Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
File: d2-uQ_c9o1_houQpZirguRdR4_s.mft (raw, json)
Hash identifier: YTIF7Aej9OO+f/3OYaJi2cwLpYDOPZ5Zi7j1E5FMeVs=
Subject key identifier: 8A:1B:C7:02:8F:B7:83:31:70:E9:61:FB:25:75:3E:E9:BB:6F:82:9A
Authority key identifier: 77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
Certificate issuer: /CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Certificate serial: 0197458BA63ECC4A87D40253C3284D2C9BA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
Manifest number: 129F
Signing time: Fri 06 Jun 2025 14:01:09 +0000
Manifest this update: Fri 06 Jun 2025 14:01:09 +0000
Manifest next update: Sat 07 Jun 2025 14:01:09 +0000
Files and hashes: 1: BIbyN6MobH1STyCEPdXKcXxO-0I.roa (hash: Os4l0m9oxr0hmnuszsL7ZwnRaiayTTQWv9r3AFurnXg=)
2: Bbz0bBQb7OvBUdzdUU2fR0aTHW0.roa (hash: oXnG95uJE4GWCusPMitN/8TOoOTM8j2qb4pX4QMQ5u0=)
3: bdDCotOAfO1kv_FK4imM3A-Vth0.roa (hash: SflKXIddgIp/qAd1Zs2morymiezh6i6wy0uu+gUqlSk=)
4: d2-uQ_c9o1_houQpZirguRdR4_s.crl (hash: bew/EqYKWh2hx/GAfe+wSHeRc1a4mCLKZdx24WQxCEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 14:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:8b:a6:3e:cc:4a:87:d4:02:53:c3:28:4d:2c:9b:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Validity
Not Before: Jun 6 14:01:09 2025 GMT
Not After : Jun 7 14:01:09 2025 GMT
Subject: CN=8a1bc7028fb7833170e961fb25753ee9bb6f829a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4f:29:33:01:c7:8c:af:1c:fe:71:5f:d8:b4:
bc:5e:c7:c6:fb:93:37:2e:1f:f6:55:03:fa:b0:d2:
0b:ee:e8:0f:27:70:ab:ed:33:f9:0d:29:38:91:ff:
4d:74:de:a0:10:dc:2d:8c:57:c4:70:df:05:93:02:
b6:3d:81:12:e8:9d:67:b7:60:2b:73:c0:e4:1d:32:
95:a7:8f:e2:6c:da:c9:94:46:99:45:99:8f:93:d6:
46:57:eb:74:cb:67:a3:76:58:97:07:1f:d7:6f:66:
77:98:15:f4:5f:1f:67:62:5f:89:af:7c:d2:cf:4f:
93:25:84:17:8a:c6:e5:0c:d1:07:2e:9d:e0:61:fc:
01:c7:23:ae:4c:2f:6e:c7:34:e8:e2:22:5a:2c:d7:
07:8e:9c:04:af:2d:46:2c:f6:e2:14:14:60:2e:99:
9e:04:3d:38:23:8a:1e:e1:c4:d9:d7:de:22:db:ba:
64:b1:d2:18:cd:33:fb:30:bb:ae:7a:4a:45:96:9a:
aa:fd:52:2e:1f:9b:69:b1:3b:ed:ac:29:2e:80:c5:
c2:48:04:a9:42:69:c4:4d:9e:b9:0f:23:36:b6:e7:
5e:c2:d9:5a:0b:27:ac:36:9f:18:7b:55:ef:87:8c:
69:e5:4e:5c:3b:00:0a:98:aa:82:26:c0:3f:66:42:
48:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:1B:C7:02:8F:B7:83:31:70:E9:61:FB:25:75:3E:E9:BB:6F:82:9A
X509v3 Authority Key Identifier:
keyid:77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:27:e1:d5:8c:53:c2:29:a2:a1:fe:5a:39:0c:66:b8:8b:9b:
61:56:04:53:41:db:0c:28:e6:5c:dd:27:eb:11:e4:15:25:a1:
52:57:c9:a3:8d:df:28:3e:ff:a9:f4:3f:c7:7a:67:1b:59:5f:
b6:59:ca:b7:e2:e5:cd:27:37:d5:c4:ab:49:06:10:ba:44:3e:
24:71:8b:62:3a:7c:35:27:b0:f5:3a:62:28:88:e6:f2:7a:6f:
38:cf:e6:f8:26:94:27:00:98:06:1e:0e:38:7f:84:c8:d4:ef:
e3:3d:01:a4:70:21:56:42:e5:e2:be:75:f1:80:1b:1d:93:37:
35:84:68:71:87:1a:80:1d:fa:e2:79:2b:ab:32:fe:a3:41:e1:
e7:4a:ca:d7:58:58:57:51:6b:31:86:76:cd:75:40:b2:1b:a6:
8a:56:57:0e:a6:68:af:1f:6b:58:ff:ba:91:44:b2:60:e5:39:
02:5a:47:50:36:8d:60:76:a1:2e:ed:73:7c:80:49:32:9c:79:
22:09:ea:a7:04:b6:fb:3f:7b:b0:14:8c:e5:85:56:f0:b4:52:
2d:0b:0a:41:9a:3d:d5:f2:90:95:aa:84:61:9f:39:ef:21:5a:
6f:ce:df:5f:cf:de:2f:ca:7e:45:d2:17:5b:55:96:b3:21:5c:
f5:d6:b5:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:00:46 2025 by rpki-client