:33:dd:8f:cb:39:32:9f:93:06:
af:bc:d2:55:a2:03:10:64:23:68:85:2c:89:b7:2e:55:ff:4c:
5b:28:8d:eb:df:3b:13:a3:3a:c1:4e:fe:6e:bf:9b:fc:f7:b9:
b6:e6:d5:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 18:36:55 2025 by rpki-client