Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
File: RMKVym7oyucAa1d69U43ZiPfd5k.mft (raw, json)
Hash identifier: fg/Vv8hOOdZP5dTNdOyDRJPpomsV4BiRYjrAeDy5OHE=
Subject key identifier: B8:23:28:4E:F3:FC:CD:4F:C1:FB:7D:1C:DC:56:10:03:46:44:77:C6
Authority key identifier: 44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
Certificate issuer: /CN=44c295ca6ee8cae7006b577af54e376623df7799
Certificate serial: 0197470BA409A994D2B1AFDBF25F09335949
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
Manifest number: 1349
Signing time: Fri 06 Jun 2025 21:00:34 +0000
Manifest this update: Fri 06 Jun 2025 21:00:34 +0000
Manifest next update: Sat 07 Jun 2025 21:00:34 +0000
Files and hashes: 1: 1-a4x5OOX4iisCDf6ed1yjE-GXUQ.roa (hash: sw8ry0bOHDndmxXW/2FyYZ7exmAZ4VvNy12eeZpqa3o=)
2: RMKVym7oyucAa1d69U43ZiPfd5k.crl (hash: 2svL4F+TdDdY79BE7o+JY2tr5vslQ847TDl6y1aO+DQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:a4:09:a9:94:d2:b1:af:db:f2:5f:09:33:59:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44c295ca6ee8cae7006b577af54e376623df7799
Validity
Not Before: Jun 6 21:00:34 2025 GMT
Not After : Jun 7 21:00:34 2025 GMT
Subject: CN=b823284ef3fccd4fc1fb7d1cdc561003464477c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c2:85:e4:a8:c6:c3:9c:9e:74:4b:79:6d:47:
4d:06:ab:12:ce:c2:c8:12:27:f2:ee:28:41:1f:85:
50:d7:6b:28:ea:26:6a:1a:67:a2:28:d3:44:fc:72:
49:7e:51:ef:9b:db:43:dc:a9:e0:01:90:86:02:6e:
f8:55:f6:6a:d8:62:ed:28:c6:1c:50:0e:e4:87:f1:
0b:57:53:36:6d:3d:f3:08:d3:d9:b8:98:10:a9:ec:
cd:d2:e3:59:72:0c:77:f8:c1:5f:65:04:a8:c7:f2:
e8:97:15:08:33:9a:be:0b:6c:dc:5a:15:9d:45:57:
95:55:ea:a2:6f:c9:24:e1:93:98:41:bb:b9:75:a0:
63:f9:2d:c0:d8:cf:4b:ef:02:c3:57:9c:ba:43:29:
d1:32:ff:4e:07:35:05:c4:fe:51:e7:f2:70:09:9c:
38:64:21:37:dc:df:26:1e:eb:dc:f7:a2:7f:1c:ec:
f0:06:d6:02:8c:f2:f8:b4:a9:31:c0:98:e2:e2:8a:
8d:01:bd:b7:24:2d:84:06:54:c4:86:e8:ee:4a:d2:
ff:78:dc:10:eb:60:05:ba:31:46:c9:e7:51:52:71:
8d:bd:8e:f3:95:bb:4a:52:7a:f4:90:90:fc:59:eb:
db:5c:fc:ed:f9:09:2e:ef:82:2e:5c:98:6c:f2:8b:
37:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:23:28:4E:F3:FC:CD:4F:C1:FB:7D:1C:DC:56:10:03:46:44:77:C6
X509v3 Authority Key Identifier:
keyid:44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ea:5d:62:75:70:ae:7e:ba:44:3c:af:5b:a4:c4:19:e8:fe:
6f:38:dc:71:9e:a4:64:75:ed:1c:23:82:b0:1c:f0:01:53:a2:
89:0f:3e:fd:61:79:16:98:ef:b0:d7:ad:2b:d7:6f:29:51:24:
67:a0:00:0b:9d:db:26:24:93:9c:9b:03:fa:7f:8a:49:81:a2:
84:d3:40:7d:fd:09:85:62:e9:1d:94:35:5c:5b:80:cc:c9:c5:
90:e5:08:6d:84:1a:dc:69:b8:16:b4:52:22:0b:20:75:c1:31:
8b:45:34:fd:d1:1a:fb:78:e2:ba:57:39:b9:11:c9:6e:39:b7:
d9:46:57:9c:ab:fb:15:12:82:3d:74:f4:78:ca:00:b7:82:c3:
8b:f4:95:e0:e4:8c:48:fe:b4:9f:db:9e:a1:3c:68:45:6a:ff:
b2:bb:e2:29:f6:0d:9c:1a:68:6e:a8:b3:85:57:75:4f:48:60:
53:2e:e1:d9:4a:5e:97:bf:4e:e0:83:a4:0f:02:12:b4:60:c1:
e2:63:5c:a1:8b:ec:e2:a1:70:a3:cb:61:7b:ca:df:9a:d9:68:
d8:55:71:11:32:e7:27:e2:09:fe:48:37:f5:a3:5f:f7:0c:25:
c2:cc:4b:5b:95:c8:7c:aa:ac:a8:df:26:da:4d:94:41:59:43:
ff:b1:50:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 07:23:04 2025 by rpki-client