Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
File: sPiohfd3bSq5m7TyDoTTBuA5SqM.mft (raw, json)
Hash identifier: ys4FwaX5LXwOFwg0hhV/9TpOn4KoFKu3mQboRpQHakY=
Subject key identifier: E4:D7:7D:75:80:54:9E:59:E6:3C:04:E9:26:79:52:D3:3F:4A:DB:08
Authority key identifier: B0:F8:A8:85:F7:77:6D:2A:B9:9B:B4:F2:0E:84:D3:06:E0:39:4A:A3
Certificate issuer: /CN=b0f8a885f7776d2ab99bb4f20e84d306e0394aa3
Certificate serial: 0197462FBFD4E39FEA3A303F6C5525BB2081
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
Manifest number: 130E
Signing time: Fri 06 Jun 2025 17:00:23 +0000
Manifest this update: Fri 06 Jun 2025 17:00:23 +0000
Manifest next update: Sat 07 Jun 2025 17:00:23 +0000
Files and hashes: 1: SvV3htVhXEPI7wFXdPP_R5R2jOo.roa (hash: ADbpdowWW8HzIQ0XmIe2lqnPixhQxjU2ME36RexdQ8I=)
2: sPiohfd3bSq5m7TyDoTTBuA5SqM.crl (hash: 9KryURHSomltOEENEJ13k5xyQ5yLLwoEgeqHrQ7bTWQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 17:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:2f:bf:d4:e3:9f:ea:3a:30:3f:6c:55:25:bb:20:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f8a885f7776d2ab99bb4f20e84d306e0394aa3
Validity
Not Before: Jun 6 17:00:23 2025 GMT
Not After : Jun 7 17:00:23 2025 GMT
Subject: CN=e4d77d7580549e59e63c04e9267952d33f4adb08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ca:68:a3:78:56:94:9a:7a:d5:a7:f3:97:9d:
32:68:db:78:61:12:d8:aa:86:1a:48:99:0b:7e:d6:
d5:c5:a0:a4:ba:fe:03:e4:de:47:18:72:76:38:7b:
94:12:6d:cd:04:2e:31:2b:14:37:f0:84:19:22:fa:
90:47:c8:a6:92:60:14:7f:ac:d8:81:54:60:9f:bf:
f5:21:c2:89:7d:8c:6a:61:68:5f:b7:ae:1e:f9:3c:
3f:72:da:0c:54:9b:80:94:91:df:fc:23:e6:42:d6:
6a:4b:0c:5c:99:61:e9:53:79:83:a5:b8:a7:9a:37:
d9:8f:a7:eb:46:bc:3e:75:bd:85:e0:bf:84:a8:59:
39:cf:d1:2a:b0:c4:73:cd:86:60:ba:9d:d2:f3:d6:
86:a8:c8:89:eb:d7:ba:b1:9c:9a:d6:92:64:0d:27:
a3:cc:b4:4d:95:8d:31:e3:10:40:d5:56:3d:4f:fc:
00:2e:22:f7:e2:9d:ee:46:6a:0c:9d:e6:ee:9e:4e:
55:34:a2:96:42:fb:2c:ee:45:f2:2d:a8:4a:d2:6b:
8a:f0:e4:41:d3:c3:28:af:19:9a:dc:d2:65:f8:78:
bc:e3:5b:fa:68:74:b3:b1:73:67:ff:13:46:94:52:
3e:6c:cb:de:b8:1e:14:1d:c8:9d:88:fe:a7:fd:04:
5b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:D7:7D:75:80:54:9E:59:E6:3C:04:E9:26:79:52:D3:3F:4A:DB:08
X509v3 Authority Key Identifier:
keyid:B0:F8:A8:85:F7:77:6D:2A:B9:9B:B4:F2:0E:84:D3:06:E0:39:4A:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:ff:29:28:af:37:2f:9a:6a:f3:d1:34:d6:43:15:a7:2a:b6:
f1:ba:7e:36:ef:cc:b5:ba:c4:53:ae:be:e9:30:69:8e:26:84:
d9:57:e9:ca:18:2a:6b:f7:31:97:3c:2e:3b:24:9b:e2:66:12:
7d:86:38:9e:49:7e:51:e3:03:47:a9:aa:4f:33:86:a5:ac:27:
b8:3f:64:20:22:ff:31:b0:10:44:53:18:91:d2:90:73:54:df:
46:15:6b:06:6c:a5:3a:14:1a:97:e5:dc:df:34:7e:6a:ff:d5:
ac:1b:ba:d4:b6:fc:cc:04:1d:50:f7:e8:29:e2:2f:df:11:f3:
d6:de:b9:32:e7:a3:61:27:f4:bd:23:c5:91:2b:05:f9:37:a3:
d7:b7:2d:7a:f8:76:7f:13:39:6d:52:e1:86:f8:46:99:b9:20:
c2:aa:a3:49:54:2b:c8:b1:fc:86:27:76:01:88:93:e6:12:c1:
d3:c0:f5:e1:8b:f7:b1:1e:59:23:37:84:7d:53:b5:06:e2:e8:
fa:8b:1c:6b:66:00:a6:cd:f4:02:0a:1c:58:fd:a7:d7:44:d8:
46:ed:1d:25:4e:ff:87:3e:f3:1a:c3:6c:e7:44:e0:15:43:d4:
97:f4:16:fd:4c:a1:92:b8:97:64:2c:17:2c:11:a2:51:e4:d3:
67:30:ff:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 03:22:34 2025 by rpki-client