Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
File: v99XKOyr1W70Y3NWlVhmylRoaRo.mft (raw, json)
Hash identifier: V6RCaMkQdA5xFv95fkuDXvomnXU76tCCsB3S/kyvmz8=
Subject key identifier: 7F:67:58:98:C8:C2:43:20:8D:29:60:D1:12:8C:53:D2:3E:76:6D:12
Authority key identifier: BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
Certificate issuer: /CN=bfdf5728ecabd56ef4637356955866ca5468691a
Certificate serial: 01975158F24DFA752F2DD9A42C106BD5DF84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
Manifest number: 01A3
Signing time: Sun 08 Jun 2025 21:01:12 +0000
Manifest this update: Sun 08 Jun 2025 21:01:12 +0000
Manifest next update: Mon 09 Jun 2025 21:01:12 +0000
Files and hashes: 1: 5ZRHOA8DDg_XhJ8JjCvhTOGiC1w.roa (hash: eWpgjaoVJC0L+xFRvzTJa/HrtM2zzM7SykfE1sq9g2I=)
2: v99XKOyr1W70Y3NWlVhmylRoaRo.crl (hash: lyizsCT2pfTC25PcWy4AmZE0As6cHRSJy6eHvrykDlk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:58:f2:4d:fa:75:2f:2d:d9:a4:2c:10:6b:d5:df:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfdf5728ecabd56ef4637356955866ca5468691a
Validity
Not Before: Jun 8 21:01:12 2025 GMT
Not After : Jun 9 21:01:12 2025 GMT
Subject: CN=7f675898c8c243208d2960d1128c53d23e766d12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ce:b6:20:da:e6:ba:7e:e6:23:a6:38:42:72:
d2:94:02:b7:ab:9f:ac:6c:d0:eb:4d:a1:9c:da:51:
fc:16:1c:38:ee:9c:4c:7c:bc:53:09:57:e7:35:2c:
f7:0c:bb:28:bd:94:09:8a:9e:96:e1:a9:fb:d8:bb:
94:46:8e:78:c2:63:60:c4:e5:6f:6a:6c:d8:f6:a3:
d4:e8:7e:50:67:dd:a7:55:d0:b0:77:56:33:16:73:
ce:3e:be:5a:c1:3e:ff:4a:6d:49:62:6d:be:f3:fe:
29:42:98:e7:7a:2b:34:de:a5:08:b7:1a:e4:aa:98:
21:fd:b8:1d:42:76:f1:86:27:b2:e5:5e:52:f2:cb:
39:ec:fa:ac:65:71:c5:ec:b7:06:e9:60:f7:ee:03:
47:5b:7d:df:91:22:08:d3:f5:12:2a:03:3b:21:3c:
20:e4:4d:e1:8d:97:43:28:54:b1:53:09:08:5e:09:
53:0a:45:ca:91:75:f8:07:54:d0:3b:65:40:18:58:
68:2a:88:83:53:e7:69:e1:42:c8:27:73:5f:95:3e:
a5:33:3b:83:ce:b2:fc:f0:97:9c:b3:b4:61:b2:8c:
c4:0f:0d:31:88:ff:58:fb:ab:5a:d9:f7:8e:7c:e8:
25:1a:46:14:7e:d3:91:53:06:0c:78:26:90:dd:1c:
b8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:67:58:98:C8:C2:43:20:8D:29:60:D1:12:8C:53:D2:3E:76:6D:12
X509v3 Authority Key Identifier:
keyid:BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:4f:ca:5f:c0:f3:ff:51:a7:a9:34:c7:2a:5b:97:95:0e:df:
b3:bc:ed:2a:79:69:b7:5c:43:60:2e:c3:13:cb:a8:d1:f5:c1:
ac:d6:5a:30:db:29:2b:e7:8b:a2:da:5a:8f:22:46:94:37:9c:
5d:fa:99:8e:c0:ab:b7:e8:81:f5:28:2d:7d:d9:10:9d:b0:ff:
9c:44:6a:89:54:18:e4:1a:a3:1d:35:22:3b:54:2a:1f:99:9c:
fa:4c:00:e3:98:06:62:b2:30:15:a1:ea:74:e3:04:e6:f5:2c:
6f:a7:be:fa:34:41:01:94:a7:87:2c:c8:b5:d9:2e:0f:5d:7b:
60:d1:59:9d:1e:bc:d8:8a:51:ca:96:2e:5a:83:8a:29:6a:7a:
50:c9:8c:a3:34:86:f7:13:68:12:3d:29:66:43:d7:8d:64:ed:
e5:05:27:52:63:8c:f4:34:18:60:65:c8:9a:d1:d5:64:34:bc:
8b:cc:e0:5e:cf:56:ea:99:00:ba:5a:29:fe:94:c1:7a:e1:2e:
74:e9:25:74:34:0a:0b:e3:6a:ff:e9:7a:d9:18:5c:ec:48:6e:
a1:e4:bd:b8:fe:10:82:06:5d:80:bb:db:f2:83:16:8e:9f:2f:
aa:53:84:e1:9f:0f:de:1c:e8:03:bf:06:54:8d:6b:a8:42:c1:
ae:7c:1a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 01:32:15 2025 by rpki-client