Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
File: cNvqB1PfCD5XgrufOAtdeZy3igY.mft (raw, json)
Hash identifier: 5oeBGmJ5tf9KnLFsXj1vE2/Dp/peRxt6k8fkMIMOHpw=
Subject key identifier: A4:E4:E4:35:6F:92:87:98:3B:6E:1E:4F:E0:2C:6C:86:11:EB:6D:A1
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 019748FA2BA1E06F6924E987952F82AAF00A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
Manifest number: 150F
Signing time: Sat 07 Jun 2025 06:00:44 +0000
Manifest this update: Sat 07 Jun 2025 06:00:44 +0000
Manifest next update: Sun 08 Jun 2025 06:00:44 +0000
Files and hashes: 1: 7wYbQJjmUZJ3jrCYQep7ej1ycX8.roa (hash: gX6AQ4uDUscH9HZMwyFhtSxb+YXiJVmytGAK7BhRx4Q=)
2: cNvqB1PfCD5XgrufOAtdeZy3igY.crl (hash: 8WLGNf8+KfYHlzut7S/htDq+rnSBhNqKvSshPrW7ONk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:2b:a1:e0:6f:69:24:e9:87:95:2f:82:aa:f0:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: Jun 7 06:00:44 2025 GMT
Not After : Jun 8 06:00:44 2025 GMT
Subject: CN=a4e4e4356f9287983b6e1e4fe02c6c8611eb6da1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7d:f3:b7:5e:37:f9:9f:2d:4b:19:9c:1a:56:
52:35:af:a2:9a:2d:60:46:97:9b:ab:43:db:d0:44:
3d:c8:14:94:a2:17:72:82:25:56:f6:36:96:5c:18:
d6:87:dd:0c:90:33:c2:28:4b:98:39:95:99:c4:8e:
43:e0:36:d3:c8:a1:a9:0f:42:bf:18:bb:99:e7:b3:
55:d5:d3:88:76:64:54:95:00:a7:9f:e6:e2:c3:b3:
67:36:57:2d:85:25:f4:a0:65:b8:50:56:93:fb:75:
3b:27:68:3f:95:d2:65:32:5c:a3:15:81:a3:01:4b:
17:49:db:f0:68:cb:74:b1:04:35:83:ea:e3:b3:3f:
46:91:1e:0b:e3:5d:70:2c:bb:78:86:7a:e5:e6:86:
36:0c:0f:33:d1:2d:7a:4b:7e:e0:cd:d6:0b:c3:51:
2a:0d:4f:18:aa:8e:9d:6c:11:ae:b2:c2:60:98:a0:
5f:65:79:12:3f:d9:be:42:b3:20:7b:97:52:a0:f5:
2b:bf:1a:8b:a5:89:fc:4d:0f:7c:a8:a7:23:d0:e4:
ae:0c:ff:26:50:90:a3:33:57:a7:ed:dd:e5:88:84:
83:a4:ee:4f:c7:44:e2:3b:99:d6:f6:68:dd:93:e1:
0c:0a:42:d7:97:9c:24:7a:3b:7b:20:5a:77:5e:fa:
30:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E4:E4:35:6F:92:87:98:3B:6E:1E:4F:E0:2C:6C:86:11:EB:6D:A1
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:d6:72:60:7f:0b:12:cd:d0:27:81:dd:15:eb:7b:59:41:ec:
c0:ba:0b:57:98:aa:e9:45:40:64:df:08:9b:ee:fd:b0:bf:f6:
2c:7d:ec:0a:47:c8:9a:da:c6:31:89:80:d2:53:d6:6b:39:27:
34:38:ec:2c:52:1b:9a:02:dd:38:53:ba:47:97:15:77:7e:dd:
e7:6b:55:ae:13:e3:c4:9b:19:f3:92:ed:ca:b9:43:b9:d2:82:
29:6c:d7:7a:45:37:83:c4:65:b0:6a:99:83:1b:b0:ff:db:b6:
b8:c7:90:4a:ce:2f:a2:94:c5:c0:95:c7:31:75:7d:31:9c:8b:
b5:9a:a8:c7:02:e9:a5:47:86:66:18:b6:7a:5a:16:51:81:c1:
b4:da:3e:3d:01:0c:05:7d:44:e1:cb:10:61:18:e0:2a:12:3f:
b1:bc:6e:2d:07:a1:98:e7:57:db:e1:3c:61:c1:87:c4:a1:e3:
e3:2d:88:17:4f:f8:09:31:d9:54:d1:dc:5a:e1:26:7d:49:99:
2b:80:77:1d:ae:8d:f9:71:2e:78:99:72:57:d0:90:76:81:ac:
36:fa:26:0e:9c:69:35:db:03:0a:38:c9:b7:e1:7a:54:1c:1e:
54:b8:db:d0:eb:27:9a:9f:74:21:a2:16:3f:79:da:17:af:77:
d1:3a:b8:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:40:48 2025 by rpki-client