Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
File: RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft (raw, json)
Hash identifier: uzGp9lzx6WVgcitpEPAiZ3vt+fl3WtgzI1k7LNMiAWQ=
Subject key identifier: 72:10:FC:1C:4D:F6:EB:C4:E0:00:AB:59:7C:A5:62:A9:3D:6A:FC:EF
Authority key identifier: 46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
Certificate issuer: /CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Certificate serial: 01974B56B37B66F3E5BF99D93344BD60969E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 17:01:02 +0000
Manifest this update: Sat 07 Jun 2025 17:01:02 +0000
Manifest next update: Sun 08 Jun 2025 17:01:02 +0000
Files and hashes: 1: RO-2xcQ-C0WrDSJ7Eu00WY23rS4.roa (hash: Avrv1nDidaSbZAK1I64G61mkaNMT6r8igSyRsacO8hw=)
2: RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl (hash: L7xgdbh4OH+79qW7VXUBd1r/Fm+gi3+33d54vkx851U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:b3:7b:66:f3:e5:bf:99:d9:33:44:bd:60:96:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Validity
Not Before: Jun 7 17:01:02 2025 GMT
Not After : Jun 8 17:01:02 2025 GMT
Subject: CN=7210fc1c4df6ebc4e000ab597ca562a93d6afcef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:9e:6c:79:72:be:b8:f1:4a:41:0a:07:05:03:
32:f1:28:db:b8:be:0d:b3:08:0f:dd:cb:86:2f:e1:
39:45:2c:fa:7e:7d:f5:e4:17:bb:c0:2c:eb:0e:21:
51:37:16:a6:1f:6a:5a:12:c6:71:76:e5:77:4d:11:
b2:dc:ba:fb:d5:81:14:ae:6d:00:1c:35:50:91:70:
2b:0a:c9:31:81:86:13:93:17:d5:eb:c4:b0:37:bd:
db:c5:5d:8b:3e:85:06:57:46:3a:a7:38:4e:cc:c3:
0e:ba:f7:9e:0c:e2:a8:e4:d7:66:25:c0:ed:59:17:
5e:e9:16:91:77:91:5c:65:21:2a:98:7f:e6:2a:82:
11:3c:f9:42:5a:d0:c9:17:d3:54:1f:83:c8:55:bf:
90:74:5c:c8:aa:ed:72:81:f7:b6:bc:de:1a:b7:7f:
ba:62:99:86:4c:39:f2:6f:e7:ad:20:6d:e3:5e:9f:
09:2c:76:8a:76:ce:13:b3:47:fd:fc:10:8b:12:8b:
c2:84:9a:b9:a8:35:59:cf:39:99:c4:5c:f3:92:35:
9c:3f:77:b1:70:b0:85:6d:c9:5a:bb:b0:36:9f:88:
df:35:cd:ce:37:02:4b:36:c5:5a:68:6f:a3:8b:26:
f3:a4:d5:db:15:07:64:9d:a4:b0:61:1b:72:bd:f6:
22:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:10:FC:1C:4D:F6:EB:C4:E0:00:AB:59:7C:A5:62:A9:3D:6A:FC:EF
X509v3 Authority Key Identifier:
keyid:46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:35:a5:5b:82:df:b6:91:ba:de:a6:14:5f:f1:9b:40:8e:3c:
d6:49:b7:6c:43:33:9a:e1:fc:10:f3:d6:fa:67:01:6a:bd:b5:
0f:24:50:6b:43:0e:2c:69:3f:12:34:63:1a:2b:aa:cb:b9:b0:
d1:a2:fc:35:07:0a:2b:3c:a8:60:69:e9:95:2d:fc:cb:23:0f:
b6:70:8a:31:c2:b9:07:29:f8:91:1d:d4:d2:28:8e:b1:9d:2d:
aa:27:9d:51:42:52:87:73:01:1f:b6:a7:96:43:59:68:f0:82:
27:b4:46:9b:68:e9:9d:80:6f:3c:89:c1:81:d2:9d:5e:70:5f:
4d:f8:54:8d:8e:7c:40:79:af:02:74:68:d0:5a:be:61:8c:65:
77:7f:40:6f:9d:1a:ef:2d:23:c3:0b:6f:5c:84:f4:b7:79:e6:
d5:b5:6f:f0:54:71:21:1f:53:e9:bf:90:4d:78:ce:dd:6a:7e:
23:bc:91:29:87:16:8f:dc:31:85:5f:5f:e3:c6:53:63:7b:c0:
ea:6c:bf:46:60:ea:72:9f:3c:56:f6:68:e1:b0:77:63:5d:06:
6a:69:30:2e:70:e9:2f:ed:4e:df:8a:8f:d3:5c:b4:52:47:05:
f3:d7:fa:08:09:1d:6d:2c:6c:e8:da:aa:4a:43:f8:dd:20:72:
13:05:9e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:03:44 2025 by rpki-client