Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json)
Hash identifier: HYu+4WPOO+Nl117HILkL1V4oWVWLAbKt3qon/0Lux9s=
Subject key identifier: 52:7C:71:A2:AA:67:D0:23:A4:00:31:55:0D:FC:06:89:58:57:F6:23
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 01976997C65EB6F85DA068D5993A7FF257D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
Manifest number: 158F
Signing time: Fri 13 Jun 2025 14:00:43 +0000
Manifest this update: Fri 13 Jun 2025 14:00:43 +0000
Manifest next update: Sat 14 Jun 2025 14:00:43 +0000
Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: V/+88otpTjuxkqQ6QH4Fee1CBVQNelviWKzuKe6Z0jc=)
2: bRo1FpRQdGW3rrEgf9LP2ZyYMbs.roa (hash: ZwgslFPNqU25lgzTk3XOIv2Nozx6fjcmPWKTGmYvfPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:c6:5e:b6:f8:5d:a0:68:d5:99:3a:7f:f2:57:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: Jun 13 14:00:43 2025 GMT
Not After : Jun 14 14:00:43 2025 GMT
Subject: CN=527c71a2aa67d023a40031550dfc06895857f623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0d:9c:fc:27:37:9f:c3:a5:c0:33:4f:8f:72:
e9:53:25:25:21:6b:57:dd:f0:28:ae:3f:b5:a1:13:
60:cc:0c:61:29:03:2d:63:88:6b:a4:db:a9:1e:1d:
6f:14:a7:09:ba:40:77:8e:8f:1c:3d:17:1d:6b:9d:
b7:df:fd:fc:7f:92:97:70:df:e7:c4:f6:06:20:48:
62:85:81:d4:7d:01:97:ac:d1:9c:16:23:bd:cd:cc:
a2:d9:86:71:ee:bf:2b:5a:57:af:f5:24:a8:1b:01:
9b:11:d0:67:d9:0b:36:4c:7d:22:35:53:d8:0f:94:
e7:ab:20:1f:d4:16:44:0b:26:36:97:61:91:cd:9b:
67:a6:c4:55:88:9b:e5:eb:fc:d2:51:50:f3:37:55:
eb:d6:e1:9b:e3:f2:e4:14:d0:53:15:47:ab:71:e4:
64:dd:89:59:c8:ae:b7:25:00:d6:46:06:3d:c6:5c:
3c:69:64:68:ef:3a:bc:a6:91:0a:ec:ac:cf:6b:04:
e9:0f:dc:45:e1:59:eb:de:a3:9a:da:95:54:ea:50:
6a:4f:88:8f:83:76:0b:20:b2:94:8b:f6:9d:d1:57:
7f:aa:0c:7e:3a:08:a1:e9:f2:bb:4f:c7:41:c6:2d:
33:ee:de:26:80:bc:c3:df:af:23:30:76:6d:aa:70:
cb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7C:71:A2:AA:67:D0:23:A4:00:31:55:0D:FC:06:89:58:57:F6:23
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:be:a2:4d:da:1a:64:fe:97:1b:25:d0:7b:5d:24:3f:2e:5f:
76:12:0f:4c:8c:d3:df:31:3a:ab:83:cd:ad:93:17:76:1a:59:
8c:40:66:fa:cc:fc:ed:39:5f:2f:7a:ca:e2:7c:37:36:8d:0f:
52:80:6e:af:66:ca:4a:26:23:39:69:0a:83:3c:b5:ec:01:9d:
02:1f:ea:2a:ea:6d:83:f5:e9:f8:b6:5c:b9:28:ac:71:c1:66:
93:53:29:b1:6e:6e:84:ad:fb:e5:3c:b7:4c:db:61:3a:e7:50:
2c:08:2b:b7:2e:94:22:00:fc:32:e4:95:1f:ee:cd:85:02:81:
3e:6b:f8:4e:d2:9e:76:8c:44:bd:02:9a:b8:8d:9d:29:5c:34:
5b:f2:a4:6e:c1:ad:23:9c:4f:91:e7:86:2e:b7:c9:aa:12:2c:
3d:28:69:7c:0b:e5:c1:cf:b6:ee:4f:d9:c6:25:be:aa:b0:4a:
d4:be:a8:6f:9c:0d:7b:3c:56:7c:32:83:b2:b4:7b:3d:9a:22:
1d:63:73:9e:3c:85:36:ac:60:c6:b7:30:be:03:7d:42:20:87:
9f:53:1a:0e:ad:b8:b7:fe:b2:06:52:ac:59:9a:42:ca:94:36:
7b:2d:eb:b9:4e:2b:51:30:97:60:c1:d2:0c:47:f7:aa:8d:a9:
ba:63:32:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:50:58 2025 by rpki-client