Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
File: S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft (raw, json)
Hash identifier: DAKtD0O73YYiZox06rQXCbrua8FCwMHJu/nbsnhJaSM=
Subject key identifier: 5A:C5:BD:5F:0F:48:AC:A2:12:4C:11:3D:3F:C0:F1:57:DC:A5:23:5C
Authority key identifier: 4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F
Certificate issuer: /CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f
Certificate serial: 01974A0C8367B310C34F6CB57FBF3BD4534F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
Manifest number: 1217
Signing time: Sat 07 Jun 2025 11:00:23 +0000
Manifest this update: Sat 07 Jun 2025 11:00:23 +0000
Manifest next update: Sun 08 Jun 2025 11:00:23 +0000
Files and hashes: 1: 1D0kryG-hg5X4kNtLF0_L_6fbtc.roa (hash: Zop4UA3qvwcLs+PgF6ZAbdQWhdOq1xNbvhqjWudAWN0=)
2: S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl (hash: u2RkXCFOpdfr/plEE2rZnUI1U6rvqwjs/ACSLEZuhhM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:83:67:b3:10:c3:4f:6c:b5:7f:bf:3b:d4:53:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f
Validity
Not Before: Jun 7 11:00:23 2025 GMT
Not After : Jun 8 11:00:23 2025 GMT
Subject: CN=5ac5bd5f0f48aca2124c113d3fc0f157dca5235c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ce:0e:be:e4:d1:fb:47:e9:c4:06:28:83:49:
67:e0:29:06:01:fb:5d:9d:a0:c3:42:3f:45:15:f1:
23:0e:07:60:7b:47:b8:3a:ab:99:75:0f:62:76:77:
97:92:49:04:ac:71:9c:27:b0:06:ab:41:c4:20:c2:
a5:18:5a:be:32:3b:b8:57:67:39:14:92:cd:d1:ed:
79:c2:dd:6f:86:93:c8:68:23:73:04:35:e8:30:0c:
dc:06:1b:ae:15:30:28:17:36:9b:00:82:4c:ca:4d:
f5:93:ce:15:ec:bc:7d:08:8b:76:91:d6:ad:0f:c5:
c7:70:3e:4f:b3:69:8f:86:12:ea:b7:0e:23:69:01:
cc:d8:13:72:03:8a:73:fd:0e:81:8e:3f:5b:e0:c9:
14:06:67:19:eb:75:9b:94:1f:27:55:a7:09:88:62:
70:8f:86:01:75:0f:a5:af:c2:56:7c:f5:d9:89:d0:
92:73:fc:ff:df:e5:27:fa:b8:e6:dd:30:bf:b1:98:
c6:59:3d:74:84:33:1c:d4:81:50:cb:df:f0:a6:99:
11:d0:d6:bf:6b:2b:67:fa:77:1c:39:e1:1d:db:49:
48:a7:5a:d2:d4:6b:c0:23:04:92:1c:29:6c:9f:0b:
62:fc:f4:e3:87:79:e7:6e:2b:6a:7a:7c:07:94:b8:
d3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C5:BD:5F:0F:48:AC:A2:12:4C:11:3D:3F:C0:F1:57:DC:A5:23:5C
X509v3 Authority Key Identifier:
keyid:4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:d5:4b:62:4d:7f:23:b7:bd:55:20:1c:e4:be:53:48:53:d2:
27:62:a9:de:6d:ef:f9:ad:4f:e6:db:16:b9:25:27:f6:e2:a7:
2a:bb:0d:f1:96:5e:2a:85:f9:f8:1b:f7:e3:3c:3b:c1:d0:af:
34:35:5f:4b:04:ec:03:21:69:d7:18:e2:e4:8b:04:3f:f3:69:
81:f7:31:19:ca:d2:fa:d8:9c:cd:d6:bb:5d:cf:2c:97:4f:85:
68:36:10:97:3b:f6:25:3b:27:f1:a1:1e:85:00:4a:d1:c8:cd:
d6:d0:7c:de:fe:69:f5:d8:4f:60:bf:36:3c:13:f1:21:16:cd:
2f:58:a7:64:75:f4:08:db:ee:48:f5:d1:7d:29:f7:92:86:87:
f4:da:21:5b:5b:cf:bf:35:3d:e3:be:8a:7d:b8:ed:e6:d6:6b:
38:a3:37:1d:ca:7a:24:ae:76:38:52:d2:7c:39:72:38:10:d7:
46:9b:c9:a1:37:e7:42:c1:14:e1:f3:0c:cd:ea:05:52:de:23:
f4:e6:d6:29:5c:73:2b:3f:5d:2d:21:54:be:a6:8b:ad:68:45:
7b:9a:5a:35:bf:e8:49:e7:3c:f3:88:db:0e:f6:df:45:6e:be:
ad:e3:1a:9b:65:e6:c1:f9:79:75:01:02:90:55:8d:d1:dc:a0:
16:4c:fb:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:40:57 2025 by rpki-client