Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json)
Hash identifier: aCK7LhMvJSvYvstyu7AglQD5rhfsoJzA0Wk6aUvL8bY=
Subject key identifier: 73:8E:9C:8D:4C:9A:84:1C:1D:42:AA:46:99:61:9F:47:D6:8C:E9:46
Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Certificate serial: 01974C3222879A00282B55ED64C284CE6E3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 21:00:43 +0000
Manifest this update: Sat 07 Jun 2025 21:00:43 +0000
Manifest next update: Sun 08 Jun 2025 21:00:43 +0000
Files and hashes: 1: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: u1JKaKJMlMhAUXFHnyl/d/7I1xizim8Kxr41c08zdHk=)
2: h9zvvPI2dBY4jNWQKpPxUoE047A.roa (hash: PkWglafHXDxF9KIzM61BgLg1omYPGots3ZThAKgjHP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:32:22:87:9a:00:28:2b:55:ed:64:c2:84:ce:6e:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a
Validity
Not Before: Jun 7 21:00:43 2025 GMT
Not After : Jun 8 21:00:43 2025 GMT
Subject: CN=738e9c8d4c9a841c1d42aa4699619f47d68ce946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c0:0b:5a:77:f4:5a:65:b9:cb:6b:00:1e:14:
59:59:22:61:51:fb:b0:14:2b:12:e6:0b:cc:3c:aa:
49:bc:6e:b5:f0:d7:27:18:f4:51:b5:46:2d:22:73:
d9:57:c6:f5:2f:9f:55:51:9e:5b:19:fa:8e:3e:d5:
24:34:51:4e:55:c7:f9:b4:6e:fd:8d:d9:78:59:00:
a6:34:7b:54:9e:c1:c5:1e:cc:90:8e:9f:33:ad:a5:
d9:75:a8:a2:1b:3e:d0:d4:84:61:10:7e:19:cb:4e:
d0:0e:f1:34:d4:d0:4e:d5:fa:2c:c4:b7:3e:3d:c8:
83:1c:fe:8a:23:6d:46:13:8a:76:32:21:9d:05:0f:
bd:93:46:23:a7:c6:63:2b:01:c4:2b:7b:39:40:83:
3a:25:95:e1:d7:f8:ca:70:98:5a:9e:2a:56:e1:f2:
a9:15:a8:01:f8:0b:fe:be:6a:13:90:66:3b:d4:ab:
74:93:42:ee:19:b0:46:50:17:1d:4e:f1:e7:36:c6:
3d:ba:54:a9:9e:93:de:e9:f6:e4:a3:2d:03:a6:d7:
c8:e2:ff:4e:49:36:c9:47:93:69:05:c2:18:62:ff:
98:fc:2a:f3:15:a1:97:e3:2a:c2:6c:15:cf:2f:61:
8b:85:4a:90:36:91:e2:76:fe:91:c2:78:08:52:d1:
7d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:8E:9C:8D:4C:9A:84:1C:1D:42:AA:46:99:61:9F:47:D6:8C:E9:46
X509v3 Authority Key Identifier:
keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:40:34:20:12:f8:03:b3:6f:4b:11:b7:db:49:7a:24:29:40:
7b:3a:c2:ee:23:9e:8a:43:18:07:72:e5:3f:81:8a:86:32:d5:
ff:95:79:de:58:26:13:ee:55:f1:b6:ce:37:33:88:31:76:f2:
f3:65:36:04:e4:ae:d2:68:91:cc:01:27:ee:c4:b4:2c:12:d2:
e8:be:a3:82:f4:b0:b1:58:eb:b9:40:34:34:66:07:66:28:c9:
d4:47:b1:d2:48:f6:3c:3e:9d:0f:7b:a1:73:1b:84:25:d9:d8:
80:70:f2:c8:48:45:7f:7e:62:28:4b:bb:94:a4:46:19:1f:1d:
be:90:7c:c2:7a:ad:93:d0:bd:04:f5:bb:cc:bd:58:50:bb:76:
44:aa:e3:5a:f7:65:de:5d:5c:90:b1:de:b5:6f:b8:47:97:bd:
5f:ea:dc:f0:20:ee:49:36:82:dc:28:7f:10:24:3c:2d:78:4c:
eb:13:95:22:84:f6:0c:9c:92:ba:d1:cb:7f:4d:11:8b:dc:f9:
a5:8d:42:18:4d:fa:ae:fd:4e:89:fb:14:67:31:33:a7:b9:f5:
b2:e1:7a:a6:90:ac:ae:05:5a:ae:94:30:de:25:a9:b9:2f:65:
3e:90:21:80:d5:04:70:3a:29:dc:e3:fe:4a:14:1e:92:fb:f3:
b3:c6:33:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:12:19 2025 by rpki-client