Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
File: 86GuCwfNBe4khPTuvNRWhHNHNBQ.mft (raw, json)
Hash identifier: X0Pqm62i5rrm/pvPnznBV2z9beI9MCu4Ze5wsFX2ZCk=
Subject key identifier: 8B:3B:C3:4E:77:C3:FD:B3:8A:2F:75:B2:4A:F3:66:19:FF:80:C1:D7
Authority key identifier: F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
Certificate issuer: /CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Certificate serial: 019750B39450B9AE4BF0CEED7A49A0CCEB59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
Manifest number: 1584
Signing time: Sun 08 Jun 2025 18:00:35 +0000
Manifest this update: Sun 08 Jun 2025 18:00:35 +0000
Manifest next update: Mon 09 Jun 2025 18:00:35 +0000
Files and hashes: 1: 0yNiuwlEmaGi-GMVCrhtb0jD684.roa (hash: 0JYmDVSwa/kA2DCdsSlQFjDnGZq4KcJ5IykJE11qOfk=)
2: 86GuCwfNBe4khPTuvNRWhHNHNBQ.crl (hash: zglKyxE1TC5oIgWzFIeiJ675VFeTyVdsBP+URwzlFec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b3:94:50:b9:ae:4b:f0:ce:ed:7a:49:a0:cc:eb:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Validity
Not Before: Jun 8 18:00:35 2025 GMT
Not After : Jun 9 18:00:35 2025 GMT
Subject: CN=8b3bc34e77c3fdb38a2f75b24af36619ff80c1d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2c:38:c4:5a:0c:c5:41:b2:3b:6a:a9:55:9c:
4c:ad:52:8e:44:a5:d1:29:d7:99:be:bc:6c:7f:da:
c0:bd:a1:36:fe:b1:99:78:37:54:69:4c:3d:63:dd:
51:d7:55:c0:4f:77:3e:c5:58:e9:fb:48:f4:37:15:
6b:0b:f1:ba:73:12:eb:77:ac:48:13:32:9e:e9:98:
cc:a9:85:8e:e6:d4:2e:a5:1f:72:49:8a:39:08:23:
85:ba:27:d8:8c:24:eb:57:74:f9:f1:1c:d1:10:f0:
e1:b1:3e:79:cc:74:8f:de:5c:d1:96:78:b4:e9:89:
f7:f4:97:cb:22:7c:33:46:4a:38:7e:26:02:b0:c8:
38:0e:bd:63:c1:92:dc:86:a3:a8:70:a8:f4:23:a8:
2f:10:cf:eb:84:3a:93:e9:b5:e2:1e:16:c8:cb:ef:
4f:f1:93:38:49:4d:01:31:97:78:f3:1d:26:85:01:
54:c0:8c:e9:0c:1a:4d:2b:ca:60:f8:38:52:23:77:
68:1b:09:60:29:87:f8:e5:2d:33:db:2e:c3:da:b2:
39:a0:fb:8d:6f:58:fb:d3:a2:76:b9:15:f9:e8:53:
c1:2a:e1:2d:63:68:2e:f7:e3:93:d1:21:77:fc:93:
a4:74:97:0a:b7:a8:45:df:cc:8d:2b:a6:a6:e4:d1:
4e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:3B:C3:4E:77:C3:FD:B3:8A:2F:75:B2:4A:F3:66:19:FF:80:C1:D7
X509v3 Authority Key Identifier:
keyid:F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:a5:00:3a:0f:5c:c9:2b:c9:d8:a0:11:08:d0:43:95:96:8b:
b9:5d:f9:35:75:35:b2:c7:a5:b7:6a:7f:3a:c1:72:13:4b:d4:
7e:f0:78:76:6e:51:a6:4d:2b:b5:0e:c3:a7:ae:8b:f1:1d:96:
0d:5a:0c:ea:c2:b5:32:14:56:00:66:c3:78:83:b8:e0:a8:95:
56:cd:2b:ba:db:73:0c:0f:da:16:87:2b:fa:b5:b6:f9:9c:09:
80:f1:c2:44:5a:8d:ba:bc:85:f8:82:fc:ac:42:77:bc:15:78:
0e:70:f3:01:e8:24:c4:df:b1:27:68:cc:3a:fb:1f:91:37:a6:
21:66:e3:4b:95:a9:1c:c4:fc:fd:41:e0:da:f2:ff:12:a9:b8:
cc:e0:9b:59:5f:ff:56:2c:4f:c1:85:6c:11:0d:87:91:2d:54:
0a:74:8e:94:fc:31:b5:17:50:9c:6b:a5:73:5d:fd:5f:34:d8:
49:79:b1:ec:cd:29:b6:d9:7d:1f:38:1a:5c:4e:56:a0:a1:fd:
68:ac:04:e1:5c:91:86:ba:99:1a:f0:c4:fe:f7:9a:83:b1:3e:
43:15:57:28:e1:77:98:db:a9:d9:81:9e:48:2b:a5:65:6f:18:
b4:24:cc:49:75:38:80:f2:72:45:81:f5:24:86:31:5c:0b:f9:
50:90:09:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 01:07:56 2025 by rpki-client